CWE-400
High likelihoodUncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
3,134 vulnerabilities with CWE-400
CVE-2024-33001
MEDIUM
SAP NetWeaver and ABAP Platform - Denial of Service
CVSS 6.5
CVE-2024-27812
MEDIUM
visionOS < 1.2 - Denial of Service via Web Content Processing
CVSS 6.5
CVE-2024-27800
MEDIUM
iPadOS < 16.7.8 - Denial of Service via Maliciously Crafted Message
CVSS 6.5
CVE-2024-37535
MEDIUM
GNOME VTE < 0.76.3 - Denial of Service via Window Resize Escape Sequence
CVSS 4.4
CVE-2024-3153
MEDIUM
AnythingLLM < 1.0.0 - Denial of Service via Invalid Upload Request
CVSS 6.5
CVE-2024-36743
HIGH
OneFlow v0.9.1 - Denial of Service via Empty Array in oneflow.dot
CVSS 7.5
CVE-2024-33655
HIGH
DNS Protocol - Denial of Service via Response Pulsing Burst
CVSS 7.5
CVE-2024-34364
MEDIUM
envoyproxy/envoy < 1.27.6 - Denial of Service via Unbounded Mirror Response Buffer
CVSS 5.7
CVE-2024-5422
HIGH
SEH Computertechnik utnserver Pro, ProMAX, INU-100 < 20.1.22 - Denial of Service via HTTP File Descriptor Exhaustion
CVE-2024-36845
MEDIUM
libmodbus 3.1.6 - Denial of Service via modbus_receive() Invalid Pointer
CVSS 4.3
CVE-2024-35221
MEDIUM
rubygems.org - Remote Denial of Service via YAML Alias Bomb in Gem Metadata
CVSS 4.3
CVE-2024-22588
MEDIUM
kwik < 0.8 - Uncontrolled Resource Consumption via Unused Encryption Key Retention
CVSS 6.5
CVE-2024-35194
MEDIUM
Minder < 0.0.50 - Denial of Service via Malicious Template Memory Exhaustion
CVSS 5.3
CVE-2024-34953
HIGH
taurusxin ncmdump 1.3.2 - Denial of Service via Memory Exhaustion in .ncm File Parsing
CVSS 7.5
CVE-2024-35948
HIGH
Linux Kernel 6.7-6.9 - Uncontrolled Resource Consumption in Superblock Validation
CVSS 8.4
CVE-2024-4284
MEDIUM
AnythingLLM < 1.0.0 - Authenticated Denial of Service via User ID Modification
CVSS 4.9
CVE-2024-35799
MEDIUM
Linux Kernel 4.15-4.15, 6.7.0-6.7.12, 6.8.0-6.8.3 - DoS via Null Function Call in DRM AMD Display
CVSS 5.5
CVE-2024-5055
HIGH
XAMPP <= 7.3.2 - Uncontrolled Resource Consumption via Incomplete HTTP Requests
CVSS 7.5
CVE-2024-5052
HIGH
Cerberus Enterprise <8.0.10.3 - DoS
CVSS 7.5
CVE-2024-21823
HIGH
Intel(R) DSA/Iaa - Privilege Escalation
CVSS 7.5
CVE-2024-35185
MEDIUM
Minder < 0.0.49 - Denial of Service via REST Ingester Large Response
CVSS 5.3
CVE-2024-35176
MEDIUM
REXML < 3.2.7 - Denial of Service via Malformed XML Attribute
CVSS 5.3
CVE-2024-30019
MEDIUM
Windows Server DHCP Service DoS (2008, 2012, 2016, 2019, 2022, 23H2)
CVSS 6.5
CVE-2024-33498
MEDIUM
SIMATIC RTLS Locating Manager -<V3.0.1.1 - Info Disclosure
CVSS 5.3
CVE-2024-4068
HIGH
braces < 3.0.3 - Denial of Service via Imbalanced Braces Input
CVSS 7.5
Details
Vulnerabilities
3,134
Exploit Likelihood
High