Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,884 vulnerabilities with CWE-770

CVE-2019-14958 HIGH

JetBrains PyCharm < 2019.2 - Denial of Service via Uncontrolled Memory Allocation

CVE-2019-12714 MEDIUM

Cisco IC3000 Industrial Compute Gateway Firmware < 1.1.1 - Authenticated Denial of Service via Web Management Interface

CVE-2019-5031 HIGH

Foxit PDF Reader <9.4.1.16828 - Memory Corruption

CVE-2019-17067 CRITICAL

PuTTY < 0.73 - Unauthenticated Port Forwarding Connection Hijacking

CVE-2019-9291 HIGH

Android 10 - Remote Code Execution in Bluetooth via Improper Memory Allocation

CVE-2019-16889 HIGH

Ubiquiti EdgeMAX Firmware < 2.0.3 - Denial of Service via Beaker Session ID Cookie

CVE-2019-15736 HIGH

GitLab < 12.2.1 - Denial of Service via CI Pipeline Resource Exhaustion

CVE-2019-15722 HIGH

GitLab 8.15.0-12.2.1 - Denial of Service via Markdown Mathematical Expression Parsing

CVE-2019-11060 HIGH

ASUS HG100 Firmware < 1.05.12 - Unauthenticated Denial of Service via Slowloris HTTP Attack

CVE-2019-15753 CRITICAL

OpenStack os-vif 1.15.0-1.15.1 and 1.16.0 - Unauthenticated Ethernet Flooding via Hardcoded MAC Aging Time

CVE-2019-15544 HIGH

rust-protobuf < 1.7.5 and protobuf < 2.6.0 - Denial of Service via Vec::reserve Memory Exhaustion

CVE-2019-4338 HIGH

IBM Security Guardium Big Data Intelligence 4.0 - Info Disclosure

CVE-2019-11924 HIGH

Facebook Fizz 2019.01.28.00-2019.08.05.00 - Denial of Service via Empty Handshake Fragments

CVE-2019-15225 HIGH

Envoy < 1.11.1 - Denial of Service via Long URI Path Header

CVE-2019-9012 HIGH

CODESYS V3 Products < 3.5.14.20 - Denial of Service via Crafted Communication Request

CVE-2019-9518 HIGH

SwiftNIO 1.0.0-1.3.9 - Denial of Service via HTTP/2 Empty Frame Flood

CVE-2019-9517 HIGH

SwiftNIO 1.0.0-1.3.9 - Denial of Service via HTTP/2 Window Manipulation

CVE-2019-9516 MEDIUM

SwiftNIO 1.0.0-1.3.9 - Denial of Service via HTTP/2 Header Leak

CVE-2019-9515 HIGH

SwiftNIO 1.0.0-1.3.9 - Denial of Service via HTTP/2 Settings Flood

CVE-2019-9514 HIGH

SwiftNIO 1.0.0-1.3.9 - Denial of Service via HTTP/2 Reset Flood

CVE-2019-9511 HIGH

SwiftNIO 1.0.0-1.3.9 - Denial of Service via HTTP/2 Window Size Manipulation

CVE-2019-10094 HIGH

Apache Tika 1.7-1.21 - Denial of Service via RecursiveParserWrapper

CVE-2019-10093 MEDIUM

Apache Tika 1.19-1.21 - Denial of Service via Crafted 2003ml or 2006ml File

CVE-2019-10088 HIGH

Apache Tika <1.22 - Memory Corruption

CVE-2019-10171 HIGH

389 Directory Server 1.4.0.0-1.4.0.16 - Denial of Service via Excessive CPU Consumption

Previous Page 69 of 76 Next

Details

Vulnerabilities 1,884

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy