Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,884 vulnerabilities with CWE-770

CVE-2021-37629 MEDIUM

Nextcloud Richdocuments < 3.8.4 - Share Token Enumeration via Unthrottled OCS Endpoint

CVE-2021-33831 MEDIUM

Th-wildau Covid-19 Contact Tracing < 2021-09-01 - Resource Allocation Without Limits

CVE-2021-22029 HIGH

VMware Workspace ONE UEM Console 20.1.0.0-20.1.0.33 - Denial of Service via REST API Session Endpoint

CVE-2021-28700 MEDIUM

Xen >=4.12.0 - Unrestricted Memory Allocation in dom0less DomUs

CVE-2021-1592 MEDIUM

Cisco Unified Computing System 4.0-4.0(4m) - Authenticated Denial of Service via SSH Session Exhaustion

CVE-2021-22246 HIGH

GitLab < 13.11.6 - Denial of Service via Webhook Feature

CVE-2021-0420 MEDIUM

Android - Denial of Service via Memory Management Driver Bounds Check

CVE-2021-32068 LOW

Mitel MiCollab < 9.3 - Man-in-the-Middle via TLS Session Renegotiation

CVE-2021-36798 HIGH

HelpSystems Cobalt Strike 4.2-4.3 - Denial of Service via Team Server Thread Crash

CVE-2021-22919 HIGH

Citrix ADC and Gateway - Denial of Service via Disk Space Exhaustion

CVE-2021-33320 MEDIUM

Liferay Portal/DXP <7.3.1-7.2 - DoS

CVE-2021-33910 MEDIUM

systemd < 246.15 - Denial of Service via Excessive Pathname Allocation

CVE-2021-0285 HIGH

Junos OS QFX5000/EX4600 < Multiple Versions - DoS via ICCP Interruptions

CVE-2021-29725 HIGH

IBM Secure External Authentication Server and Sterling Secure Proxy - Denial of Service via Resource Leak

CVE-2021-25671 MEDIUM

Siemens RWG1.M12, RWG1.M12D, RWG1.M8 < 1.16.16 - Denial of Service via ARP Packet

CVE-2021-35517 HIGH

Apache Commons Compress 1.1-1.19 - Denial of Service via Malicious TAR Archive

CVE-2021-35516 HIGH

Apache Commons Compress 1.6-1.19 - Denial of Service via Malicious 7Z Archive

CVE-2021-36155 HIGH

gRPC Swift <= 1.1.0 - Denial of Service via LengthPrefixedMessageReader

CVE-2021-3637 HIGH

Keycloak < 14.0.0 - Denial of Service via Authentication Session Map Growth

CVE-2021-33541 HIGH

Phoenix Contact Classic Line Controllers - DoS

CVE-2021-32699 MEDIUM

Pterodactyl Wings < 1.4.4 - Resource Exhaustion via Improper Container Process Limits

CVE-2021-22363 HIGH

eCNS280_TD V100R005C10SPC650 - Info Disclosure

CVE-2021-29063 HIGH

mpmath 1.0.0-1.2.1 - Regular Expression Denial of Service via mpmathify Function

CVE-2021-29061 HIGH

vfsjfilechooser2 < 0.2.9 - Regular Expression Denial of Service via URI Validation

CVE-2021-29060 MEDIUM

color-string < 1.5.5 - Denial of Service via Crafted HWB String

Previous Page 62 of 76 Next

Details

Vulnerabilities 1,884

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy