Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,884 vulnerabilities with CWE-770

CVE-2019-14941 HIGH

SHAREit < 4.0.6.177 - Denial of Service via Uncontrolled Memory Allocation

CVE-2019-11939 HIGH

Facebook Thrift <2020.03.16.00 - DoS

CVE-2019-3553 HIGH

Facebook Thrift < 2020.02.03.00 - Denial of Service via Oversized Container Declaration

CVE-2019-11938 HIGH

Facebook Thrift <2019.12.09.00 - DoS

CVE-2019-4720 HIGH

IBM WebSphere Application Server <9.0 - DoS

CVE-2019-14834 LOW

dnsmasq < 2.81 - Denial of Service via DHCP Response Memory Leak

CVE-2019-20019 MEDIUM

matio 1.5.17 - Denial of Service via Excessive Memory Allocation in Mat_VarRead5

CVE-2019-20015 MEDIUM

GNU LibreDWG 0.92 - Denial of Service via Excessive Memory Allocation in LWPOLYLINE Decoding

CVE-2019-20013 MEDIUM

GNU LibreDWG < 0.9.3 - Denial of Service via Excessive Memory Allocation in decode_3dsolid

CVE-2019-20012 MEDIUM

GNU LibreDWG 0.92 - Denial of Service via Excessive Memory Allocation in HATCH Private Data Decoding

CVE-2019-20009 MEDIUM

GNU LibreDWG < 0.9.3 - Denial of Service via Excessive Memory Allocation in dwg_decode_SPLINE_private

CVE-2019-19958 MEDIUM

libiec61850 1.4.0 - Denial of Service via Integer Signedness Issue in StringUtils_createStringFromBuffer

CVE-2019-16770 MEDIUM

Puma 3.0.0-3.12.1 - Denial of Service via Keepalive Connection Monopolization

CVE-2019-11923 HIGH

facebook/mcrouter < 0.41.0 - Denial of Service via ASCII Parser Buffer Allocation

CVE-2019-15593 MEDIUM

GitLab 12.2.3 - Denial of Service via Issue Comments

CVE-2019-12406 MEDIUM

Apache CXF < 3.2.11 - Denial of Service via Unrestricted Message Attachments

CVE-2019-6120 HIGH

NiceHash Miner < 2.0.3.0 - Unauthenticated Email Enumeration via Wallet Addition Rate Limit Bypass

CVE-2019-5043 HIGH

Nest Cam IQ Indoor Firmware 4620002 - Denial of Service via Weave Daemon TCP Connection Exhaustion

CVE-2019-10079 HIGH

Apache Traffic Server <7.1.7-8.0.4 - DoS

CVE-2019-12611 MEDIUM

Bitdefender BOX Firmware < 2.1.37.37-34 - Denial of Service via miniupnpd Memory Allocation

CVE-2019-17583 HIGH

idreamsoft iCMS 7.0.15 - Denial of Service via Comment Query Resource Consumption

CVE-2019-17359 HIGH

Bouncycastle Bc-java < 3.0.2.1 - Resource Allocation Without Limits

CVE-2019-17351 MEDIUM

Xen < 4.12.1 and Linux Kernel < 5.2.3 - Denial of Service via Unrestricted Guest Memory Mapping

CVE-2019-16865 HIGH

Pillow < 6.2.0 - Denial of Service via Crafted Invalid Image Files

CVE-2019-15165 MEDIUM

libpcap < 1.9.1 - Denial of Service via Invalid PHB Header Length

Previous Page 68 of 76 Next

Details

Vulnerabilities 1,884

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy