Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,134 vulnerabilities with CWE-400

CVE-2024-30105 HIGH

.NET 8.0.0-8.0.6 and Visual Studio 2022 17.4.0-17.4.20 - Denial of Service

CVE-2024-39895 MEDIUM

Directus < 10.12.0 - Denial of Service via GraphQL Field Duplication

CVE-2024-39479 HIGH

Linux Kernel 6.2-6.6.33, 6.7-6.9.4, 6.10 - Use-After-Free in i915 DRM HWMon Component

CVE-2024-6434 LOW

Premium Addons for Elementor <4.10.35 - DoS

CVE-2024-34750 HIGH

Apache Tomcat 9.0.0-9.0.89, 10.1.0-M1-10.1.24, 11.0.0-M1-11.0.0-M20 - Denial of Service via HTTP/2 Stream Miscount

CVE-2024-6126 LOW

Red Hat Enterprise Linux 9 - Authenticated Denial of Service via pam_env user_readenv Option

CVE-2024-6427 HIGH

MESbook 20221021.03 - Uncontrolled Resource Consumption

CVE-2024-22104 MEDIUM

Jungo WinDriver <12.5.1 - Memory Corruption

CVE-2024-22102 MEDIUM

Jungo WinDriver < 12.6.0 - Denial of Service via Local Blue Screen Trigger

CVE-2024-4557 MEDIUM

GitLab < 16.11.5, 17.0 < 17.0.3, 17.1 < 17.1.1 - Denial of Service via Banzai Pipeline

CVE-2024-1816 MEDIUM

GitLab 12.0-16.11.4, 17.0-17.0.2, 17.1 - Denial of Service via Crafted OpenAPI File

CVE-2024-38520 MEDIUM

SoftEtherVPN <= 5.02.5183 - Unauthenticated Amplification Attack via L2TP

CVE-2024-5013 HIGH

WhatsUp Gold < 23.1.3 - Unauthenticated Denial of Service via SetAdminPassword Installation Step

CVE-2024-5011 HIGH

WhatsUp Gold < 23.1.3 - Unauthenticated Denial of Service via TestController Chart Request

CVE-2024-39462 CRITICAL

Linux Kernel 6.6-6.6.33, 6.6.34-6.9.4, 6.10 - Uncontrolled Resource Consumption via clk_hw_onecell_data Array Access

CVE-2024-5216 HIGH

AnythingLLM < 1.0.0 - Denial of Service via Uncontrolled Username Size

CVE-2024-38384 HIGH

Linux Kernel - Uncontrolled Resource Consumption via List Corruption in blk-cgroup

CVE-2024-38616 HIGH

Linux Kernel 5.17-6.9.3 - Uncontrolled Resource Consumption in carl9170_tx_release

CVE-2024-23443 MEDIUM

Kibana 7.0.0-7.17.22 - Authenticated Denial of Service via Malicious Osquery Pack Upload

CVE-2024-37904 MEDIUM

Minder < 0.0.52 - Denial of Service via Git Repository Clone

CVE-2024-36543 CRITICAL

STRIMZI Project <= 0.41.0 - Unauthenticated Uncontrolled Resource Consumption via MirrorMaker Kafka REST API

CVE-2024-32912 MEDIUM

Android - Local Denial of Service via Test/Debugging Code

CVE-2024-32902 HIGH

Android - Remote Denial of Service via Malformed Cellular Packet

CVE-2024-31399 MEDIUM

Cybozu Garoon 5.0.0-5.15.2 - Denial of Service via Crafted Mail Processing

CVE-2024-34688 HIGH

SAP NetWeaver AS Java - Denial of Service via Meta Model Repository Services

Previous Page 44 of 126 Next

Details

Vulnerabilities 3,134

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy