Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,146 vulnerabilities with CWE-400

CVE-2022-31173 HIGH

Juniper < 0.15.10 - Uncontrolled Recursion

CVE-2022-24294 HIGH

Apache MXNet < 1.9.1 - Denial of Service via Crafted Operator Name

CVE-2022-27937 HIGH

Pexip Infinity < 27.3 - Denial of Service via H.264 Resource Consumption

CVE-2022-2406 MEDIUM

Mattermost <= 6.7.0 - Authenticated Denial of Service via Slack Import REST API

CVE-2022-31080 MEDIUM

KubeEdge <1.11.1, <1.10.2, <1.9.4 - DoS

CVE-2022-31079 MEDIUM

KubeEdge <1.11.1, 1.10.2, 1.9.4 - DoS

CVE-2022-31078 MEDIUM

KubeEdge < 1.9.4, 1.10.0-1.10.1 - Authenticated Denial of Service via CloudCore Router REST Handler

CVE-2022-31075 MEDIUM

KubeEdge < 1.9.4, 1.10.0-1.10.1, >=1.11.0 <1.11.1 - Authenticated Denial of Service via Large HTTP Request Body

CVE-2022-31074 MEDIUM

KubeEdge < 1.9.4, 1.10.0-1.10.1, 1.11.0 - Denial of Service via Large HTTP Request Body

CVE-2022-31073 MEDIUM

KubeEdge < 1.9.4, 1.10.0-1.10.1 - Denial of Service via Large HTTP Request Body

CVE-2022-30792 HIGH

CODESYS V3 Control Runtime - Unauthenticated Denial of Service via CmpChannelServer Connection Exhaustion

CVE-2022-30791 HIGH

CODESYS V3 - Unauthenticated Denial of Service via TCP Connection Exhaustion

CVE-2022-20808 HIGH

Cisco Smart Software Manager On-Prem 8-202112 - Authenticated Denial of Service via Device Registration Requests

CVE-2022-31129 HIGH

moment 2.18.0-2.29.3 - Denial of Service via RFC2822 Date Parsing

CVE-2022-30591 HIGH

quic-go < 0.27.0 - Denial of Service via MTU Discovery Probe Timer Overflow

CVE-2022-31110 MEDIUM

RSSHub < 2022-06-21 - Denial of Service via Inefficient Regular Expression in Filter Parameters

CVE-2022-26477 HIGH

Apache SystemDS < 2.2.1 - Uncontrolled Resource Consumption via For Loop Termination Condition

CVE-2022-31016 MEDIUM

Argo CD 0.7.0-2.1.15 - Authenticated Denial of Service via Large File Processing

CVE-2022-31803 MEDIUM

CODESYS Gateway Server 2.0-2.3.9.38 - Unauthenticated Denial of Service via TCP Connection Exhaustion

CVE-2022-29866 HIGH

OPC UA .NET Standard Stack < 1.4.368.58 - Denial of Service via Memory Resource Exhaustion

CVE-2022-29864 HIGH

OPC UA .NET Standard Stack < 1.4.368.58 - Denial of Service via Message Flood

CVE-2022-27889 MEDIUM

Palantir Foundry Multipass < 3.647.0 - Denial of Service via Authentication/Authorization Operations

CVE-2022-31054 HIGH

Argo Events < 1.7.1 - Denial of Service via HandleRoute Endpoint

CVE-2022-29225 HIGH

envoyproxy/envoy < 1.22.1 - Denial of Service via Zip Bomb Decompression

CVE-2022-31030 MEDIUM

containerd < 1.5.13 - Uncontrolled Resource Consumption via ExecSync API

Previous Page 76 of 126 Next

Details

Vulnerabilities 3,146

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy