Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,884 vulnerabilities with CWE-770

CVE-2021-32476 HIGH

Moodle < 3.5.18, 3.8-3.8.8, 3.9-3.9.6, 3.10-3.10.3 - Denial of Service via Draft Files Area

CVE-2021-22050 HIGH

VMware ESXi - Denial of Service via rhttpproxy Slow HTTP POST

CVE-2021-32036 MEDIUM

MongoDB 4.0-4.2.16 4.4-4.4.9 5.0-5.0.3 - Authenticated Denial of Service via Features Command

CVE-2021-41840 HIGH

Insyde InsydeH2O 5.2-5.23.35 - Arbitrary Code Execution via SMM Callout

CVE-2021-28096 MEDIUM

Stormshield Network Security < 2.7.8 - Denial of Service via Proxy Connection Table Saturation

CVE-2021-44988 HIGH

Jerryscript <= 3.0.0 - Stack Overflow via ecma_find_named_property

CVE-2021-39293 HIGH

GO < 1.16.8 - Resource Allocation Without Limits

CVE-2021-39480 HIGH

bingrep 0.8.5 - Denial of Service via Memory Allocation Failure

CVE-2021-46050 MEDIUM

Binaryen 103 - Stack Overflow via printf_common Function

CVE-2021-43045 HIGH

Apache Avro < 1.11.0 - Denial of Service via Resource Allocation

CVE-2021-28715 MEDIUM

Linux Kernel < 5.15.0 - Denial of Service via Netback Driver Memory Hogging

CVE-2021-28714 MEDIUM

Linux Kernel < 5.15.0 - Denial of Service via Netback Driver Memory Hogging

CVE-2021-44591 MEDIUM

libming 0.4.8 - Denial of Service via Crafted SWF File

CVE-2021-44590 MEDIUM

libming 0.4.8 - Denial of Service via Memory Exhaustion in cws2fws Function

CVE-2021-37111 HIGH

Huawei EMUI - Memory Leak via Resource Allocation Without Limits

CVE-2021-45699 HIGH

ckb < 0.40.0 - Denial of Service via Memory Allocation Failure in Misbehavior HashMap

CVE-2021-38244 HIGH

cbioportal < 3.6.21 - Regular Expression Denial of Service via ProteinArraySignificanceTest Endpoint

CVE-2021-31787 MEDIUM

Actions ATS2815/ATS2819/ATS2819S/ATS2819T Firmware - Denial of Service via LMP Features Response Flood

CVE-2021-28706 HIGH

Xen 3.2-4.12 - Memory Limit Bypass via 32-bit Overflow

CVE-2021-29329 HIGH

Moddable v10.5.0 - Stack Overflow in fxBinaryExpressionNodeDistribute

CVE-2021-29324 HIGH

Moddable 10.5.0 - Stack Overflow in xsScript.c

CVE-2021-3912 MEDIUM

cloudflare/octorpki < 1.3.0 - Denial of Service via GZIP Bomb

CVE-2021-39912 MEDIUM

GitLab 13.7.0-14.2.5 - Denial of Service via Malformed TIFF Image

CVE-2021-39907 MEDIUM

GitLab 13.7.0-14.2.5 - Denial of Service via EXIF Data Processing

CVE-2021-34741 HIGH

Cisco AsyncOS - Unauthenticated Denial of Service via Crafted Email Input

Previous Page 60 of 76 Next

Details

Vulnerabilities 1,884

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy