Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,141 vulnerabilities with CWE-400

CVE-2023-35909 MEDIUM

Ninja Forms Contact Form <3.6.25 - DoS

CVE-2023-48840 HIGH

Appointment Scheduler 3.0 - Denial of Service via pjActionAjaxSend Rate Limiting Bypass

CVE-2023-48834 HIGH

Car Rental Script 3.0 - Uncontrolled Resource Consumption via pjActionAjaxSend

CVE-2023-48833 HIGH

Time Slots Booking Calendar 4.0 - DoS

CVE-2023-48831 HIGH

Availability Booking Calendar 5.0 - DoS

CVE-2023-6180 MEDIUM

tokio-boring 4.0.0 - Memory Corruption

CVE-2023-39248 HIGH

Dell Networking OS10 10.5.2.x and above - Unauthenticated Denial of Service via VLT and VRRP Configuration

CVE-2023-49290 MEDIUM

lestrrat-go/jwx <1.2.27 and <2.0.18 - Denial of Service via JWE p2c Parameter

CVE-2023-47633 HIGH

Traefik < 2.10.6 and < 3.0.0-beta5 - Denial of Service via Docker Integration

CVE-2023-40692 MEDIUM

IBM Db2 10.5, 11.1, 11.5 - Denial of Service

CVE-2023-5915 MEDIUM

Yokogawa STARDOM FCN/FCJ R1.01-R4.31 - Denial of Service via Crafted Packet

CVE-2023-48951 HIGH

openlink virtuoso-opensource <7.2.11 - DoS

CVE-2023-48713 MEDIUM

Knative Serving < 1.10.5 and >=0 <0.39.0 - Denial of Service via /metrics Endpoint

CVE-2023-48369 MEDIUM

Mattermost < 7.8.12 and 9.1.0-9.1.1 - Uncontrolled Resource Consumption via Log Overflow

CVE-2023-48268 MEDIUM

Mattermost < 7.8.12 and 9.1.0-9.1.1 - Denial of Service via Zip Bomb in Board Import

CVE-2023-40703 MEDIUM

Mattermost < 7.8.12 and 9.1.0-9.1.1 - Denial of Service via Block Field String Injection

CVE-2023-6277 MEDIUM

libtiff - Denial of Service via Crafted TIFF File in TIFFOpen()

CVE-2023-33202 MEDIUM

Bouncy Castle for Java < 1.73 - Denial of Service via PEM Parser

CVE-2023-41102 HIGH

OpenNDS <10.1.3 - Memory Corruption

CVE-2023-47025 MEDIUM

free5gc 3.3.0 - Denial of Service via free5gc-compose

CVE-2023-38043 HIGH

Ivanti Secure Access Client < 22.6R1.1 - Authenticated Denial of Service via Vulnerable Configuration

CVE-2023-45622 HIGH

ArubaOS 10.3.0.0-10.4.0.2 & InstantOS 6.4.0.0-8.6.0.22 - DoS via BLE Daemon PAPI

CVE-2023-45621 HIGH

ArubaOS 10.3.0.0-10.4.0.2 and InstantOS 6.4.0.0-8.6.0.22 - Unauthenticated Denial of Service via PAPI CLI Service

CVE-2023-36038 HIGH

ASP.NET Core - DoS

CVE-2023-25949 MEDIUM

Intel Aptio V UEFI Firmware Integrator Tools - Authenticated Denial of Service via Uncontrolled Resource Consumption

Previous Page 55 of 126 Next

Details

Vulnerabilities 3,141

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy