CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,146 vulnerabilities with CWE-400
CVE-2022-1708 HIGH
CRI-O <1.19.7 and >=1.24.0 <1.24.1 - Denial of Service via ExecSync Output Handling
CVSS 7.5
CVE-2022-31028 HIGH
MinIO <RELEASE.2022-06-02T02-11-04Z - DoS
CVSS 7.5
CVE-2022-22556 LOW
Dell PowerStoreOS < 2.1.0.0 - Unauthenticated Denial of Service via Uncontrolled Resource Consumption
CVSS 3.7
CVE-2022-1982 MEDIUM
Mattermost < 6.3.8 and 6.6.0 - Authenticated Denial of Service via Crafted SVG Attachment
CVSS 4.3
CVE-2022-31018 HIGH
Play Framework 2.8.3-2.8.15 - Denial of Service via Deeply-Nested JSON Form Binding
CVSS 7.5
CVE-2022-27781 HIGH
curl < 7.83.1 - Denial of Service via Malicious Server Certificate Chain
CVSS 7.5
CVE-2022-1797 MEDIUM
Rockwellautomation Compactlogix 5380 Firmware - Denial of Service
CVSS 6.8
CVE-2022-29243 MEDIUM
Nextcloud Server <22.2.7-23.0.4 - Info Disclosure
CVSS 4.3
CVE-2022-29202 MEDIUM
TensorFlow < 2.6.4 - Denial of Service via tf.ragged.constant Input Validation
CVSS 5.5
CVE-2022-29177 MEDIUM
Go Ethereum < 1.10.17 - Denial of Service via Crafted P2P Messages
CVSS 5.9
CVE-2022-27640 MEDIUM
SIMATIC CP 442-1 RNA and CP 443-1 RNA < 1.5.18 - Denial of Service via ARP Storming
CVSS 6.5
CVE-2022-30551 HIGH
OPC UA Legacy Java Stack 2022-04-01 - Denial of Service via Crafted Message Resource Exhaustion
CVSS 7.5
CVE-2022-28191 MEDIUM
NVIDIA Virtual GPU Manager 11.0-11.8 - Unauthenticated Denial of Service via Uncontrolled Resource Consumption
CVSS 5.5
CVE-2022-1699 HIGH
organizr < 2.1.2000 - Uncontrolled Resource Consumption
CVSS 7.5
CVE-2022-29885 HIGH
Apache Tomcat 8.5.38-8.5.78 and 10.1.0-M1-10.1.0-M14 - Denial of Service via EncryptInterceptor
CVSS 7.5
CVE-2022-29145 HIGH
.NET and Visual Studio - Denial of Service
CVSS 7.5
CVE-2022-29117 HIGH
.NET and Visual Studio - Denial of Service
CVSS 7.5
CVE-2022-24040 MEDIUM
Desigo DXR2-5, PXC3-18, PXC4-10, PXC5-10884 - DoS
CVSS 6.5
CVE-2022-24902 LOW
tkvideoplayer < 2.0.0 - Uncontrolled Resource Consumption
CVSS 2.9
CVE-2022-29167 HIGH
Hawk < 9.0.1 - Denial of Service via Host Header Regular Expression
CVSS 7.4
CVE-2022-29480 MEDIUM
F5 BIG-IP 11.6.x 12.1.x < 13.1.5 - Uncontrolled Resource Consumption via big3d Requests
CVSS 5.3
CVE-2022-28701 HIGH
F5 BIG-IP <16.1.2.2 - Memory Corruption
CVSS 7.5
CVE-2022-28691 HIGH
F5 BIG-IP <16.1.2.2, 15.1.x <15.1.5, 14.1.x <14.1.4.6, 13.1.x <13.1...
CVSS 7.5
CVE-2022-27182 MEDIUM
F5 BIG-IP 16.1.x < 16.1.2.2, 15.1.x < 15.1.5.1, 14.1.x < 14.1.4.6 - Uncontrolled Resource Consumption via Packet Filter
CVSS 5.3
CVE-2022-27181 MEDIUM
F5 BIG-IP APM < 16.1.2.2, < 15.1.5.1, < 14.1.4.6, < 13.1.5 - Uncontrolled Resource Consumption via NTLM Auth
CVSS 5.3
Details
Vulnerabilities 3,146
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits