Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,885 vulnerabilities with CWE-770

CVE-2018-3738 MEDIUM

protobufjs < 6.8.5 - Denial of Service via ReDoS in .proto File Parsing

CVE-2018-3737 HIGH

sshpk < 1.13.1 - Regular Expression Denial of Service via Crafted Public Key Parsing

CVE-2018-3711 HIGH

fastify < 0.38.0 - Denial of Service via Large JSON Payload

CVE-2018-11488 HIGH

dtsearch < 7.90.8538.1 - Denial of Service via Stack Exhaustion

CVE-2018-10971 MEDIUM

FLIF 0.3 - Denial of Service via Crafted File in Plane Function

CVE-2018-10237 MEDIUM

Google Guava 11.0-24.x - Denial of Service via Unbounded Memory Allocation

CVE-2018-0239 HIGH

Cisco StarOS - Unauthenticated Interface Forwarding Denial of Service via Crafted IP Packet

CVE-2018-1274 HIGH

Pivotal Software Spring Data Commons < 1.13.11 - Resource Allocation Without Limits

CVE-2018-7582 HIGH

WebLog Expert Web Server Enterprise 9.4 - Denial of Service via Long HTTP Accept Header

CVE-2018-7443 MEDIUM

ImageMagick 7.0.7-23 Q16 - Denial of Service via TIFF Image Data Validation

CVE-2018-6869 MEDIUM

ZZIPlib 0.13.68 - Denial of Service via Crafted Zip File

CVE-2018-0137 HIGH

Cisco Prime Network - Unauthenticated Denial of Service via TCP SYN Flood

CVE-2018-5783 MEDIUM

PoDoFo 0.9.5 - Denial of Service via Crafted PDF File

CVE-2018-0006 MEDIUM

Juniper Junos - Denial of Service via High Rate VLAN Authentication Attempts

CVE-2018-5296 MEDIUM

PoDoFo 0.9.5 - Denial of Service via Crafted PDF File

CVE-2018-4868 MEDIUM

Exiv2 0.26 - Denial of Service via Excessive Memory Allocation in Jp2Image::readMetadata

CVE-2017-20016 MEDIUM

WEKA INTEREST Security Scanner <1.8 - DoS

CVE-2017-18899 MEDIUM

Mattermost Server <4.2.0-4.0.5 - Info Disclosure

CVE-2017-2587 LOW

netpbm < 10.61.00 - Denial of Service via Malicious SVG File

CVE-2017-5388 HIGH

Firefox < 51.0 - Denial of Service via STUN Packet Rate Limiting Bypass

CVE-2017-2613 MEDIUM

Jenkins < 2.44 and < 2.32.2 - User Creation CSRF via GET Request

CVE-2017-18258 MEDIUM

libxml2 < 2.9.6 - Denial of Service via LZMA File Memory Consumption

CVE-2017-18229 MEDIUM

GraphicsMagick 1.3.26 - Denial of Service via Crafted TIFF File

CVE-2017-18219 MEDIUM

GraphicsMagick 1.3.26 - Denial of Service via Large PNG Pixels Array Allocation

CVE-2017-13190 HIGH

Android 7.0-8.1 - Denial of Service via libhevc ps_codec_obj Memory Allocation Failure

Previous Page 73 of 76 Next

Details

Vulnerabilities 1,885

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy