CWE-799

Improper Control of Interaction Frequency

Parent: CWE-691 - Insufficient Control Flow Management

The product does not properly limit the number or frequency of interactions that it has with an actor, such as the number of incoming requests.

69 vulnerabilities with CWE-799
CVE-2024-0094 MEDIUM
NVIDIA vGPU software and Cloud Gaming <= 17.1, 16.5, 13.10, April 2024 - Denial of Service via Virtual GPU Manager
CVSS 5.5
CVE-2024-24873 MEDIUM
CP Polls <= 1.0.71 - Polls Limitation Bypass
CVSS 5.3
CVE-2024-34695 MEDIUM
WOWS Karma <0.17.4.1 - Info Disclosure
CVSS 6.3
CVE-2023-51544 MEDIUM
Metagauss RegistrationMagic <5.2.5.0 - Info Disclosure
CVSS 5.3
CVE-2023-40673 MEDIUM
cartpauj Cartpauj Register Captcha <1.0.02 - Functionality Misuse
CVSS 6.5
CVE-2023-40332 MEDIUM
WP-PostRatings <= 1.91 - Rating Limit Bypass
CVSS 5.3
CVE-2023-27279 MEDIUM
IBM Aspera Faspex 5.0.0-5.0.7 - Denial of Service via Missing API Rate Limiting
CVSS 6.5
CVE-2023-35621 HIGH
Microsoft Dynamics 365 - Denial of Service
CVSS 7.5
CVE-2023-38068 MEDIUM
JetBrains YouTrack <2023.1.16597 - Info Disclosure
CVSS 6.5
CVE-2023-2758 LOW
Contec CONPROSYS HMI System < 3.5.3 - Unauthenticated Denial of Service via Time-Zone Mismatch
CVSS 3.7
CVE-2021-37910 LOW
ASUS GT-AXE11000, RT-AX3000, RT-AX55, RT-AX58U, TUF-AX3000 < 3.0.0.4.386.45898 DoS via SAE Frames
CVSS 3.7
CVE-2021-41177 HIGH
Nextcloud <20.0.13, 21.0.5, 22.2.0 - Info Disclosure
CVSS 8.1
CVE-2021-37191 MEDIUM
SINEMA Remote Connect Server <V3.0 SP2 - Info Disclosure
CVSS 4.3
CVE-2021-32741 MEDIUM
Nextcloud Server <19.0.13, <20.011, <21.0.3 - Info Disclosure
CVSS 5.3
CVE-2021-32705 MEDIUM
Nextcloud Server <19.0.13, 20.011, 21.0.3 - Info Disclosure
CVSS 5.3
CVE-2021-32703 MEDIUM
Nextcloud Server <19.0.13, 20.011, 21.0.3 - Info Disclosure
CVSS 5.3
CVE-2021-32678 LOW
Nextcloud Server <19.0.13, 20.0.11, 21.0.3 - Info Disclosure
CVSS 3.7
CVE-2020-5141 MEDIUM
SonicOS < 5.9.1.13, < 6.5.4.4 - Unauthenticated Brute Force via Virtual Assist Ticket ID
CVSS 6.5
CVE-2016-6543 MEDIUM
iTrack Easy - Unauthenticated GPS Data Exposure via MAC/Device ID Registration
CVSS 5.9
Details
Vulnerabilities 69
Links
MITRE CWE Entry Search this CWE With Exploits