Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,867 vulnerabilities with CWE-770

CVE-2025-21866 MEDIUM

Linux Kernel - Memory Corruption via PowerPC Text Patching Area

CVE-2025-27911 MEDIUM

Datalust Seq < 2024.3.13545 - Denial of Service via Message Template Identifier Expansion

CVE-2025-27795 MEDIUM

GraphicsMagick < 1.3.46 - Denial of Service via JXL Image Dimension Resource Exhaustion

CVE-2025-26699 MEDIUM

Django 4.2-5.1 - Denial of Service via django.utils.text.wrap()

CVE-2025-27513 HIGH

OpenTelemetry.Api 1.10.0-1.11.1 - Denial of Service via Tracestate Header Processing

CVE-2025-27219 MEDIUM

CGI gem < 0.4.2 - Denial of Service via Unbounded Cookie Value Parsing

CVE-2025-27419 HIGH

WeGIA < 3.2.16 - Unauthenticated Denial of Service via Aggressive Spidering

CVE-2025-26466 MEDIUM

OpenSSH - Denial of Service via Ping Packet Memory Exhaustion

CVE-2025-22273 CRITICAL

CyberArk Endpoint Privilege Manager <24.7.1 - DoS

CVE-2025-27157 MEDIUM

Mastodon <4.2.16-4.3.4 - Info Disclosure

CVE-2025-22869 HIGH

go/ssh < 0.35.0 - Denial of Service via Slow Key Exchange

CVE-2025-27144 MEDIUM

go-jose < 4.0.5 - Denial of Service via Malformed JWT Token Parsing

CVE-2025-26819 HIGH

Monero < 0.18.3.4 - Denial of Service via Unlimited HTTP Server Response

CVE-2025-1059 HIGH

Schneider Electric ASCO 5310 and 5350 - Denial of Service via Malicious Webserver Packets

CVE-2025-25186 MEDIUM

Net::IMAP 0.3.2-0.3.7, 0.4.0-0.4.18, 0.5.0-0.5.5 - Denial of Service via Memory Exhaustion in Response Parser

CVE-2025-21690 MEDIUM

Linux Kernel < 5.15.178, 5.16.0-6.1.127, 6.2.0-6.6.74, 6.7.0-6.12.11, 6.13.0 - DoS via SCSI I/O Error Log Flood

CVE-2025-1072 MEDIUM

GitLab 7.14.1-17.3.6, 17.4-17.4.3, 17.5-17.5.1 - Denial of Service via Fogbugz Import

CVE-2025-24312 HIGH

F5 Big-ip Advanced Firewall Manager < 15.1.10.6.0.11.6 - Resource Allocation Without Limits

CVE-2025-24127 MEDIUM

iPadOS < 17.7.4 - Denial of Service via File Parsing

CVE-2025-24112 MEDIUM

macOS < 14.7.3 and < 15.3 - Denial of Service via File Parsing

CVE-2025-24086 MEDIUM

iPadOS < 17.7.4 - Denial of Service via Image Processing

CVE-2025-0695 MEDIUM

Cesanta Frozen <1.7 - Memory Corruption

CVE-2025-24033 HIGH

fastify/multipart < 8.3.1 and 9.0.0-9.0.3 - Resource Exhaustion via Uncleaned Temporary Files

CVE-2025-0635 HIGH

M-Files Server < 25.1.14445.5 - Unauthenticated Denial of Service

CVE-2025-23028 MEDIUM

Cilium 1.14.0-1.14.7, 1.15.0-1.15.11, 1.16.0-1.16.4 - Denial of Service via Crafted DNS Response

Previous Page 28 of 75 Next

Details

Vulnerabilities 1,867

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy