CWE-400
High likelihoodUncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
3,142 vulnerabilities with CWE-400
CVE-2022-28229
HIGH
userver < 2022-11-18 - Denial of Service via Hash Collision
CVSS 7.5
CVE-2022-39164
MEDIUM
IBM AIX 7.1-7.3 and VIOS 3.1 - Denial of Service via Kernel Resource Consumption
CVSS 6.2
CVE-2022-39165
MEDIUM
IBM AIX 7.1-7.3 and VIOS 3.1 - Denial of Service via CAA
CVSS 6.2
CVE-2022-40899
HIGH
Python Charmers Future <0.18.2 - DoS
CVSS 7.5
CVE-2022-42929
MEDIUM
Firefox < 106.0 and Firefox ESR < 102.4 - Denial of Service via window.print()
CVSS 6.5
CVE-2022-46315
HIGH
HarmonyOS < 2.1 - Uncontrolled Resource Consumption in ProfileSDK
CVSS 7.5
CVE-2022-46399
HIGH
Microchip RN4870 Firmware 1.43 - Denial of Service via ConReqTimeoutZero
CVSS 7.5
CVE-2022-23524
MEDIUM
Helm < 3.10.3 - Denial of Service via strvals Package Stack Overflow
CVSS 5.3
CVE-2022-46352
HIGH
SCALANCE X204RNA - DoS
CVSS 7.5
CVE-2022-46351
MEDIUM
SCALANCE X204RNA - DoS
CVSS 5.5
CVE-2022-45044
MEDIUM
SIPROTEC 5 - Denial of Service via SSL/TLS Renegotiation
CVSS 5.3
CVE-2022-31698
MEDIUM
VMware Cloud Foundation - Denial of Service via Crafted Header
CVSS 5.3
CVE-2022-20482
MEDIUM
Android - Denial of Service via Notification Channel Resource Exhaustion
CVSS 5.5
CVE-2022-43780
HIGH
HP ENVY OfficeJet DeskJet Firmware < 003.2237a - Denial of Service
CVSS 7.5
CVE-2022-3510
HIGH
protobuf-java and protobuf-javalite < 3.16.3 - Denial of Service via Message-Type Extension Parsing
CVSS 7.5
CVE-2022-3509
HIGH
protobuf-java 3.16.0-3.16.2 and 3.20.0-3.20.2 - Denial of Service via TextFormat Parsing
CVSS 7.5
CVE-2022-37907
MEDIUM
ArubaOS 6.5.4.0-6.5.4.21 and SD-WAN 8.7.0.0-2.3.0.0-8.7.0.0-2.3.0.5 - Denial of Service via Bootloader
CVSS 5.8
CVE-2022-2794
HIGH
HP PageWide Pro Printers < 2228b - Denial of Service
CVSS 7.5
CVE-2022-20691
MEDIUM
Cisco ATA 190 Series Firmware - Unauthenticated Denial of Service via Cisco Discovery Protocol Packet Header
CVSS 5.3
CVE-2022-23492
HIGH
libp2p < 0.18.0 - Resource Exhaustion via Connection and Stream Management
CVSS 7.5
CVE-2022-23471
MEDIUM
containerd < 1.5.16 - Memory Leak via CRI Stream Server Goroutine
CVSS 5.7
CVE-2022-23487
HIGH
libp2p < 0.38.0 - Resource Exhaustion via Connection and Stream Management
CVSS 7.5
CVE-2022-23486
HIGH
libp2p < 0.45.1 - Denial of Service via Memory Allocation Exhaustion
CVSS 7.5
CVE-2022-44608
HIGH
Cybozu Remote Service 4.0.0-4.0.3 - Authenticated Denial of Service via Uncontrolled Resource Consumption
CVSS 7.5
CVE-2022-35254
HIGH
Ivanti Connect Secure < 9.1R14.3, 9.1R15.2, 9.1R16.2, 22.2R4 - Unauthenticated Denial of Service
CVSS 7.5
Details
Vulnerabilities
3,142
Exploit Likelihood
High