CWE-400
High likelihoodUncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
3,139 vulnerabilities with CWE-400
CVE-2024-21342
HIGH
Windows 11 22H2 and 23H2 and Windows Server 2022 23H2 - Denial of Service in DNS Client
CVSS 7.5
CVE-2024-24781
HIGH
HIMA F30/F35/F60/X-COM/X-CPU/X-SB Firmware - Unauthenticated Denial of Service via Ethernet Port Traffic Flood
CVSS 7.5
CVE-2024-1309
MEDIUM
Honeywell Niagara Framework < 3.8.1 - Uncontrolled Resource Consumption
CVSS 6.5
CVE-2024-25112
MEDIUM
Exiv2 0.28.0-0.28.1 - Denial of Service via Unbounded Recursion in QuickTimeVideo::multipleEntriesDecoder
CVSS 5.5
CVE-2024-25718
CRITICAL
Samly < 1.4.0 - Insufficient Session Expiration via Cached Session Handling
CVSS 9.8
CVE-2024-23323
MEDIUM
Envoy 1.26.0-1.26.6 - Inefficient CPU Computation via Regex Matcher
CVSS 4.3
CVE-2024-1402
MEDIUM
Mattermost < 8.1.7 and < 8.1.8 - Denial of Service via Custom Emoji Reaction Overload
CVSS 4.3
CVE-2024-25452
MEDIUM
Bento4 <1.6.0-640 - Memory Corruption
CVSS 5.5
CVE-2024-25451
MEDIUM
Bento4 <1.6.0-640 - Memory Corruption
CVSS 6.5
CVE-2024-0842
HIGH
Backuply - Backup, Restore, Migrate and Clone <1.2.5 - DoS
CVSS 7.5
CVE-2024-22332
MEDIUM
IBM Integration Bus for z/OS <10.1.0.2 - DoS
CVSS 6.5
CVE-2024-24575
HIGH
libgit2 1.4.0-1.6.4 - Denial of Service via git_revparse_single Infinite Loop
CVSS 7.5
CVE-2024-24943
MEDIUM
JetBrains Toolbox < 2.2 - Denial of Service via Malicious SVG Image
CVSS 5.3
CVE-2024-24762
HIGH
python-multipart < 0.0.7 - Regular Expression Denial of Service via Content-Type Header Parsing
CVSS 7.5
CVE-2024-23824
MEDIUM
mailcow < 2024-01 - Denial of Service via Pixel Flood Attack
CVSS 4.7
CVE-2024-24752
MEDIUM
Bref < 2.1.13 - Denial of Service via Multipart File Upload Temporary File Accumulation
CVSS 6.5
CVE-2024-1014
MEDIUM
SE-elektronic E-DDC3.3 Firmware 03.07.03 and higher - Denial of Service via ICMP Packet Flood
CVSS 6.2
CVE-2024-22233
HIGH
Spring Framework <6.0.15-6.1.2 - DoS
CVSS 7.5
CVE-2024-23744
HIGH
Mbed TLS 3.4.0-3.5.1 - Denial of Service via TLS 1.3 ClientHello Without Extensions
CVSS 7.5
CVE-2024-20985
MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Denial of Service in UDF Component
CVSS 6.5
CVE-2024-20983
MEDIUM
MySQL Server < 8.0.34 - Authenticated Denial of Service in DML Component
CVSS 4.9
CVE-2024-20981
MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Authenticated Denial of Service in DDL Component
CVSS 4.9
CVE-2024-20977
MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Authenticated Denial of Service in Optimizer
CVSS 6.5
CVE-2024-20971
MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Authenticated Denial of Service in Optimizer
CVSS 4.9
CVE-2024-20965
MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Denial of Service in Optimizer
CVSS 4.9
Details
Vulnerabilities
3,139
Exploit Likelihood
High