CWE-400
High likelihoodUncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
3,152 vulnerabilities with CWE-400
CVE-2020-24504
MEDIUM
Intel(R) Ethernet E810 Adapter <1.0.4 - DoS
CVSS 5.5
CVE-2020-35559
MEDIUM
mymbCONNECT24 & mbCONNECT24 < 2.6.2 - Authenticated Resource Exhaustion via IP
CVSS 4.3
CVE-2020-4956
MEDIUM
IBM Spectrum Protect Operations Center 7.1.0.000-7.1.12.999 - Denial of Service via RPC Cache Dump
CVSS 4.8
CVE-2020-13949
HIGH
Apache Thrift 0.9.3-0.13.0 - Uncontrolled Resource Consumption via Short RPC Messages
CVSS 7.5
CVE-2020-35498
HIGH
openvswitch 2.5.0-2.5.11 - Denial of Service via Crafted Packet Megaflow Width
CVSS 7.5
CVE-2020-5023
HIGH
IBM Spectrum Protect Plus 10.1.0-10.1.7 - Denial of Service via Arbitrary Data Injection
CVSS 7.5
CVE-2020-28493
MEDIUM
Jinja2 < 2.11.3 - Uncontrolled Resource Consumption via _punctuation_re Regex
CVSS 5.3
CVE-2020-27295
HIGH
Honeywell OPC UA Tunneller < 6.3.0.8233 - Denial of Service via Uncontrolled Resource Consumption
CVSS 7.5
CVE-2020-8295
HIGH
Nextcloud Server < 20.0.0 - Denial of Service via Password Reset
CVSS 7.5
CVE-2020-8293
MEDIUM
Nextcloud Server <20.0.2-18.0.11 - Info Disclosure
CVSS 6.5
CVE-2020-4766
HIGH
IBM MQ Internet Pass-Thru 2.1 and 9.2 - Denial of Service via Malformed MQ Data Requests
CVSS 7.5
CVE-2020-9203
LOW
Huawei P30 Firmware < 10.1.0.168(c00e168r2p11) - Denial of Service via Broadcast Message
CVSS 3.3
CVE-2020-36048
HIGH
Engine.IO < 4.0.0 - Denial of Service via Long Polling Transport
CVSS 7.5
CVE-2020-29490
HIGH
Dell EMC Unity <5.0.4.0.5.012 - DoS
CVSS 7.5
CVE-2020-35857
HIGH
trust-dns-server 0.16.0-0.18.0 - Denial of Service via DNS MX and SRV Null Target Handling
CVSS 7.5
CVE-2020-35916
MEDIUM
image < 0.23.12 - Uncontrolled Resource Consumption
CVSS 5.5
CVE-2020-26289
HIGH
date-and-time < 0.14.2 - Denial of Service via Regular Expression Parsing
CVSS 7.5
CVE-2020-27722
MEDIUM
BIG-IP APM 13.1.0-13.1.3.4, 14.1.0-14.1.3, 15.0.0-15.0.1.3 - Uncontrolled Resource Consumption in VDI Plugin
CVSS 6.5
CVE-2020-27724
MEDIUM
BIG-IP APM 11.6.1-11.6.5 - Authenticated Uncontrolled Resource Consumption via VPN Tunnel Traffic
CVSS 6.5
CVE-2020-5682
HIGH
GROWI < 3.8.2 - Denial of Service via Uncontrolled Resource Consumption
CVSS 7.5
CVE-2020-26264
MEDIUM
Go Ethereum < 1.9.25 - Denial of Service via Malicious GetProofsV2 Request
CVSS 6.5
CVE-2020-26409
MEDIUM
Gitlab CE/EE >=10.3,<13.4.7,-<13.5.5,-<13.6.2 - DoS
CVSS 4.3
CVE-2020-12516
HIGH
WAGO 750-352 and 750-88x Firmware < fw10 - Denial of Service
CVSS 7.5
CVE-2020-26257
MEDIUM
Matrix Synapse < 1.23.1 - Denial of Service via Malformed Federation Event Injection
CVSS 6.5
CVE-2020-26256
MEDIUM
fast-csv < 4.3.6 - Regular Expression Denial of Service via ignoreEmpty Parsing Option
CVSS 5.7
Details
Vulnerabilities
3,152
Exploit Likelihood
High