Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-459

CWE-459

Incomplete Cleanup

Parent: CWE-404 - Improper Resource Shutdown or Release

The product does not properly "clean up" and remove temporary or supporting resources after they have been used.

189 vulnerabilities with CWE-459

CVE-2026-5038 MEDIUM

multer vulnerable to Denial of Service via incomplete cleanup of aborted uploads

CVE-2026-53867 MEDIUM

Capgo < 12.128.2 - Orphaned File Retention via Profile Image Replacement

CVE-2026-33232 HIGH

AutoGPT: Unauthenticated DoS via Disk Space Exhaustion

CVE-2026-0427 MEDIUM

AMD Instinct MI210/MI300X/MI325X >=GIM 8.2.0.K - Incomplete Cleanup of Shared Register Resources

CVE-2026-34263 CRITICAL

Missing authentication check in SAP Commerce cloud configuration

CVE-2026-43395 MEDIUM

drm/xe/sync: Cleanup partially initialized sync on parse failure

CVE-2026-35361 LOW

uutils coreutils mknod Security Label Inconsistency and Broken Cleanup on SELinux Systems

CVE-2026-6830 LOW

Nesquena Hermes WebUI Environment Variable Credential Leakage via Profile Switch

CVE-2026-28268 CRITICAL

Vikunja < 2.1.0 - Persistent Account Takeover via Password Reset Token Reuse

CVE-2026-3304 HIGH

Multer < 2.1.0 - Denial of Service via Malformed Request Handling

CVE-2026-28196 LOW

JetBrains TeamCity <2025.11.3 - Info Disclosure

CVE-2026-21438 MEDIUM

webtransport-go < 0.10.0 - Denial of Service via Unbounded Memory Consumption

CVE-2025-66467 HIGH

Apache CloudStack: MinIO policy remains intact on bucket deletion

CVE-2025-15331 MEDIUM

Tanium Connect 5.22.0-5.22.99 - Uncontrolled Resource Consumption

CVE-2025-66675 HIGH

Apache Struts 2.0.0-6.7.4, 7.0.0-7.0.3 - Denial of Service via Multipart Request File Leak

CVE-2025-64775 HIGH

Apache Struts 2.0.0-6.7.0 and 7.0.0-7.0.3 - Denial of Service via Multipart Request Processing

CVE-2025-29934 MEDIUM

AMD EPYC 9004/9005/8004/Embedded 7003/9004/9005/8004 Series Processors - Incomplete Cleanup via Stale TLB Entries

CVE-2025-60730 HIGH

PerfreeBlog v4.0.11 - Path Traversal

CVE-2025-6338 CRITICAL

Qt <6.9.2 - Denial of Service

CVE-2025-59781 HIGH

F5 BIG-IP - Denial of Service via DNS Cache Memory Exhaustion

CVE-2025-20293 MEDIUM

Cisco IOS XE Software - Unauthenticated PKI Server Access via Incomplete Day One Setup Cleanup

CVE-2025-55910 MEDIUM

CMSEasy < 7.7.8.0 - Arbitrary File Deletion via database_admin.php

CVE-2025-0032 HIGH

AMD CPU microcode - Privilege Escalation

CVE-2025-43711 HIGH

Tunnelblick 3.5beta06-7.0 - Unauthenticated Arbitrary Code Execution via Crafted Application Bundle

CVE-2025-38177 MEDIUM

Linux Kernel - Incomplete Cleanup in sch_hfsc

Page 1 of 8 Next

Details

Vulnerabilities 189

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy