Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,094 vulnerabilities with CWE-400

CVE-2026-42400 MEDIUM

Uncontrolled Resource Consumption in Kibana Leading to Denial of Service

CVE-2026-42399 MEDIUM

Uncontrolled Resource Consumption in Kibana Leading to Denial of Service

CVE-2026-35277 HIGH

Oracle REST Data Services 24.2.0-26.1.0 - Authenticated Unauthorized Data Access and Modification via HTTPS

CVE-2026-35266 HIGH

Oracle Rest Data Services < 26.1.0 - Denial of Service

CVE-2026-33464 MEDIUM

Uncontrolled Resource Consumption in Kibana Leading to Denial of Service

CVE-2026-44796 MEDIUM

Nautobot: Object bulk rename UI actions vulnerable to denial of service by crafted regular expression (REDoS)

CVE-2026-48525 MEDIUM

PyJWT: Unauthenticated DoS via unbounded Base64URL decoding of unused payload segment in b64=false detached JWS

CVE-2026-48155 MEDIUM

pypdf: Possible large memory usage for large offsets for layout mode text

CVE-2026-44247 MEDIUM

Volcano: Webhook server vulnerable to OOM due to unbounded HTTP request body size

CVE-2026-45047 HIGH

bird-lg-go: Fatal Out-of-Memory (OOM) Denial of Service via Unbounded JSON Decoding

CVE-2026-7528 HIGH

Unauthenticated File Upload Vulnerability Allows Disk Space Exhaustion and Path Disclosure in Langflow OSS

CVE-2026-6052 MEDIUM

IBM® Db2® is vulnerable to running out of memory when executing certain queries with MDC tables

CVE-2026-6051 MEDIUM

IBM® Db2® is vulnerable to a denial of service when executing a specially crafted query with a small statement heap

CVE-2026-4410 MEDIUM

IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by a denial of service

CVE-2026-7493 MEDIUM

Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin <= 1.6.11.5 - Unauthenticated Denial of Service

CVE-2026-48593 MEDIUM

Unbounded range expansion in cron describe causes memory exhaustion in oban_web

CVE-2026-8856 HIGH

IBM HTTP Server is affected by multiple vulnerabilities

CVE-2026-9496 HIGH

Pacote - Inefficient Regular Expression Complexity

CVE-2026-47077 HIGH

Unbounded body accumulation in HTTP/3 response loop in hackney

CVE-2026-47073 HIGH

Unbounded memory consumption in WebSocket client in hackney

CVE-2026-47071 HIGH

SOCKS5 TLS upgrade ignores caller timeout in hackney

CVE-2026-42626 MEDIUM

HP ENVY 5000 VERBASPP1N003.2237A.00 - Unauthenticated Denial of Service via Persistent TCP Connection to Port 9100

CVE-2026-25680 MEDIUM

Invoking denial of service when parsing arbitrary HTML in golang.org/x/net/html

CVE-2026-5755 MEDIUM

Mattermost - Denial of Service via Crafted TIFF File Upload

CVE-2026-5308 MEDIUM

Missing request body size limits on Zoom plugin HTTP endpoints

Previous Page 4 of 124 Next

Details

Vulnerabilities 3,094

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy