Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,867 vulnerabilities with CWE-770

CVE-2024-27268 MEDIUM

IBM WebSphere Application Server Liberty <24.0.0.4 - DoS

CVE-2024-28871 HIGH

libhtp 0.5.46 - Denial of Service via Malformed Request Parsing

CVE-2024-28182 MEDIUM

nghttp2 < 1.61.0 - Denial of Service via Unbounded HTTP/2 CONTINUATION Frames

CVE-2024-22189 HIGH

quic-go < 0.42.0 - Denial of Service via NEW_CONNECTION_ID Frame Flood

CVE-2024-26798 MEDIUM

Linux Kernel - Denial of Service via Font Data Restoration Failure in fbcon

CVE-2024-28870 HIGH

Suricata < 6.0.17 - Denial of Service via SSH Banner Parsing

CVE-2024-26743 MEDIUM

Linux Kernel 4.11-6.7.6 - Resource Exhaustion via RDMA/qedr User QP Creation

CVE-2024-26741 MEDIUM

Linux Kernel 6.1-6.1.79, 6.2-6.6.18, 6.7-6.7.6 - Resource Exhaustion via DCCP/TCP Socket Connection Failure Handling

CVE-2024-26710 MEDIUM

Linux Kernel - Denial of Service via KASAN Thread Size Increase

CVE-2024-26707 MEDIUM

Linux Kernel 5.9-6.7.6 DoS via HSR Supervision Frame Resource Exhaustion

CVE-2024-29086 LOW

OpenHarmony < 3.2.4 - Denial of Service via Stack Overflow

CVE-2024-26675 MEDIUM

Linux Kernel - Denial of Service via PPP Async MRU Allocation

CVE-2024-22353 MEDIUM

IBM WebSphere Application Server Liberty <24.0.0.4 - DoS

CVE-2024-2818 MEDIUM

GitLab < 16.8.5, 16.9 < 16.9.3, 16.10 < 16.10.1 - Denial of Service via Label Description Parameter

CVE-2024-26577 HIGH

VSeeFace through 1.13.38.c2 - Denial of Service via Spoofed UDP Packet

CVE-2024-22436 MEDIUM

HPE IceWall Gen11 and SSO Agent - Denial of Service via Resource Exhaustion

CVE-2024-26646 MEDIUM

Linux Kernel - Memory Corruption via HFI Table Buffer Handling

CVE-2024-29025 MEDIUM

Netty < 4.1.108 - Denial of Service via HttpPostRequestDecoder

CVE-2024-30156 HIGH

Varnish Cache <7.3.2-6.0.13 LTS - DoS

CVE-2024-28863 MEDIUM

node-tar < 6.2.1 - Denial of Service via Excessive Sub-Folder Creation

CVE-2024-28102 MEDIUM

jwcrypto < 1.5.6 - Denial of Service via Malicious JWE Token

CVE-2024-2446 MEDIUM

Mattermost <8.1.10, <9.2.6, <9.3.2, <9.4.3 - DoS

CVE-2024-28053 LOW

Mattermost Server 8.1.0-8.1.9 - Denial of Service via Large Email Payload

CVE-2024-1765 MEDIUM

Cloudflare Quiche < 0.19.2 - Denial of Service via 1-RTT CRYPTO Frame Flood

CVE-2024-26618 MEDIUM

Linux Kernel - Resource Leak and State Corruption in SME Storage Allocation

Previous Page 40 of 75 Next

Details

Vulnerabilities 1,867

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy