Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,134 vulnerabilities with CWE-400

CVE-2024-4183 MEDIUM

Mattermost 8.1.0-8.1.11, 9.6.0-rc1-9.6.0, 9.5.0-9.5.2, 9.4.0-9.4.4 - DoS via Session Table Flooding

CVE-2024-22091 LOW

Mattermost <8.1.11, <9.5.2, <9.6.0 - DoS

CVE-2024-33664 MEDIUM

python-jose < 3.3.0 - Denial of Service via JWE Token Decompression

CVE-2024-3508 MEDIUM

Trusted Profile Analyzer - Authenticated Unrestricted Upload of Compressed SBOM Files

CVE-2024-28717 MEDIUM

OpenStack Storlets < 13.0.0.0rc1 - Remote Code Execution via gateway.py

CVE-2024-31994 MEDIUM

Mealie < 1.4.0 - Denial of Service via Image Request Resource Exhaustion

CVE-2024-31992 MEDIUM

Mealie < 1.4.0 - Denial of Service via Uncontrolled Resource Consumption in safe_scrape_html

CVE-2024-21062 MEDIUM

MySQL Server < 8.0.36 and 8.3.0 - Authenticated Denial of Service in Optimizer

CVE-2024-21057 MEDIUM

MySQL Server < 8.0.35 - Authenticated Denial of Service in Optimizer

CVE-2024-21055 MEDIUM

MySQL Server <= 8.0.35 - Authenticated Denial of Service in Optimizer

CVE-2024-21051 MEDIUM

MySQL Server <= 8.0.34 - Authenticated Denial of Service in DML Component

CVE-2024-21050 MEDIUM

MySQL Server <= 8.0.34 - Authenticated Denial of Service in DML Component

CVE-2024-21013 MEDIUM

MySQL Server <= 8.0.36 and 8.3.0 - Authenticated Denial of Service in Optimizer

CVE-2024-21008 MEDIUM

MySQL Server <= 8.0.36 and 8.3.0 - Authenticated Denial of Service in Optimizer

CVE-2024-3872 LOW

Mattermost Mobile < 2.13.0 - Unauthenticated Denial of Service via Malicious Deeplink

CVE-2024-1569 HIGH

lollms-webui - Unauthenticated Denial of Service via /open_code_in_vs_code Endpoint

CVE-2024-0157 MEDIUM

Dell Storage Resource Manager <4.9.0.0 - Privilege Escalation

CVE-2024-30915 MEDIUM

OpenDDS - Denial of Service and Information Disclosure via DataReaderQoS max_samples Parameter

CVE-2024-3569 HIGH

AnythingLLM < 1.0.0 - Denial of Service via Crafted Authorization Header

CVE-2024-26215 HIGH

Microsoft Windows Server 2008 < 10.0.14393.6897 - Denial of Service

CVE-2024-26212 HIGH

Microsoft Windows Server 2008 < 10.0.14393.6897 - Denial of Service

CVE-2024-28949 MEDIUM

Mattermost Server 8.1.0-8.1.10, 9.3.0-9.3.2, 9.4.0-9.4.3, 9.5.0-9.5.1 - Denial of Service via Unlimited User Preferences

CVE-2024-31209 MEDIUM

oidcc 3.0.0-3.0.1, 3.1.0-3.1.1, 3.2.0-beta.1-3.2.0-beta.2 - Denial of Service via Atom Exhaustion

CVE-2024-26723 HIGH

Linux Kernel 6.1-6.1.78, 6.2-6.6.17, 6.7-6.7.5 - DoS via NULL Pointer Dereference in LAN966x

CVE-2024-29893 MEDIUM

Argo CD 2.4.0-2.8.13 - Denial of Service via Malicious Helm Registry

Previous Page 47 of 126 Next

Details

Vulnerabilities 3,134

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy