CWE-772

High likelihood

Missing Release of Resource after Effective Lifetime

Parent: CWE-404 - Improper Resource Shutdown or Release

The product does not release a resource after its effective lifetime has ended, i.e., after the resource is no longer needed.

453 vulnerabilities with CWE-772
CVE-2026-45536 MEDIUM
Netty: Unix-socket fd receive leaks descriptors when peer sends two at once
CVSS 4.0
CVE-2026-45287 LOW
OpenTelemetry-Go's Schema ParseFile leaks file descriptors on each parse
CVE-2026-9156 MEDIUM
Tanium addressed a denial of service vulnerability in Tanium Server.
CVSS 6.5
CVE-2026-42577 HIGH
Netty: epoll transport denial of service via RST on half-closed TCP connection
CVSS 7.5
CVE-2026-39455 HIGH
BIG-IP 21.1.0+ 21.0.0-21.0.0.1 17.5.0-17.5.1.5 17.1.0-17.1.3.1 16.1.0 - Denial of Service via LDAP Authentication
CVSS 7.5
CVE-2026-35227 HIGH
Improper resource management in CODESYS Modbus TCP Server
CVE-2026-43314 MEDIUM
dm: remove fake timeout to avoid leak request
CVSS 5.5
CVE-2026-43257 MEDIUM
media: cx88: Add missing unmap in snd_cx88_hw_params()
CVSS 5.5
CVE-2026-43054 MEDIUM
scsi: target: tcm_loop: Drain commands in target_reset handler
CVSS 5.5
CVE-2026-3104 HIGH
Memory leak in code preparing DNSSEC proofs of non-existence
CVSS 7.5
CVE-2026-23299 MEDIUM
Bluetooth: purge error queues in socket destructors
CVSS 5.5
CVE-2026-2261 HIGH
FreeBSD >=15.0-RELEASE <p3 - Denial of Service via Socket Descriptor Leak
CVSS 7.5
CVE-2026-20082 HIGH
Cisco Adaptive Security Appliance Software 9.20.4.14-9.20.4.18 - Unauthenticated Denial of Service via TCP SYN Flood
CVSS 8.6
CVE-2026-2359 HIGH
Multer < 2.1.0 - Denial of Service via Connection Drop During File Upload
CVSS 7.5
CVE-2026-23219 MEDIUM
Linux Kernel 6.10-6.12.69, 6.13-6.18.9 - Use-After-Free in memcg_alloc_abort_single
CVSS 5.5
CVE-2026-21874 MEDIUM
NiceGUI 2.10.0-3.4.1 - Unauthenticated Resource Exhaustion via Redis Connection Leak
CVSS 5.3
CVE-2025-71232 MEDIUM
Linux Kernel - Use-After-Free in qla2xxx SCSI Driver
CVSS 5.5
CVE-2025-14969 MEDIUM
hibernate-reactive-core < 4.2.1 - Denial of Service via Premature HTTP Connection Closure
CVSS 4.3
CVE-2025-65947 HIGH
thread-amount <0.2.2 - Resource Leak
CVE-2025-64734 LOW
Command Centre Server <9.30.251028a-9.10.251028a - DoS
CVSS 2.4
CVE-2025-54983 MEDIUM
Zscaler Client Connector <4.6.0.216-<4.7.0.47 - Use After Free
CVSS 5.2
CVE-2025-62723 MEDIUM
FlashMQ < 1.23.2 - Authenticated Resource Exhaustion via Unreleased QoS Message Sessions
CVSS 4.3
CVE-2025-36128 HIGH
IBM MQ 9.1-9.4 - Denial of Service via Slowloris-Type Attack
CVSS 7.5
CVE-2025-61670 LOW
Wasmtime 37.0.0-37.0.1 - Memory Leak in C/C++ API via anyref and externref Handling
CVSS 3.3
CVE-2025-30256 HIGH
Tenda AC6 V5.0 V02.03.01.110 - Denial of Service via HTTP Header Parsing
CVSS 8.6
Details
Vulnerabilities 453
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits