CWE-400
High likelihoodUncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
3,128 vulnerabilities with CWE-400
CVE-2024-8454
MEDIUM
PLANET GS-4210-24P2S and GS-4210-24PL4C Firmware - Unauthenticated Denial of Service via Crafted swctrl Packets
CVSS 5.3
CVE-2024-8451
HIGH
PLANET Technology - Privilege Escalation
CVSS 7.5
CVE-2024-38809
MEDIUM
Spring Framework 5.3.0-5.3.37, 6.0.0-6.0.22, 6.1.0-6.1.11 - Denial of Service via ETag Header Parsing
CVSS 5.3
CVE-2024-37125
HIGH
Dell SmartFabric OS10 10.5.3.0-10.5.3.10 - Unauthenticated Denial of Service via Uncontrolled Resource Consumption
CVSS 7.5
CVE-2024-47003
LOW
Mattermost 9.5.0-9.5.8 and 9.11.0 - Denial of Service via Permalink Post Message Validation Bypass
CVSS 3.1
CVE-2024-31146
HIGH
Xen - Uncontrolled Resource Consumption via Shared Device Resources
CVSS 7.5
CVE-2024-31145
HIGH
Xen >=4.0.0 - Uncontrolled Resource Consumption in PCI Device Memory Mapping
CVSS 7.5
CVE-2024-47210
HIGH
Gladys Assistant <4.45.1 - Privilege Escalation
CVSS 8.8
CVE-2024-7254
HIGH
Google Protobuf < 3.25.5 - Uncontrolled Recursion via Nested Groups
CVSS 7.5
CVE-2024-8892
MEDIUM
CIRCUTOR TCP2RS+ Firmware 1.3b - Unauthenticated Uncontrolled Resource Consumption via UDP Port 2000
CVSS 5.3
CVE-2024-8939
MEDIUM
vllm - Denial of Service via Improper Handling of best_of Parameter
CVSS 6.2
CVE-2024-44183
MEDIUM
iPadOS < 17.7 - Denial of Service
CVSS 5.5
CVE-2024-44176
MEDIUM
Apple iPadOS < 17.7 - Denial of Service via Image Processing
CVSS 5.5
CVE-2024-44169
MEDIUM
iPadOS < 17.7 - Denial of Service via Uncontrolled Resource Consumption
CVSS 5.5
CVE-2024-44160
MEDIUM
macOS < 13.7, < 14.7, < 15 - Buffer Overflow via Maliciously Crafted Texture
CVSS 5.5
CVE-2024-44154
MEDIUM
macOS < 14.7 - Denial of Service via Maliciously Crafted File
CVSS 5.5
CVE-2024-40841
MEDIUM
macOS < 14.7 - Denial of Service via Maliciously Crafted Video File
CVSS 5.5
CVE-2024-27874
HIGH
iPadOS < 18.0 - Denial of Service
CVSS 7.5
CVE-2024-38236
HIGH
DHCP Server Service - DoS
CVSS 7.5
CVE-2024-43647
HIGH
SIMATIC S7-200 SMART CPU - Info Disclosure
CVSS 7.5
CVE-2024-8418
HIGH
Aardvark-dns - Denial of Service via TCP DNS Query Processing
CVSS 7.5
CVE-2024-41434
MEDIUM
PingCAP TiDB v8.1.0 - Denial of Service via (*Column).GetDecimal Buffer Overflow
CVSS 4.3
CVE-2024-21658
MEDIUM
discourse_calendar < 2024-08-28 - Denial of Service via Excessive Region Value Length
CVSS 4.3
CVE-2024-8182
HIGH
Flowise 1.8.2 - Unauthenticated Denial of Service via API Upload File Endpoint
CVSS 7.5
CVE-2024-43806
MEDIUM
rustix 0.35.11-0.38.18 - Uncontrolled Resource Consumption in Dir Iterator
CVSS 6.5
Details
Vulnerabilities
3,128
Exploit Likelihood
High