CWE-770
High likelihoodAllocation of Resources Without Limits or Throttling
The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.
1,720 vulnerabilities with CWE-770
CVE-2026-25899
HIGH
GoFiber v3 <3.1.0 - Deserialization
CVSS 7.5
CVE-2026-27571
MEDIUM
NATS-Server <2.11.2/2.12.3 - DoS
CVSS 5.9
CVE-2026-25985
HIGH
ImageMagick <7.1.2-15/<6.9.13-40 - DoS
CVSS 7.5
CVE-2026-27729
MEDIUM
Astro 9.0.0-9.5.3 - DoS
CVSS 5.9
CVE-2026-26047
MEDIUM
Moodle TeX Editor - DoS
CVSS 6.5
CVE-2026-27026
MEDIUM
pypdf <6.7.1 - DoS
CVSS 5.5
CVE-2026-26313
HIGH
go-ethereum <1.17.0 - DoS
CVSS 7.5
CVE-2026-26312
MEDIUM
Stalwart Mail Server 0.13.0-0.15.4 - DoS
CVSS 6.5
CVE-2026-25535
HIGH
jsPDF <4.2.0 - DoS
CVSS 7.5
CVE-2026-26076
HIGH
ntpd-rs <1.7.1 - DoS
CVSS 7.5
CVE-2026-21434
MEDIUM
Quic-go Webtransport-go < 0.10.0 - Resource Allocation Without Limits
CVSS 5.3
CVE-2026-20608
MEDIUM
macOS Tahoe <26.3 - Code Injection
CVSS 5.5
CVE-2026-1837
HIGH
libjxl - Memory Corruption
CVSS 7.5
CVE-2026-1458
MEDIUM
Gitlab < 18.6.6 - Unrestricted File Upload
CVSS 6.5
CVE-2026-1456
MEDIUM
Gitlab < 18.7.4 - Resource Allocation Without Limits
CVSS 6.5
CVE-2026-1387
MEDIUM
Gitlab < 18.6.6 - Resource Allocation Without Limits
CVSS 6.5
CVE-2026-1850
MEDIUM
MongoDB 8.0.0 through 8.0.18 - Out-Of-Memory Crash via Query Planner
CVSS 6.5
CVE-2026-1848
HIGH
Proxy - DoS
CVSS 7.5
CVE-2026-1847
MEDIUM
MongoDB - DoS
CVSS 6.5
CVE-2026-23689
HIGH
SAP Supply Chain Management and Advanced Planning and Optimization - Denial of Service via Resource Consumption
CVSS 7.7
CVE-2026-0398
MEDIUM
Recursor - DoS/Info Disclosure
CVSS 5.3
CVE-2026-25804
CRITICAL
Antrea < 2.3.2 - Authentication Bypass
CVSS 9.1
CVE-2026-25762
HIGH
Adonisjs Bodyparser < 10.1.3 - Denial of Service
CVSS 7.5
CVE-2026-25579
MEDIUM
Navidrome < 0.60.0 - Denial of Service
CVSS 6.5
CVE-2026-25140
HIGH
apko <1.1.1 - DoS
CVSS 7.5
Details
Vulnerabilities
1,720
Exploit Likelihood
High