CWE-772

High likelihood

Missing Release of Resource after Effective Lifetime

Parent: CWE-404 - Improper Resource Shutdown or Release

The product does not release a resource after its effective lifetime has ended, i.e., after the resource is no longer needed.

453 vulnerabilities with CWE-772
CVE-2025-36071 MEDIUM
IBM Db2 11.5.0-11.5.9 and 12.1.0-12.1.2 - Denial of Service via Specially Crafted Query
CVSS 6.5
CVE-2025-44003 MEDIUM
Gallagher T-Series Reader <9.20.250213a, <9.10.2692(MR5), <9.00.337...
CVSS 4.3
CVE-2025-0036 LOW
AMD Versal Adaptive SoC - Memory Corruption
CVSS 3.2
CVE-2025-3864 LOW
Hackney < 1.24.0 - Denial of Service via HTTP Connection Pool Exhaustion
CVE-2025-27421 HIGH
Abacus < 1.4.0 - Denial of Service via SSE Connection Goroutine Leak
CVSS 7.5
CVE-2025-22891 HIGH
BIG-IP Policy Enforcement Manager 15.1.0-15.1.10.6.0.11.6 - Denial of Service via Diameter Endpoint Profile
CVSS 7.5
CVE-2025-24120 HIGH
macOS < 13.7.3, < 14.7.3, < 15.3 - Denial of Service via Improper Object Lifetime Management
CVSS 7.5
CVE-2024-53074 MEDIUM
Linux Kernel 6.9-6.11.7 - Resource Leak in iwlwifi AP Removal
CVSS 5.5
CVE-2024-52303 HIGH
aiohttp <3.10.11 - Memory Corruption
CVSS 7.5
CVE-2024-10396 MEDIUM
OpenAFS < 1.6.25 - Authenticated Denial of Service via Malformed ACL in StoreACL RPC
CVSS 6.5
CVE-2024-49769 HIGH
Waitress < 3.0.1 - Denial of Service via Connection Cleanup Race Condition
CVSS 7.5
CVE-2024-20493 MEDIUM
Cisco Firepower Threat Defense Software - Denial of Service via Remote Access SSL VPN Authentication
CVSS 5.3
CVE-2024-20481 MEDIUM KEV
Cisco Firepower Threat Defense Software - Unauthenticated Denial of Service via VPN Authentication Request Flood
CVSS 5.8
CVE-2024-47733 MEDIUM
Linux Kernel 6.8-6.10.12, 6.11.0-6.11.1, 6.12 - Use-After-Free in netfs Module Exit
CVSS 5.5
CVE-2024-41890 MEDIUM
Apache Answer <= 1.3.5 - Resource Exhaustion via Password Reset Email Links
CVSS 5.3
CVE-2024-41888 MEDIUM
Apache Answer <= 1.3.5 - Missing Release of Resource after Effective Lifetime
CVSS 5.3
CVE-2024-39562 HIGH
Junos OS Evolved DoS via SSH Connection Flood
CVSS 7.5
CVE-2024-28882 MEDIUM
OpenVPN 2.6.0-2.6.10 - Authenticated Session Validity Extension via Exit Notification Bypass
CVSS 4.3
CVE-2024-35821 MEDIUM
Linux Kernel 2.6.27-6.8.2 - Use-After-Free in UBIFS Page Cache Handling
CVSS 5.5
CVE-2024-1300 MEDIUM
Io.vertx Vertx-core < 4.4.8 - Memory Leak
CVSS 5.4
CVE-2024-2398 HIGH
curl 7.44.0-8.6.0 - Memory Leak via HTTP/2 Server Push Header Limit Abort
CVSS 8.6
CVE-2024-22383 MEDIUM
Gallagher Controller 7000 <9.00.231204b-8.80.240209a - DoS
CVSS 6.2
CVE-2024-21789 HIGH
F5 BIG-IP ASM/Advanced WAF 17.1.0 - Memory Exhaustion via Undisclosed Requests
CVSS 7.5
CVE-2023-53199 MEDIUM
Linux Kernel 2.6.38-4.19.276 - Memory Leak in ath9k_hif_usb_rx_stream
CVSS 5.5
CVE-2023-53152 MEDIUM
Linux Kernel - Use-After-Free in AMDGPU Driver via Improper BO Cleanup
CVSS 5.5
Details
Vulnerabilities 453
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits