Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,884 vulnerabilities with CWE-770

CVE-2021-29059 HIGH

is-svg 2.1.0-4.2.2 - Regular Expression Denial of Service via Crafted Invalid SVG String

CVE-2021-31811 MEDIUM

Apache PDFBox 2.0.0-2.0.23 - Denial of Service via Crafted PDF File

CVE-2021-33176 HIGH

VerneMQ < 1.12.0 - Denial of Service via Untrusted Input Handling

CVE-2021-33175 HIGH

EMQ X Broker < 4.2.8 - Denial of Service via Untrusted Input Handling

CVE-2021-28848 HIGH

mintty < 3.4.5 - Denial of Service via Repeated Window Title Changes

CVE-2021-22360 MEDIUM

USG9500 <V500R001C60SPC500-V500R005C00SPC200 - Info Disclosure

CVE-2021-3527 MEDIUM

QEMU < 6.0.0 - Denial of Service via USB Redirector Device Stack Allocation

CVE-2021-21000 MEDIUM

WAGO PFC200 Firmware - Unauthenticated Denial of Service via Crafted Network Packets

CVE-2021-29511 MEDIUM

evm < 0.21.0 - Denial of Service via Memory Over-Allocation in EVM Opcode Handling

CVE-2021-27383 HIGH

SIMATIC WinCC Runtime Advanced < V16 Update 4 - Denial-of-Service via SmartVNC Tight Encoder Heap Allocation Leak

CVE-2021-22210 MEDIUM

GitLab 13.2.0-13.9.7 - Allocation of Resources Without Limits or Throttling via API Branch Query

CVE-2021-22207 MEDIUM

Wireshark 3.2.0-3.2.12 and 3.4.0-3.4.4 - Denial of Service via MS-WSP Dissector Memory Consumption

CVE-2021-0261 HIGH

Juniper Junos - Unauthenticated Denial of Service via HTTP/HTTPS Service

CVE-2021-0242 MEDIUM

Juniper Junos OS on EX4300 - Denial of Service via DMA Buffer Exhaustion

CVE-2021-0224 MEDIUM

Juniper Junos OS Multiple Versions - Denial of Service via ANCPD Crash

CVE-2021-29453 MEDIUM

matrix-media-repo < 1.2.7 - Denial of Service via Malicious Image Thumbnailing

CVE-2021-29430 HIGH

Sydent < 2.3.0 - Unauthenticated Denial of Service via Unbounded HTTP Request/Response

CVE-2021-29932 HIGH

parse_duration < 2021-03-18 - Denial of Service via Large Exponent in Duration String

CVE-2021-28994 HIGH

Kopano Groupware Core <8.7.16, 9.x-9.1.0, 10.x-10.0.7, 11.x-11.0.1 & Zarafa 6.30.x-7.2.x - Memory Exhaustion

CVE-2021-3479 MEDIUM

OpenEXR < 3.0.0-beta - Denial of Service via Scanline API

CVE-2021-3478 MEDIUM

OpenEXR < 3.0.0-beta - Denial of Service via Scanline Input File

CVE-2021-28302 HIGH

pupnp < 1.14.5 - Denial of Service via Parser_parseDocument Stack Overflow

CVE-2021-28038 MEDIUM

Linux Kernel 2.6.39-5.11.3 - Denial of Service via Netback Driver Memory Allocation Failure

CVE-2021-21274 MEDIUM

Synapse 0.99.0-1.24.9 - Denial of Service via .well-known File Redirection

CVE-2021-22174 LOW

Wireshark 3.4.0-3.4.2 - Denial of Service in USB HID Dissector

Previous Page 63 of 76 Next

Details

Vulnerabilities 1,884

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy