CWE-400
High likelihoodUncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
3,141 vulnerabilities with CWE-400
CVE-2023-37480
LOW
Fides 2.11.0-2.15.1 - Authenticated Denial of Service via Malicious Zip Bomb Upload
CVSS 2.7
CVE-2023-2263
HIGH
Rockwell Automation Kinetix 5700 DC Bus Power Supply Series A - Denial of Service via CIP Fuzzing
CVSS 7.5
CVE-2023-37475
HIGH
hamba/avro < 2.13.0 - Denial of Service via Unmarshal Memory Allocation
CVSS 7.5
CVE-2023-3614
MEDIUM
Mattermost < 7.8.7 - Denial of Service via Malicious GIF Image File
CVSS 4.3
CVE-2023-3593
MEDIUM
Mattermost 7.8.0-7.8.6 - Denial of Service via Markdown Input
CVSS 4.3
CVE-2023-3585
MEDIUM
Mattermost Server < 7.8.7 - Denial of Service via Crafted Boards Link
CVSS 4.3
CVE-2023-36818
MEDIUM
Discourse - Denial of Service via Custom Sidebar Section Update
CVSS 6.5
CVE-2023-35945
HIGH
Envoy < 1.23.11 - Denial of Service via HTTP/2 RST_STREAM and GOAWAY Frame Handling
CVSS 7.5
CVE-2023-37463
MEDIUM
cmark-gfm < 0.29.0.gfm.12 - Denial of Service via Polynomial Time Complexity Issues
CVSS 6.4
CVE-2023-34458
HIGH
mx-chain-go < 1.4.17 - Denial of Service via Relayed Transaction Nonce Handling
CVSS 7.1
CVE-2023-26597
HIGH
Honeywell C300 Firmware 501.1-501.6hf8 - Denial of Service via Crafted Message Buffer Overflow
CVSS 7.5
CVE-2023-29449
MEDIUM
Zabbix < 5.0.31 - Authenticated Resource Exhaustion via JavaScript Preprocessing
CVSS 5.9
CVE-2023-21240
MEDIUM
Android - Local Denial of Service via Resource Exhaustion in Policy.java
CVSS 5.5
CVE-2023-35339
HIGH
Windows CryptoAPI - Denial of Service via Uncontrolled Resource Consumption
CVSS 7.5
CVE-2023-35329
MEDIUM
Windows 10 1507-22H2 and Windows 11 21H2-22H2 - Denial of Service via Authentication Mechanism
CVSS 6.5
CVE-2023-35298
HIGH
Windows 11 21H2 < 10.0.22000.2176 and 22H2 < 10.0.22621.1992 and Windows Server 2022 - Denial of Service in HTTP.sys
CVSS 7.5
CVE-2023-3108
MEDIUM
Linux Kernel < 4.0 - Denial of Service via Race Condition in skcipher_recvmsg
CVSS 6.2
CVE-2023-35921
HIGH
SIMATIC MV540 H/S, MV550 H/S, MV560 U/X < 3.3.4 - Unauthenticated Denial of Service via Crafted Ethernet Frames
CVSS 7.5
CVE-2023-35920
HIGH
SIMATIC MV540 H/S, MV550 H/S, MV560 U/X Firmware < 3.3.4 - Unauthenticated Denial of Service via Crafted IP Packets
CVSS 7.5
CVE-2023-26509
HIGH
AnyDesk 7.0.8 - Denial of Service
CVSS 7.5
CVE-2023-1206
MEDIUM
Linux Kernel < 6.5 - Denial of Service via IPv6 Connection Lookup Table Hash Collision
CVSS 5.7
CVE-2023-21176
MEDIUM
Android 13 - Denial of Service via Resource Exhaustion in list_key_entries
CVSS 4.4
CVE-2023-3398
HIGH
drawio < 18.1.3 - Denial of Service
CVSS 7.5
CVE-2023-35925
MEDIUM
FastAsyncWorldEdit < 2.6.3 - Denial of Service via Infinity Region Selection
CVSS 6.2
CVE-2023-33141
HIGH
Yet Another Reverse Proxy < 1.1.2 - Denial of Service
CVSS 7.5
Details
Vulnerabilities
3,141
Exploit Likelihood
High