Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,884 vulnerabilities with CWE-770

CVE-2022-24685 HIGH

HashiCorp Nomad <1.0.17-1.2.5 - DoS

CVE-2022-24614 MEDIUM

metadata-extractor < 2.18.0 - Denial of Service via Crafted JPEG File

CVE-2022-23228 HIGH

Pexip Infinity < 27.0 - Unauthenticated Denial of Service via WebRTC Input Validation

CVE-2022-21698 HIGH

client_golang < 1.11.1 - Denial of Service via Unbounded HTTP Method Cardinality

CVE-2022-23913 HIGH

Apache ActiveMQ Artemis <2.20.0-2.19.1 - DoS

CVE-2022-21732 MEDIUM

TensorFlow < 2.5.3 - Denial of Service via ThreadPoolHandle Memory Allocation

CVE-2022-24196 MEDIUM

itext < 7.1.18 and < 7.2.2 - Denial of Service via readStreamBytesRaw

CVE-2022-23837 HIGH

Sidekiq < 5.2.10 and >=6.0.0 <6.4.0 - Denial of Service via Unlimited Stats Request

CVE-2022-21294 MEDIUM

Oracle GraalVM 20.3.4, 21.3.0 & Java SE 7u321, 8u311, 11.0.13, 17.0.1 - Partial DoS via Multiple Protocols

CVE-2022-22153 HIGH

Juniper Networks Junos OS - Info Disclosure

CVE-2021-47959 HIGH

WordPress Plugin WPGraphQL 1.3.5 Denial of Service

CVE-2021-26381 HIGH

AMD Ryzen Threadripper PRO 3000 WX-Series - Kernel Memory Corruption via System Call Validation

CVE-2021-47895 HIGH

Nsauditor 3.2.2.0 - Denial of Service via Event Description Buffer Overflow

CVE-2021-47894 HIGH

Managed Switch Port Mapping Tool <2.85.2 - DoS

CVE-2021-47893 HIGH

AgataSoft PingMaster Pro 2.1 - Denial of Service via Trace Route Host Name Overflow

CVE-2021-47877 HIGH

GeoGebra Graphing Calculator <6.0.631.0 - DoS

CVE-2021-47876 HIGH

GeoGebra Classic <5.0.631.0-d - DoS

CVE-2021-47875 CRITICAL

GeoGebra CAS Calculator <6.0.631.0 - DoS

CVE-2021-47865 HIGH

ProFTPD 1.3.7a - Denial of Service via Multiple Simultaneous FTP Connections

CVE-2021-47793 HIGH

Telegram Desktop 2.9.2 - Denial of Service via Oversized Message Payload

CVE-2021-47791 HIGH

SmartFTP Client 10.0.2909.0 - Denial of Service via Malformed Paths or Invalid IP Addresses

CVE-2021-47784 HIGH

Cyberfox Web Browser 52.9.1 - Denial of Service via Search Bar Overflow

CVE-2021-47771 MEDIUM

RDP Manager 4.9.9.3 - Denial of Service via Oversized Connection Input Fields

CVE-2021-47752 HIGH

AWebServer GhostBuilding 18 - Denial of Service via High-Volume HTTP Requests

CVE-2021-47713 HIGH

Hasura GraphQL 1.3.3 - Denial of Service via Malicious GraphQL Query

Previous Page 58 of 76 Next

Details

Vulnerabilities 1,884

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy