Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,884 vulnerabilities with CWE-770

CVE-2022-29767 MEDIUM

adbyby v2.7 - Denial of Service via High CPU Usage from Excessive Connections

CVE-2022-25169 MEDIUM

Apache Tika < 1.28.2 - Denial of Service via BPG Parser

CVE-2022-30775 MEDIUM

xpdf 4.04 - Denial of Service via Crafted PDF Input

CVE-2022-22971 MEDIUM

Spring Framework 5.2.0-5.2.20 and 5.3.0-5.3.19 - Authenticated Denial of Service via STOMP over WebSocket

CVE-2022-22970 MEDIUM

Spring Framework < 5.2.22 - Denial of Service via File Upload Data Binding

CVE-2022-1428 MEDIUM

GitLab < 14.8.6, 14.9 < 14.9.4, 14.10 < 14.10.1 - Allocation of Resources Without Limits or Throttling

CVE-2022-20767 HIGH

Cisco Firepower Threat Defense - DoS

CVE-2022-20757 HIGH

Cisco Firepower Threat Defense - DoS

CVE-2022-20751 HIGH

Cisco Firepower Threat Defense - DoS

CVE-2022-29973 MEDIUM

exfat 1.3.0 - Information Disclosure via Deleted File Data Access

CVE-2022-22278 HIGH

SonicWall Multiple Firewalls < 7.0.1 - DoS via CFS 403 Response

CVE-2022-29701 HIGH

Zammad 5.1.0 - Denial of Service via Forgot Password Feature

CVE-2022-28871 MEDIUM

F-Secure Atlant - Denial of Service via fsicapd Memory Exhaustion

CVE-2022-20717 MEDIUM

Cisco SD-WAN vEdge Router < 20.6 - Authenticated Denial of Service via NETCONF Process

CVE-2022-20622 HIGH

Cisco Embedded Wireless Controller - DoS

CVE-2022-1337 MEDIUM

Mattermost Server < 6.4.2 - Authenticated Denial of Service via Image Proxy Memory Allocation

CVE-2022-1333 LOW

Mattermost Playbooks < 1.24.0 - Authenticated Denial of Service via Webhook Limit Bypass

CVE-2022-27819 MEDIUM

swhkd 1.1.5 - Denial of Service via Unsafe File Parsing

CVE-2022-1121 MEDIUM

GitLab < 14.7.7, 14.8 < 14.8.5, 14.9 < 14.9.2 - Resource Consumption via GitLab Pages Timeout Bypass

CVE-2022-22950 MEDIUM

Spring Framework 5.3.0-5.3.16 - Denial of Service via SpEL Expression

CVE-2022-22404 MEDIUM

IBM App Connect Enterprise 1.5-3.1 - DoS

CVE-2022-21822 HIGH

NVIDIA FLARE < 2.0.16 - Unauthenticated Resource Exhaustion via Admin Interface

CVE-2022-24741 LOW

Nextcloud <21.0.8, <22.2.4, <23.0.1 - DoS

CVE-2022-26336 MEDIUM

Apache POI <5.2.0 - Memory Corruption

CVE-2022-21716 HIGH

Twisted 21.7.0-22.1.0 - Denial of Service via SSH Version Identifier Buffer Overflow

Previous Page 57 of 76 Next

Details

Vulnerabilities 1,884

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy