Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,867 vulnerabilities with CWE-770

CVE-2024-56374 MEDIUM

Django 4.2-4.2.17 5.0-5.0.10 5.1-5.1.4 - Denial of Service via IPv6 Address Validation

CVE-2024-46668 HIGH

FortiOS 6.4.0-6.4.15, 7.0.0-7.0.15, 7.2.0-7.2.8, 7.4.0-7.4.4 - Unauthenticated Denial of Service via Large File Uploads

CVE-2024-46667 HIGH

Fortinet FortiSIEM 5.3-7.1.5 - Denial of Service via TLS Connection Exhaustion

CVE-2024-46666 MEDIUM

FortiOS 6.4.0-7.4.4, 7.6.0 - Unauthenticated Denial of Service via GUI Endpoint Requests

CVE-2024-57664 HIGH

openlink virtuoso-opensource 7.2.11 - Denial of Service via sqlg_group_node SQL Statement

CVE-2024-57663 HIGH

openlink virtuoso-opensource 7.2.11 - Denial of Service via sqlg_place_dpipes SQL Statement

CVE-2024-57662 HIGH

openlink virtuoso-opensource 7.2.11 - Denial of Service via sqlg_hash_source

CVE-2024-46921 MEDIUM

Samsung Exynos and Modem Firmware - Denial of Service via RRC Setup Procedure

CVE-2024-45100 MEDIUM

IBM Security ReaQta 3.12-3.12.13 - Authenticated Denial of Service via Administration Requests

CVE-2024-43064 HIGH

Driver/Application/SMMU Client - DoS

CVE-2024-56332 MEDIUM

Next.js 13.0.0-13.5.7 - Denial of Service via Server Actions

CVE-2024-53647 MEDIUM

Trend Micro ID Security < 3.0 - Denial of Service via Unlimited Email Verification Requests

CVE-2024-56722 MEDIUM

Linux Kernel 4.9-6.1.120, 6.2.0-6.6.64, 6.7.0-6.11.11, 6.12.0-6.12.2 - DoS via Excessive RDMA Logging

CVE-2024-56584 MEDIUM

Linux Kernel 5.1-6.1.119, 6.2-6.6.65, 6.7-6.12.4 - Denial of Service via io_uring xa_store Allocation Failure

CVE-2024-54538 HIGH

iPadOS < 17.7.1 - Denial of Service via Improved Input Validation

CVE-2024-56319 HIGH

Matter < e3277eb - Denial of Service via Unlimited User Label Appends

CVE-2024-9367 MEDIUM

GitLab 13.9-17.4.5 17.5-17.5.3 17.6-17.6.1 - Denial of Service via Changelog Template Parsing

CVE-2024-54501 MEDIUM

iPadOS < 17.7.3 - Denial of Service via Maliciously Crafted File

CVE-2024-44241 CRITICAL

iPadOS < 18.1 - Denial of Service or Arbitrary Code Execution in DCP Firmware

CVE-2024-55563 MEDIUM

Bitcoin Core < 27.2 - Transaction-Relay Jamming via Off-Chain Protocol Attack

CVE-2024-41762 MEDIUM

IBM Db2 10.5.0-10.5.10 - Denial of Service via Specially Crafted Query

CVE-2024-12254 HIGH

CPython 3.12.0-3.12.8, 3.13.0-3.13.1, 3.14.0a1-3.14.0a2 - Resource Consumption in asyncio

CVE-2024-53907 HIGH

Django 4.2-4.2.16 5.0-5.0.9 5.1-5.1.3 - Denial of Service via Nested Incomplete HTML Entities

CVE-2024-53857 HIGH

rPGP < 0.14.1 - Resource Exhaustion via Crafted Message Parsing

CVE-2024-48844 HIGH

ABB ASPECT, NEXUS, and MATRIX Firmware < 3.08.03 - Denial of Service

Previous Page 32 of 75 Next

Details

Vulnerabilities 1,867

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy