CWE-400

High likelihood

Uncontrolled Resource Consumption

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly control the allocation and maintenance of a limited resource.

3,152 vulnerabilities with CWE-400
CVE-2020-3554 HIGH
Cisco ASA <9.12.4.3, >=9.13.0 <9.13.1.13 & FTD <6.2.2 - DoS via TCP Packet Processing
CVSS 7.5
CVE-2020-3533 HIGH
Cisco Firepower Threat Defense < 6.3.0.6 - Unauthenticated Denial of Service via SNMP Polling
CVSS 8.6
CVE-2020-3529 HIGH
Cisco Adaptive Security Appliance and Firepower Threat Defense - Unauthenticated Denial of Service via DTLS Traffic
CVSS 8.6
CVE-2020-3528 HIGH
Cisco ASA <9.6 & FTD <6.3.0.6 - DoS via OSPFv2 LLS Packet
CVSS 8.6
CVE-2020-3499 HIGH
Cisco Firepower Management Center - DoS
CVSS 8.6
CVE-2020-3373 HIGH
Cisco ASA & FTD DoS via IP Fragment Reassembly Memory Leak
CVSS 8.6
CVE-2020-3304 HIGH
Cisco Adaptive Security Appliance and Firepower Threat Defense - Unauthenticated Denial of Service via HTTP Request
CVSS 8.6
CVE-2020-1689 MEDIUM
Juniper Junos on EX4300-MP/EX4600/QFX5K - Unauthenticated Denial of Service via Layer 2 Frame Flood
CVSS 6.5
CVE-2020-1687 MEDIUM
Juniper Junos OS on EX4300-MP/EX4600/QFX5K Series - Denial of Service via VXLAN Encapsulated Layer 2 Frames
CVSS 6.5
CVE-2020-1684 HIGH
Juniper Junos OS on SRX Series DoS via HTTP Traffic Processing
CVSS 7.5
CVE-2020-1678 MEDIUM
Juniper Junos OS and Junos OS Evolved - Memory Leak via EVPN BGP Packet Processing
CVSS 6.5
CVE-2020-1670 MEDIUM
Juniper Junos OS on EX4300 Series DoS via IPv4 Packet Stream to IRB Interface
CVSS 6.5
CVE-2020-1668 MEDIUM
Juniper Junos OS EX2300 < 20.1R2 DoS via Multicast Packet Processing
CVSS 6.5
CVE-2020-11645 MEDIUM
B&R GateManager 4260 and 9250 <9.0.20262 and 8250 <9.2.620236042 - Authenticated Denial of Service
CVSS 6.5
CVE-2020-3543 MEDIUM
Cisco Video Surveillance 8000 Series IP Cameras - Denial of Service via Cisco Discovery Protocol Memory Leak
CVSS 6.5
CVE-2020-26164 MEDIUM
KDE Connect < 20.08.2 - Denial of Service via Crafted Network Packets
CVSS 5.5
CVE-2020-13333 MEDIUM
GitLab 13.1-13.3 - Denial of Service via Release Asset Link Update API
CVSS 4.3
CVE-2020-1903 MEDIUM
WhatsApp and WhatsApp Business < 2.20.61 - Denial of Service via Malicious Office Document Unzipping
CVSS 5.5
CVE-2020-1901 MEDIUM
WhatsApp < 2.20.91.4 - Denial of Service via Large Text Message with URLs
CVSS 5.3
CVE-2020-3560 HIGH
Cisco Aironet Access Points - Unauthenticated Denial of Service via Crafted UDP Packets
CVSS 8.6
CVE-2020-3559 HIGH
Cisco WLC & Aironet AP Software - Unauthenticated DoS via Auth Request Flood
CVSS 8.6
CVE-2020-3527 HIGH
Cisco IOS XE 16.9.0-16.9.4 - Unauthenticated Denial of Service via Oversized Frames
CVSS 8.6
CVE-2020-3512 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via PROFINET LLDP Message Handler
CVSS 7.4
CVE-2020-3510 HIGH
Cisco IOS XE Umbrella Connector - Unauthenticated Denial of Service via Malicious DNS Request Parsing
CVSS 8.6
CVE-2020-3508 HIGH
Cisco IOS XE for ASR 1000 with 20-Gbps ESP - Unauthenticated Denial of Service via ARP Message Flood
CVSS 7.4
Details
Vulnerabilities 3,152
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits