Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,128 vulnerabilities with CWE-400

CVE-2024-42397 MEDIUM

AP Certificate Management daemon - DoS

CVE-2024-30170 CRITICAL

PrivX 22.0-33.0 - Data Exfiltration and Denial of Service via REST API

CVE-2024-3056 HIGH

Podman < 5.2.0 - Denial of Service via IPC Resource Exhaustion

CVE-2024-41946 MEDIUM

REXML < 3.3.3 - Denial of Service via Entity Expansion in SAX2 or Pull Parser

CVE-2024-41123 MEDIUM

REXML < 3.2.7 and 3.3.0-3.3.2 - Denial of Service via Malformed XML Parsing

CVE-2024-37281 MEDIUM

Kibana 7.0.0-7.17.23 - Denial of Service via Maliciously Crafted Requests

CVE-2024-37299 MEDIUM

Discourse < 3.2.5 - Denial of Service via Long Tag Group Name

CVE-2024-27862 LOW

macOS Sonoma <14.6 - Info Disclosure

CVE-2024-41818 HIGH

fast-xml-parser >=4.3.5 <4.4.1 - Uncontrolled Resource Consumption via ReDOS in Currency Parser

CVE-2024-40575 MEDIUM

Huawei Technologies opengauss <7.3.0 - DoS

CVE-2024-3297 MEDIUM

Matter - Denial of Service via CASE Sigma1 Message Replay

CVE-2024-40634 HIGH

Argo CD < 2.9.20 - Unauthenticated Denial of Service via Large JSON Payload to Webhook Endpoint

CVE-2024-32007 HIGH

Apache CXF <4.0.5, 3.6.4, 3.5.9 - DoS

CVE-2024-21185 MEDIUM

MySQL Server 8.0.38, 8.4.1, 9.0.0 - Denial of Service in InnoDB

CVE-2024-21177 MEDIUM

MySQL Server < 8.0.37 and 8.4.0 - Authenticated Denial of Service in Server Optimizer

CVE-2024-21173 MEDIUM

MySQL < 8.0.37 and 8.4.0 - Authenticated Denial of Service in InnoDB

CVE-2024-21171 MEDIUM

MySQL Server 8.0.0-8.0.37 and 8.4.0 - Denial of Service in Optimizer

CVE-2024-21163 MEDIUM

MySQL Server < 8.0.37 and <= 8.4.0 - Authenticated Denial of Service in Optimizer

CVE-2024-21161 MEDIUM

Oracle VM VirtualBox < 7.0.20 - Denial of Service via Uncontrolled Resource Consumption

CVE-2024-21142 MEDIUM

MySQL Server: Security: Privileges < 8.0.37 and <= 8.4.0 - Authenticated Denial of Service

CVE-2024-21130 MEDIUM

MySQL Server < 8.0.37 and <= 8.4.0 - Denial of Service in Optimizer

CVE-2024-21127 MEDIUM

MySQL Server < 8.0.37 and 8.4.0 - Denial of Service in DDL Component

CVE-2024-21126 MEDIUM

Oracle Database Server 19.3-19.23 and 21.3-21.14 - Unauthenticated Partial Denial of Service via DNS

CVE-2024-20996 MEDIUM

MySQL < 8.0.37 and 8.4.0 - Denial of Service in InnoDB

CVE-2024-5795 HIGH

GitHub Enterprise Server < 3.14 - Denial of Service via Large Payload to Git Server

Previous Page 42 of 126 Next

Details

Vulnerabilities 3,128

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy