Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-770

CWE-770

High likelihood

Allocation of Resources Without Limits or Throttling

Parent: CWE-400 - Uncontrolled Resource Consumption

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

1,885 vulnerabilities with CWE-770

CVE-2017-12144 MEDIUM

ytnef 1.9.2 - Denial of Service via Crafted File in TNEFFillMapi

CVE-2017-12132 MEDIUM

glibc < 2.26 - DNS Stub Resolver Resource Exhaustion via EDNS Large UDP Responses

CVE-2017-1227 HIGH

IBM BigFix Platform - Denial of Service via Resource Consumption

CVE-2017-11525 MEDIUM

ImageMagick <6.9.9-0, <7.0.6-1 - DoS

CVE-2017-11468 HIGH

Docker Registry < 2.6.2 - Denial of Service via Manifest Endpoint

CVE-2017-6713 CRITICAL

Cisco Elastic Services Controller - Unauthenticated Remote Access via Default Credentials

CVE-2017-9778 MEDIUM

GDB < 8.0 - Denial of Service via Negative DWARF Section Length

CVE-2017-6640 CRITICAL

Cisco Prime Data Center Network Manager < 10.2(1) - Unauthenticated Default Static Credential

CVE-2017-9350 HIGH

Wireshark <2.2.6, <2.0.12 - Memory Corruption

CVE-2017-6653 HIGH

Cisco Identity Services Engine 2.1(0.474) - Unauthenticated Denial of Service via TCP Connection Flood

CVE-2017-6641 HIGH

Cisco Remote Expert Manager 11.0.0 - Unauthenticated Denial of Service via TCP FIN Flood

CVE-2017-9039 MEDIUM

GNU Binutils 2.28 - Denial of Service via Crafted ELF File with Many Program Headers

CVE-2017-0612 HIGH

Linux Kernel - Elevation of Privilege via Qualcomm Secure Execution Environment Communicator Driver

CVE-2017-8779 HIGH

rpcbind < 0.2.4 - Denial of Service via Crafted UDP Packet

CVE-2017-3555 HIGH

Oracle iReceivables 12.1.1-12.1.3 12.2.3-12.2.6 - Unauthenticated Denial of Service via HTTP

CVE-2017-7963 HIGH

PHP < 7.1.4 - Denial of Service via GMP Long String Operations

CVE-2017-7696 HIGH

SAP AS JAVA SSO Authentication Library <3.0 - DoS

CVE-2017-5850 HIGH

OpenBSD httpd - Denial of Service via HTTP Range Header

CVE-2017-5835 HIGH

libplist - Denial of Service via Zero Offset Size

CVE-2016-20013 HIGH

sha256crypt and sha512crypt < 0.6 - Denial of Service via Password Length

CVE-2016-9578 HIGH

spice < 0.13.90 - Denial of Service via Crafted Protocol Messages

CVE-2016-8576 MEDIUM

QEMU < 2.7.1 - Denial of Service via Unlimited xHCI TRB Processing

CVE-2016-4074 HIGH

jq <1.6 - Denial of Service

CVE-2014-125127 HIGH

flightphp/flight < 1.2 - Denial of Service via Eager Request Body Loading

Apache Portable Runtime < 1.4.3 - Denial of Service via fnmatch *? Sequence Handling

Previous Page 75 of 76 Next

Details

Vulnerabilities 1,885

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy