Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,867 vulnerabilities with CWE-770

CVE-2025-46727 HIGH

Rack <2.2.14,3.0.16,3.1.14 - Info Disclosure

CVE-2025-36504 HIGH

F5 BIG-IP 16.1.0-16.1.5 - Memory Exhaustion via HTTP/2 httprouter Profile

CVE-2025-1000 MEDIUM

IBM Db2 11.5.0-11.5.9 and 12.1.0-12.1.1 - Authenticated Denial of Service via Automatic Client Rerouting

CVE-2025-0915 MEDIUM

IBM Db2 11.5.0-11.5.9 and 12.1.0-12.1.1 - Authenticated Denial of Service via Memory Resource Exhaustion

CVE-2025-32777 HIGH

Volcano < 1.9.1 - Resource Allocation Without Limits

CVE-2025-24341 MEDIUM

Bosch Rexroth ctrlX OS 1.12.0-1.12.8, 1.20.0-1.20.6, 2.6.0-2.6.7 Authenticated DoS via HTTP Requests

CVE-2025-30202 HIGH

vLLM 0.5.2-0.8.5 - Denial of Service and Data Exposure via ZeroMQ Socket

CVE-2025-43857 MEDIUM

Net::IMAP DoS via Malicious Server Literal Byte Count

CVE-2025-46687 MEDIUM

QuickJS <2025-04-26 - Buffer Overflow

CVE-2025-30409 MEDIUM

Acronis Cyber Protect Cloud Agent <39904 - DoS

CVE-2025-0639 MEDIUM

GitLab 16.7-17.9.6, 17.10-17.10.4, 17.11 - Denial of Service via Issue Preview

CVE-2025-35965 MEDIUM

Mattermost 9.11.0-9.11.10, 10.4.0-10.4.2, 10.5.0 - Denial of Service via UpdateRunTaskActions GraphQL Operation

CVE-2025-21605 HIGH

Redis 2.6.0-7.4.2 - Unauthenticated Memory Exhaustion via Unlimited Output Buffer Growth

CVE-2025-32959 MEDIUM

CUBA Platform < 7.2.23 - Denial of Service via Unrestricted File Upload Size

CVE-2025-32952 MEDIUM

Haulmont Cuba Platform < 7.2.23 - Resource Allocation Without Limits

CVE-2025-3734 MEDIUM

Drupal Stage File Proxy <3.1.5 - DoS

CVE-2025-0122 MEDIUM

Palo Alto Networks Prisma SD-WAN ION - DoS

CVE-2025-29917 MEDIUM

Suricata < 7.0.9 - Denial of Service via Base64 Decode Bytes Setting

CVE-2025-29916 MEDIUM

Suricata < 7.0.9 - Denial of Service via Unbounded Hash Table Allocation

CVE-2025-1677 MEDIUM

GitLab < 17.8.7, 17.9 < 17.9.6, 17.10 < 17.10.4 - Denial of Service via CI Pipeline Export Payload Injection

CVE-2025-26480 MEDIUM

Dell PowerScale OneFS 9.5.0.0-9.10.0.0 - Unauthenticated Denial of Service via Uncontrolled Resource Consumption

CVE-2025-32386 MEDIUM

Helm < 3.17.3 - Denial of Service via Malicious Chart Archive Expansion

CVE-2025-3475 MEDIUM

Drupal WEB-T < 1.1.0 - Excessive Resource Allocation and Content Spoofing

CVE-2025-32381 MEDIUM

mlc-ai xgrammar < 0.1.18 - Denial of Service via Unbounded Grammar Cache

CVE-2025-32380 HIGH

Apollo Router < 1.61.2 and 2.0.0-alpha.0-2.1.1 - Denial of Service via Named Fragment Validation

Previous Page 26 of 75 Next

Details

Vulnerabilities 1,867

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy