Vulnerabilities > Allocation of Resources Without Limits or Throttling

DATE CVE VULNERABILITY TITLE RISK
2024-12-19 CVE-2023-30443 IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query.
network
high complexity
CWE-770
5.3
2024-11-19 CVE-2024-50271 Allocation of Resources Without Limits or Throttling vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: signal: restore the override_rlimit logic Prior to commit d64696905554 ("Reimplement RLIMIT_SIGPENDING on top of ucounts") UCOUNT_RLIMIT_SIGPENDING rlimit was not enforced for a class of signals.
local
low complexity
linux CWE-770
5.5
2024-11-19 CVE-2024-50285 Allocation of Resources Without Limits or Throttling vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: ksmbd: check outstanding simultaneous SMB operations If Client send simultaneous SMB operations to ksmbd, It exhausts too much memory through the "ksmbd_work_cache”.
local
low complexity
linux CWE-770
5.5
2024-11-13 CVE-2024-43083 Allocation of Resources Without Limits or Throttling vulnerability in Google Android
In validate of WifiConfigurationUtil.java , there is a possible persistent denial of service due to resource exhaustion.
local
low complexity
google CWE-770
5.5
2024-11-04 CVE-2024-48809 Allocation of Resources Without Limits or Throttling vulnerability in Aetherproject Onos-A1T and Sdran-In-A-Box
An issue in Open Networking Foundations sdran-in-a-box v.1.4.3 and onos-a1t v.0.2.3 allows a remote attacker to cause a denial of service via the onos-a1t component of the sdran-in-a-box, specifically the DeleteWatcher function.
network
low complexity
aetherproject CWE-770
7.5
2024-11-04 CVE-2024-51557 Allocation of Resources Without Limits or Throttling vulnerability in 63Moons Aero and Wave 2.0
This vulnerability exists in the Wave 2.0 due to missing rate limiting on OTP requests in an API endpoint.
network
low complexity
63moons CWE-770
6.5
2024-10-31 CVE-2024-10599 Allocation of Resources Without Limits or Throttling vulnerability in Tongda2000 Office Anywhere 2017
A vulnerability, which was classified as problematic, has been found in Tongda OA 2017 up to 11.7.
network
low complexity
tongda2000 CWE-770
7.5
2024-10-30 CVE-2024-31152 Allocation of Resources Without Limits or Throttling vulnerability in Level1 Wbr-6012 Firmware R0.40E6
The LevelOne WBR-6012 router with firmware R0.40e6 is vulnerable to improper resource allocation within its web application, where a series of crafted HTTP requests can cause a reboot.
network
low complexity
level1 CWE-770
7.5
2024-10-29 CVE-2024-7807 Allocation of Resources Without Limits or Throttling vulnerability in Gaizhenbiao Chuanhuchatgpt 20240628
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240628 allows for a Denial of Service (DOS) attack.
network
low complexity
gaizhenbiao CWE-770
7.5
2024-10-25 CVE-2024-49767 Allocation of Resources Without Limits or Throttling vulnerability in Palletsprojects Werkzeug
Werkzeug is a Web Server Gateway Interface web application library.
network
low complexity
palletsprojects CWE-770
7.5