Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,148 vulnerabilities with CWE-400

CVE-2021-41168 MEDIUM

reddit/snudown < 1.7.0 - Denial of Service via Reference Table Hash Collision

CVE-2021-41167 HIGH

modern-async < 1.0.4 - Allocation of Resources Without Limits or Throttling in forEachSeries and forEachLimit

CVE-2021-35559 MEDIUM

Oracle GraalVM Enterprise Edition 20.3.3 and 21.2.0 - Unauthenticated Partial Denial of Service in Swing

CVE-2021-31368 HIGH

Juniper JUNOS OS < 18.1 - Unauthenticated Denial of Service via Out-of-Band Management Ethernet Port Flood

CVE-2021-31365 MEDIUM

Junos OS EX2300/EX3400/EX4300 < 18.1 - Denial of Service via Layer 2 Frame Flood

CVE-2021-37137 HIGH

Netty < 4.1.68 - Uncontrolled Resource Consumption via Snappy Frame Decoder

CVE-2021-37136 HIGH

Netty < 4.1.68 - Denial of Service via Bzip2 Decompression OOME

CVE-2021-22964 HIGH

Fastify-Static >=4.2.4 <4.4.1 - Open Redirect

CVE-2021-33609 MEDIUM

com.vaadin:vaadin-server <8.14.0 - DoS

CVE-2021-41546 HIGH

Siemens Ruggedcom Rox Mx5000 Firmware < 2.14.1 - Denial of Service

CVE-2021-20600 MEDIUM

Mitsubishi Electric MELSEC iQ-R R12CCPU-V < 16 - DoS via Packet Flood

CVE-2021-41115 MEDIUM

zulip < 4.7 - Denial of Service via Linkifier Regular Expression Complexity

CVE-2021-41118 MEDIUM

DynamicPageList3 < 3.3.6 - Denial of Service via Regex Date Parameter

CVE-2021-39877 HIGH

GitLab 12.2.0-14.1.6 - Uncontrolled Resource Consumption via Specially Crafted File

CVE-2021-3822 HIGH

jsoneditor < 9.5.6 - Denial of Service via Inefficient Regular Expression

CVE-2021-22010 HIGH

VMware Cloud Foundation 3.0-4.0 and vCenter Server - Denial of Service via VPXD Service Memory Consumption

CVE-2021-39229 HIGH

Apprise < 0.9.5.1 - Denial of Service via IFTTT Plugin Regex

CVE-2021-32838 HIGH

flask-restx < 0.5.1 - Regular Expression Denial of Service via Email Validation

CVE-2021-32839 HIGH

sqlparse 0.4.0-0.4.1 - Denial of Service via SQL Comment Regex Backtracking

CVE-2021-23042 HIGH

BIG-IP 12.1.0-12.1.5 - Uncontrolled Resource Consumption via HTTP Profile

CVE-2021-23047 MEDIUM

F5 BIG-IP Access Policy Manager 11.6.1-11.6.4 - Uncontrolled Resource Consumption via OCSP AIA Verification

CVE-2021-23053 MEDIUM

BIG-IP Advanced WAF/ASM <15.1.3, 14.1.3.1, 13.1.3.6 - Info Disclosure

CVE-2021-23049 HIGH

BIG-IP <16.0.1.2, 15.1.x <15.1.3 - DoS

CVE-2021-3749 HIGH

axios <0.21.2 - Denial of Service via Inefficient Regular Expression

CVE-2021-32832 MEDIUM

Rocket.Chat < 3.11.3 - Denial of Service via Regular Expression

Previous Page 84 of 126 Next

Details

Vulnerabilities 3,148

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy