CWE-772

High likelihood

Missing Release of Resource after Effective Lifetime

Parent: CWE-404 - Improper Resource Shutdown or Release

The product does not release a resource after its effective lifetime has ended, i.e., after the resource is no longer needed.

453 vulnerabilities with CWE-772
CVE-2020-15114 HIGH
etcd 3.3.0-3.3.22 and 3.4.0-rc.0-3.4.9 - Denial of Service via Gateway Endpoint Loop
CVSS 7.7
CVE-2020-1653 HIGH
Juniper Junos OS 17.4-19.4 - Denial of Service via TCP Packet Stream
CVSS 7.5
CVE-2020-1870 HIGH
Huawei CloudEngine 12800 Firmware V200R019C00SPC800 - Denial of Service via Memory Leak
CVSS 7.5
CVE-2020-7455 MEDIUM
FreeBSD Information Disclosure via FTP Packet Handler
CVSS 5.5
CVE-2020-12134 CRITICAL
Nanometrics Centaur < 4.3.23 and TitanSMA < 4.2.20 - Unauthenticated Resource Leak via Syslog Access
CVSS 9.8
CVE-2020-9375 HIGH
TP-Link Archer C50 V3 - Denial of Service via Crafted HTTP Referer Header
CVSS 7.5
CVE-2019-15879 HIGH
FreeBSD <12.1-STABLE r356908, 11.3-STABLE r356908 - Use After Free
CVSS 7.4
CVE-2019-20794 MEDIUM
Linux Kernel 4.18-5.6.11 - Resource Exhaustion via FUSE Filesystem PID Namespace Termination
CVSS 4.7
CVE-2019-19956 HIGH
libxml2 < 2.9.10 - Memory Leak in xmlParseBalancedChunkMemoryRecover
CVSS 7.5
CVE-2019-10520 MEDIUM
Qualcomm Snapdragon Mobile, Voice & Music - Denial of Service via GPU Memory Exhaustion
CVSS 5.5
CVE-2019-19533 LOW
Linux kernel <5.3.4 - Info Disclosure
CVSS 2.4
CVE-2019-0148 MEDIUM
Intel Ethernet 700 Series Controllers < 7.0 - Authenticated Denial of Service via Resource Leak
CVSS 5.5
CVE-2019-0146 MEDIUM
Intel Ethernet 700 Series Controllers < 2.8.43 - Authenticated Denial of Service via Resource Leak
CVSS 5.5
CVE-2019-5023 MEDIUM
PaX <4.9.24-test7 - Memory Corruption
CVSS 5.9
CVE-2019-18214 HIGH
Video_Converter 0.1.0 - Denial of Service via Concurrent FFmpeg Process Overload
CVSS 7.7
CVE-2019-18198 HIGH
Linux Kernel 5.3-5.3.3 - Use-After-Free in fib6_rule_suppress
CVSS 7.8
CVE-2019-6474 MEDIUM
Kea 1.4.0-1.5.0 - Denial of Service via Invalid Lease Storage
CVSS 5.7
CVE-2019-17183 HIGH
Foxit Reader < 9.6.0.25114 - Denial of Service via Memory Exhaustion
CVSS 7.5
CVE-2019-1965 HIGH
Cisco NX-OS 5.2-6.2(29) - Authenticated Denial of Service via VSH Session Management
CVSS 7.7
CVE-2019-3883 HIGH
389 Directory Server < 1.4.1.2 - Unauthenticated Denial of Service via SSL/TLS Connection Hang
CVSS 7.5
CVE-2019-3821 HIGH
civetweb < 1.11 - Unauthenticated Denial of Service via SSL Connection Exhaustion
CVSS 7.5
CVE-2019-5671 MEDIUM
NVIDIA Windows GPU Display Driver - Denial of Service via Kernel Mode Layer Resource Handling
CVSS 5.5
CVE-2018-21028 HIGH
boa < 0.94.14.21 - Memory Leak via Missing Free Calls
CVSS 7.5
CVE-2018-5744 HIGH
BIND 9.10.7-9.10.8-P1, 9.11.3-9.11.5-P1, 9.12.0-9.12.3-P1, 9.13.0-9.13.6 - Memory Leak via EDNS
CVSS 7.5
CVE-2018-5179 HIGH
Firefox < 60.0 - Service Worker Resource Exhaustion via Self-Activated Event
CVSS 7.5
Details
Vulnerabilities 453
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits