Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,867 vulnerabilities with CWE-770

CVE-2024-27013 MEDIUM

Linux Kernel 2.6.35-4.19.312 - Denial of Service via Excessive Packet Dumping in TUN Device

CVE-2024-34046 HIGH

O-RAN E2T I-Release - Denial of Service in Prometheus Metric Increment Function

CVE-2024-4183 MEDIUM

Mattermost 8.1.0-8.1.11, 9.6.0-rc1-9.6.0, 9.5.0-9.5.2, 9.4.0-9.4.4 - DoS via Session Table Flooding

CVE-2024-22091 LOW

Mattermost <8.1.11, <9.5.2, <9.6.0 - DoS

CVE-2024-25026 MEDIUM

IBM WebSphere Application Server <24.0.0.4 - DoS

CVE-2024-32660 HIGH

FreeRDP < 3.5.1 - Denial of Service via Invalid Huge Allocation Size

CVE-2024-31208 MEDIUM

Synapse < 1.105.1 - Denial of Service via V2 State Resolution Algorithm

CVE-2024-31994 MEDIUM

Mealie < 1.4.0 - Denial of Service via Image Request Resource Exhaustion

CVE-2024-31992 MEDIUM

Mealie < 1.4.0 - Denial of Service via Uncontrolled Resource Consumption in safe_scrape_html

CVE-2024-26894 MEDIUM

Linux Kernel Memory Leak in ACPI Processor Idle Power Exit

CVE-2024-21060 MEDIUM

MySQL Server <= 8.0.36 and 8.3.0 - Authenticated Denial of Service in Data Dictionary

CVE-2024-21011 LOW

Oracle GraalVM and JDK - Unauthenticated Partial Denial of Service via Hotspot Component

CVE-2024-31446 HIGH

OpenComputers < 1.8.4 - Denial of Service via Lua VM Thread Blocking

CVE-2024-3302 LOW

Firefox < 125, Firefox ESR < 115.10, Thunderbird < 115.10 - DoS

CVE-2024-1666 MEDIUM

lunary < 1.2.7 - Unauthenticated Resource Exhaustion via Radar Creation Bypass

CVE-2024-32035 MEDIUM

ImageSharp < 2.1.8 - Denial of Service via Excessive Memory Usage in Image Decoders

CVE-2024-29903 MEDIUM

sigstore cosign < 2.2.4 - Denial of Service via Malicious Artifact Memory Allocation

CVE-2024-29902 MEDIUM

sigstore/cosign < 2.2.4 - Denial of Service via Large Attachment Memory Exhaustion

CVE-2024-3382 HIGH

Palo Alto Networks PAN-OS - Memory Corruption

CVE-2024-26816 MEDIUM

Linux Kernel - KASLR Base Leak via .notes Section Relocations

CVE-2024-26276 LOW

Siemens JT2Go < 2312.0004 - Denial of Service via X_T File Parsing

CVE-2024-0081 HIGH

NVIDIA NeMo - Denial of Service via ASR Webapp Resource Allocation

CVE-2024-28949 MEDIUM

Mattermost Server 8.1.0-8.1.10, 9.3.0-9.3.2, 9.4.0-9.4.3, 9.5.0-9.5.1 - Denial of Service via Unlimited User Preferences

CVE-2024-27316 HIGH

Apache HTTP Server 2.4.17-2.4.58 - Denial of Service via HTTP/2 Header Buffering

CVE-2024-30249 HIGH

Cloudburst Network <1.0.0.CR1-20240330.101522-15 - DoS

Previous Page 39 of 75 Next

Details

Vulnerabilities 1,867

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy