Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,884 vulnerabilities with CWE-770

CVE-2022-31184 MEDIUM

Discourse < 2.8.6 - Unauthenticated Mass Spam Email via Email Activation Route

CVE-2022-22212 HIGH

Juniper Networks Junos OS Evolved - DoS

CVE-2022-32958 HIGH

Teamplus Pro < 3.011.6.0.1 - Denial of Service via Oversized Chat Message

CVE-2022-29286 HIGH

Pexip Infinity 27-27.9 - Denial of Service via Registrar Resource Mishandling

CVE-2022-2406 MEDIUM

Mattermost <= 6.7.0 - Authenticated Denial of Service via Slack Import REST API

CVE-2022-31080 MEDIUM

KubeEdge <1.11.1, <1.10.2, <1.9.4 - DoS

CVE-2022-31079 MEDIUM

KubeEdge <1.11.1, 1.10.2, 1.9.4 - DoS

CVE-2022-31078 MEDIUM

KubeEdge < 1.9.4, 1.10.0-1.10.1 - Authenticated Denial of Service via CloudCore Router REST Handler

CVE-2022-31075 MEDIUM

KubeEdge < 1.9.4, 1.10.0-1.10.1, >=1.11.0 <1.11.1 - Authenticated Denial of Service via Large HTTP Request Body

CVE-2022-32206 MEDIUM

curl < 7.84.0 - Denial of Service via Unbounded HTTP Compression Chain

CVE-2022-32205 MEDIUM

curl 7.71.0-7.84.0 - Denial of Service via Excessive Set-Cookie Headers

CVE-2022-34750 HIGH

MediaWiki < 1.38.1 - Denial of Service via Unvalidated Lemma Length in Wikibase Lexeme

CVE-2022-31016 MEDIUM

Argo CD 0.7.0-2.1.15 - Authenticated Denial of Service via Large File Processing

CVE-2022-21952 HIGH

SUSE Manager Server <4.1.46, <4.2.37 - DoS

CVE-2022-27871 HIGH

Autodesk AutoCAD, Advance Steel, Revit, Design Review, Navisworks - Memory Corruption via PDFTron PDF Parser

CVE-2022-22979 HIGH

Spring Cloud Function < 3.2.6 - Denial of Service via Function Catalog Caching Issue

CVE-2022-2134 MEDIUM

GitHub inventree/inventree <0.8.0 - DoS

CVE-2022-29863 HIGH

OPC UA .NET Standard Stack < 1.4.368.58 - Denial of Service via Crafted Message

CVE-2022-20143 MEDIUM

Android - Local Denial of Service via ZenModeHelper Resource Exhaustion

CVE-2022-32559 CRITICAL

Couchbase Server 4.0.0-7.0.3 - Resource Exhaustion via Random HTTP Requests

CVE-2022-31287 MEDIUM

Bento4 1.2 - Allocation of Resources Without Limits or Throttling in Ap4RtpAtom.cpp

CVE-2022-31285 MEDIUM

Bento4 1.2 - Denial of Service via Memory Allocation in Ap4Array.h

CVE-2022-30522 HIGH

Apache HTTP Server 2.4.53 - Denial of Service via mod_sed Large Input Transformation

CVE-2022-29404 HIGH

Apache HTTP Server < 2.4.53 - Denial of Service via Lua Script r:parsebody(0)

CVE-2022-1708 HIGH

CRI-O <1.19.7 and >=1.24.0 <1.24.1 - Denial of Service via ExecSync Output Handling

Previous Page 56 of 76 Next

Details

Vulnerabilities 1,884

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy