Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,141 vulnerabilities with CWE-400

CVE-2023-40709 MEDIUM

opto22 SNAP PAC S1 Firmware R10.3b - Denial of Service via ICMP Request Flood

CVE-2023-37379 HIGH

Apache Airflow < 2.7.0 - Authenticated Denial of Service via Connection Test Feature

CVE-2023-39748 HIGH

TP-Link TL-WR1041N V2 Firmware - Denial of Service via NetworkCfgRpm GET Request

CVE-2023-4394 MEDIUM

Linux Kernel - Use-After-Free in btrfs_get_dev_args_from_path

CVE-2023-38737 MEDIUM

IBM WebSphere Application Server Liberty <23.0.0.7 - DoS

CVE-2023-21280 MEDIUM

Android - Denial of Service via MediaSessionRecord Resource Exhaustion

CVE-2023-38741 HIGH

IBM TXSeries for Multiplatforms <9.1 - DoS

CVE-2023-28938 LOW

Intel(R) SSD Tools <mdadm-4.2-rc2 - Privilege Escalation

CVE-2023-38210 MEDIUM

Adobe XMP Toolkit < 2022.06 - Unauthenticated Denial of Service via Malicious File Processing

CVE-2023-38180 HIGH KEV

.NET 6.0.0-6.0.20 and ASP.NET Core 2.1-2.1.39 - Denial of Service

CVE-2023-38178 HIGH

.NET 7.0.0-7.0.9 and Visual Studio 2022 17.2.0-17.2.17 - Denial of Service

CVE-2023-29409 MEDIUM

GO < 1.19.12 - Denial of Service

CVE-2023-3825 HIGH

KEPServerEX 6.0-6.14.263 - Denial of Service via Recursive OPC UA Object Decoding

CVE-2023-34872 MEDIUM

poppler < 23.06.0 - Denial of Service via Crafted PDF in OutlineItem::open

CVE-2023-38498 MEDIUM

Discourse <3.0.6-3.1.0.beta7 - Info Disclosure

CVE-2023-37900 LOW

Crossplane < 1.11.5, 1.12.3, 1.13.0 - Denial of Service via Large Package Image Parsing

CVE-2023-3637 MEDIUM

Red Hat OpenStack Platform - Authenticated Denial of Service via Security Group Query

CVE-2023-38200 HIGH

Keylime < 7.4.0 - Denial of Service via SSL Connection Exhaustion

CVE-2023-3782 MEDIUM

okhttp-brotli - Denial of Service via Brotli Zip-Bomb

CVE-2023-37143 MEDIUM

ChakraCore - Denial of Service via BackwardPass::IsEmptyLoopAfterMemOp()

CVE-2023-37142 MEDIUM

ChakraCore - Denial of Service via Js::EntryPointInfo::HasInlinees()

CVE-2023-37141 MEDIUM

ChakraCore - Denial of Service via Js::ProfilingHelpers::ProfiledNewScArray()

CVE-2023-37140 MEDIUM

ChakraCore - Denial of Service via Js::DiagScopeVariablesWalker::GetChildrenCount()

CVE-2023-37788 HIGH

goproxy - Denial of Service via Uncontrolled Resource Consumption

CVE-2023-37481 LOW

Fides 2.11.0-2.15.1 - Authenticated Denial of Service via SVG Bomb in Zip Upload

Previous Page 60 of 126 Next

Details

Vulnerabilities 3,141

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy