Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,094 vulnerabilities with CWE-400

CVE-2026-34650 HIGH

Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)

CVE-2026-34649 HIGH

Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)

CVE-2026-34648 HIGH

Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)

CVE-2026-23824 HIGH

Unauthenticated Denial-of-Service via Crafted Messages in a Network Protocol Handling Component

CVE-2026-44167 HIGH

phpseclib: CVE-2024-27355 mitigation bypass — OID amplification DoS in ASN1::decodeOID()

CVE-2026-42006 MEDIUM

OX Dovecot Pro < 3.0.5, < 3.1.4, < 2.4.3 - Unauthenticated Uncontrolled Resource Consumption via IMAP Bracing

CVE-2026-40016 MEDIUM

OX Dovecot Pro < 2.3.0 - Uncontrolled Resource Consumption via Sieve Script CPU Limit Bypass

CVE-2026-43653 MEDIUM

iOS and iPadOS < 18.7.9 - Denial of Service via Uncontrolled Resource Consumption

CVE-2026-28967 MEDIUM

iOS and iPadOS < 18.7.7 and < 26.4 - Denial of Service

CVE-2026-28908 HIGH

macOS < 14.8.7, < 15.7.7, < 26.5 - Denial of Service via File System Modification

CVE-2026-28872 HIGH

iOS and iPadOS < 18.7.9 and < 26.4 - Denial of Service via Resource Exhaustion

CVE-2026-8319 MEDIUM

aiwaves-cn agents cheshire_cat_core stray_cat.py recall_relevant_memories_to_working_memory resource consumption

CVE-2026-7790 HIGH

Unbounded chunk-size hex digits in cowlib cause quadratic CPU and memory DoS

CVE-2026-31247 HIGH

Docling JATS XML Backend thru 2.61.0 - XML Entity Expansion Denial of Service

CVE-2026-8187 MEDIUM

Open5GS UPF gtp-path.c _gtpv1_u_recv_cb resource consumption

CVE-2026-42343 MEDIUM

FastGPT: Uncontrolled Resource Consumption leading to Sandbox Exhaustion

CVE-2026-42212 HIGH

SolidCAM-GPPL-IDE: XML External Entity (XXE) and billion-laughs DoS in VMID parser

CVE-2026-38361 HIGH

dash-uploader 0.1.0-0.7.0a2 Upload Handler - Remote Code Execution

CVE-2026-8124 LOW

GPAC box_code_base.c sidx_box_read allocation of resources

CVE-2026-32686 MEDIUM

Unbounded exponent in decimal enables unauthenticated DoS

CVE-2026-41310 MEDIUM

OpenTelemetry .NET Zipkin exporter has unbounded remote endpoint cache leading to memory growth

CVE-2026-34473 HIGH

ZTE Multiple Models - Unauthenticated DoS via Oversized POST Body

CVE-2026-20188 NONE

Cisco Crosswork Network Controller and Cisco Network Services Orchestrator Connection Exhaustion Denial of Service Vulnerability

CVE-2026-32936 HIGH

CoreDNS DoH GET path missing size validation causes CPU and memory amplification

CVE-2026-43870 HIGH

Apache Thrift: Node.js web_server.js multi-vulnerability

Previous Page 6 of 124 Next

Details

Vulnerabilities 3,094

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy