Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-400

CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,148 vulnerabilities with CWE-400

CVE-2021-33818 HIGH

UniFi Protect G3 FLEX Camera UVC.v4.30.0.67 - Denial of Service via Incomplete HTTP Request

CVE-2021-30468 HIGH

Apache CXF < 3.3.11 and 3.4.0-3.4.4 - Denial of Service via Malformed JSON

CVE-2021-22906 MEDIUM

Nextcloud <1.5.3, 1.6.3, 1.7.1 - DoS

CVE-2021-22904 HIGH

Actionpack <6.1.3.2, 6.0.3.7, 5.2.4.6, 5.2.6 - DoS

CVE-2021-22902 HIGH

Rails 6.0.0-6.0.3.6 and 6.1.0-6.1.3.1 - Denial of Service via Mime Type Parser

CVE-2021-22181 HIGH

GitLab 11.8.0-13.10.4 - Denial of Service via Recursive Pipeline Relationship

CVE-2021-20591 HIGH

Mitsubishi Electric MELSEC iQ-R - DoS

CVE-2021-23852 MEDIUM

Bosch CPP4 CPP6 CPP7 CPP7.3 CPP13 Firmware - Authenticated Denial of Service via Invalid URL Parameter

CVE-2021-31340 HIGH

Siemens Simatic Rf166c Firmware < 1.3.2 - Denial of Service

CVE-2021-22216 MEDIUM

GitLab < 13.10.5 - Denial of Service via Long Issue or Merge Request Description

CVE-2021-26945 MEDIUM

OpenEXR < 3.0.1 - Heap-Buffer Overflow via Integer Overflow

CVE-2021-26260 MEDIUM

OpenEXR < 3.0.1 - Heap-Buffer Overflow via DwaCompressor Integer Overflow

CVE-2021-23215 MEDIUM

OpenEXR < 3.0.1 - Heap-Buffer Overflow via Integer Overflow in DwaCompressor

CVE-2021-22116 HIGH

RabbitMQ < 3.8.16 - Denial of Service via AMQP 1.0 Client Connection Endpoint

CVE-2021-1564 MEDIUM

Cisco Video Surveillance 7000 Series IP Cameras < 2.12.3 - DoS via Cisco Discovery Protocol and LLDP

CVE-2021-1563 MEDIUM

Cisco Video Surveillance 7000 Series IP Cameras < 2.12.3 - DoS via Cisco Discovery Protocol and LLDP

CVE-2021-32657 MEDIUM

Nextcloud Server <10.0.11, 20.0.10, 21.0.2 - Info Disclosure

CVE-2021-33623 HIGH

trim-newlines < 3.0.1 and 4.x < 4.0.1 - Regular Expression Denial-of-Service in .end() Method

CVE-2021-20237 HIGH

libzmq 4.2.0-4.3.2 - Unauthenticated Memory Leak via Crafted PUB Messages

CVE-2021-20201 MEDIUM

spice < 0.14.92 - Denial of Service via TLS Renegotiation

CVE-2021-32640 MEDIUM

WS < 6.2.2 - Denial of Service

CVE-2021-20718 HIGH

mod_auth_openidc 2.4.0-2.4.7 - Denial of Service

CVE-2021-32617 MEDIUM

exiv2 < 0.27.4 - Denial of Service via Crafted Image Metadata Writing

CVE-2021-32455 MEDIUM

SITEL CAP/PRX Firmware 5.2.01 - Denial of Service via HTTP Request Flood

CVE-2021-32816 MEDIUM

ProtonMail Web Client <3.16.60 - DoS

Previous Page 86 of 126 Next

Details

Vulnerabilities 3,148

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy