Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,885 vulnerabilities with CWE-770

CVE-2018-7821 HIGH

SoMachine Basic and Modicon M221 < 1.10.0.0 - Denial of Service via Ethernet Flooding

CVE-2018-15462 HIGH

Cisco Firepower Threat Defense < 6.2.3.12 - Unauthenticated Denial of Service via TCP Ingress Handler

CVE-2018-12545 HIGH

Eclipse Jetty 9.3.x-9.4.x - Denial of Service via Large or Numerous SETTINGS Frames

CVE-2018-20033 CRITICAL

FlexNet Publisher < 11.16.1.0 - Remote Code Execution via Memory Corruption

CVE-2018-16846 MEDIUM

Ceph < 13.2.4 - Authenticated Denial of Service via Bucket Index OMAPs

CVE-2018-16865 HIGH

systemd-journald <v240 - Memory Corruption

CVE-2018-16864 HIGH

systemd-journald <v240 - Memory Corruption

CVE-2018-15460 HIGH

Cisco AsyncOS < 11.0.2-044_md - Unauthenticated Denial of Service via Whitelisted URL Filtering

CVE-2018-15458 MEDIUM

Cisco Firepower Management Center - Unauthenticated Denial of Service via Shell Access Filter

CVE-2018-20659 MEDIUM

Bento4 1.5.1-627 - Denial of Service via Excessive Memory Allocation in AP4_StcoAtom

CVE-2018-20652 MEDIUM

tinyexr 0.9.5 - Denial of Service via Excessive Memory Allocation in AllocateImage

CVE-2018-20421 HIGH

Go Ethereum - Denial of Service via Dynamic Array Memory Manipulation

CVE-2018-20095 MEDIUM

Bento4 <1.5.1-627 - Memory Corruption

CVE-2018-1779 HIGH

IBM API Connect 2018.1-2018.3.7 - Unauthenticated Denial of Service via Unrestricted JSON Payload Size

CVE-2018-14660 MEDIUM

glusterfs 3.1.0-3.1.2 - Authenticated Denial of Service via GF_META_LOCK_KEY xattr

CVE-2018-15404 MEDIUM

Cisco UCS Director & IMC Supervisor Authenticated DoS via Web Interface

CVE-2018-15399 MEDIUM

Cisco Adaptive Security Appliance and Firepower Threat Defense - Denial of Service via TCP Syslog Header Manipulation

CVE-2018-15383 HIGH

Cisco Adaptive Security Appliance and Firepower Threat Defense - Denial of Service via DMA Memory Exhaustion

CVE-2018-15373 HIGH

Cisco IOS and IOS XE - Denial of Service via Cisco Discovery Protocol Packet Flood

CVE-2018-1647 HIGH

IBM QRadar Incident Forensics <7.4 - DoS

CVE-2018-16645 MEDIUM

ImageMagick <7.0.8-11 - Memory Corruption

CVE-2018-10908 MEDIUM

ovirt vdsm < 4.20.37 - Denial of Service via Unbounded Resource Consumption in qemu-img

CVE-2018-13033 MEDIUM

GNU Binutils - Denial of Service via Crafted ELF File in BFD Library

CVE-2018-12934 HIGH

GNU Binutils - Denial of Service via Excessive Memory Consumption in cplus-dem.c

CVE-2018-0358 HIGH

Cisco TelePresence Video Communication Server Expressway - Denial of Service via File Descriptor Exhaustion

Previous Page 72 of 76 Next

Details

Vulnerabilities 1,885

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy