CWE-789
Memory Allocation with Excessive Size Value
The product allocates memory based on an untrusted, large size value, but it does not ensure that the size is within expected limits, allowing arbitrary amounts of memory to be allocated.
122 vulnerabilities with CWE-789
CVE-2024-37168
MEDIUM
@grpc/grps-js <1.10.9, 1.9.15, 1.8.22 - Memory Corruption
CVSS 5.3
CVE-2024-32035
MEDIUM
ImageSharp - DoS
CVSS 5.3
CVE-2024-2494
MEDIUM
libvirt - DoS
CVSS 6.2
CVE-2023-6516
HIGH
named - Use After Free
CVSS 7.5
CVE-2023-52429
MEDIUM
Linux Kernel < 5.10.210 - Improper Condition Check
CVSS 5.5
CVE-2023-3171
HIGH
EAP-7 - Use After Free
CVSS 7.5
CVE-2023-39203
MEDIUM
Zoom Team Chat - Info Disclosure
CVSS 4.3
CVE-2023-5371
MEDIUM
Wireshark < 3.6.17 - Resource Allocation Without Limits
CVSS 5.3
CVE-2023-0809
MEDIUM
Eclipse Mosquitto < 2.0.16 - Resource Allocation Without Limits
CVSS 5.8
CVE-2023-20202
MEDIUM
Cisco IOS XE - DoS
CVSS 6.1
CVE-2023-3223
HIGH
Redhat Undertow < 2.2.24 - Denial of Service
CVSS 7.5
CVE-2023-43632
CRITICAL
VTPM - Info Disclosure
CVSS 9.0
CVE-2023-37279
HIGH
Contribsys Faktory < 1.8.0 - Denial of Service
CVSS 7.5
CVE-2023-33953
HIGH
gRPC - DoS
CVSS 7.5
CVE-2023-20108
HIGH
Cisco Unified Communications Manager IM& Presence Service - DoS
CVSS 7.5
CVE-2023-30837
HIGH
Vyper <0.3.8 - Code Injection
CVSS 7.5
CVE-2023-20089
HIGH
Cisco Nexus 9000 - Memory Leak
CVSS 7.4
CVE-2023-24201
CRITICAL
Raffle Draw System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-20845
MEDIUM
Cisco NCS 4000 Series - Memory Corruption
CVSS 6.0
CVE-2022-4741
MEDIUM
docconv <1.2.0 - Memory Corruption
CVSS 4.3
CVE-2022-22226
MEDIUM
Junos OS - DoS
CVSS 6.5
CVE-2022-34917
HIGH
Apache Kafka < 2.8.2 - Resource Allocation Without Limits
CVSS 7.5
CVE-2022-36078
HIGH
Binary < - Memory Corruption
CVSS 8.8
CVE-2022-31804
HIGH
CODESYS Gateway Server V2 - Memory Corruption
CVSS 7.5
CVE-2022-30522
HIGH
Apache HTTP Server - Resource Allocation Without Limits
CVSS 7.5
Details
Vulnerabilities
122