Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,858 vulnerabilities with CWE-770

CVE-2026-0531 MEDIUM

Kibana 7.10.0-7.17.29 - Authenticated Denial of Service via Bulk Retrieval Request

CVE-2026-0530 MEDIUM

Kibana 7.10.0-7.17.29 - Denial of Service via Fleet Resource Exhaustion

CVE-2026-22773 MEDIUM

vLLM 0.6.4-0.11.9 - Denial of Service via Malformed 1x1 Pixel Image

CVE-2026-22025 LOW

CryptoLib < 1.4.3 - Use-After-Free in KMC Server Error Handling

CVE-2025-46638 HIGH

Dell Bsafe Ssl-j < 7.4 - Allocation of Resources Without Limits or Throttling

CVE-2025-11482 HIGH

Allocation of Resources Without Limits or Throttling in the OPC-UA Server

CVE-2025-57798 MEDIUM

Joplin has Denial of Service (DoS) via Uncontrolled Resource Allocation through Title Input

CVE-2025-14870 HIGH

Allocation of Resources Without Limits or Throttling in GitLab

CVE-2025-32425 MEDIUM

AutoGPT < 0.6.32 Platform Containers - Docker Log Disk Exhaustion Denial of Service

CVE-2025-69233 MEDIUM

Apache CloudStack: Domain/account resources limits not honored

CVE-2025-14341 HIGH

Input Data Manipulation in DivvyDrive Information Technologies' DivvyDrive

CVE-2025-66369 HIGH

Samsung Exynos MM - Denial of Service via 5G NR NAS Registration Accept Message Handling

CVE-2025-70071 MEDIUM

Assimp 6.0.2 - Denial of Service via FBX Parser Vector Data Array

CVE-2025-70069 HIGH

Assimp 6.0.2 - Denial of Service via FBXConverter.cpp ConvertMeshMultiMaterial Method

CVE-2025-36122 MEDIUM

IBM® Db2® is vulnerable to a denial of service with a specially crafted query when stmtheap is set to automatic

CVE-2025-51846 HIGH

CryptPad unbounded WebSocket frame flood

CVE-2025-6016 MEDIUM

Allocation of Resources Without Limits or Throttling in GitLab

CVE-2025-3922 MEDIUM

Allocation of Resources Without Limits or Throttling in GitLab

CVE-2025-0186 MEDIUM

Allocation of Resources Without Limits or Throttling in GitLab

CVE-2025-66487 LOW

IBM Aspera Shares 1.9.9-1.11.0 - Email Rate Limit Denial of Service

CVE-2025-13436 MEDIUM

Allocation of Resources Without Limits or Throttling in GitLab

CVE-2025-13929 HIGH

GitLab 10.0-18.7.5, 18.8-18.8.5, 18.9-18.9.1 - Unauthenticated Denial of Service via Repository Archive Endpoint

CVE-2025-13690 MEDIUM

GitLab 16.11-18.7.5, 18.8-18.8.5, 18.9-18.9.1 - Authenticated Denial of Service via Webhook Custom Header Input

CVE-2025-12576 MEDIUM

GitLab 9.3-18.7.5, 18.8-18.8.5, 18.9-18.9.1 - Authenticated Denial of Service via Webhook Response Handling

CVE-2025-3525 MEDIUM

GitLab 9.0-18.7.4, 18.8-18.8.4, 18.9-18.9.0 - Authenticated Denial of Service via CI Trigger API

Previous Page 14 of 75 Next

Details

Vulnerabilities 1,858

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy