Vulnerabilities > Allocation of Resources Without Limits or Throttling

DATE CVE VULNERABILITY TITLE RISK
2024-05-01 CVE-2024-27013 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
In the Linux kernel, the following vulnerability has been resolved: tun: limit printing rate when illegal packet received by tun dev vhost_worker will call tun call backs to receive packets.
local
low complexity
linux fedoraproject CWE-770
5.5
2024-03-31 CVE-2024-22353 Allocation of Resources Without Limits or Throttling vulnerability in IBM Websphere Application Server
IBM WebSphere Application Server Liberty 17.0.0.3 through 24.0.0.4 is vulnerable to a denial of service, caused by sending a specially crafted request.
network
low complexity
ibm CWE-770
7.5
2024-02-29 CVE-2024-20321 Allocation of Resources Without Limits or Throttling vulnerability in Cisco Nx-Os
A vulnerability in the External Border Gateway Protocol (eBGP) implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability exists because eBGP traffic is mapped to a shared hardware rate-limiter queue.
network
low complexity
cisco CWE-770
8.6
2024-02-19 CVE-2024-26308 Allocation of Resources Without Limits or Throttling vulnerability in Apache Commons Compress
Allocation of Resources Without Limits or Throttling vulnerability in Apache Commons Compress.This issue affects Apache Commons Compress: from 1.21 before 1.26. Users are recommended to upgrade to version 1.26, which fixes the issue.
local
low complexity
apache CWE-770
5.5
2024-02-14 CVE-2023-50387 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue.
7.5
2024-02-11 CVE-2023-52427 Allocation of Resources Without Limits or Throttling vulnerability in Objectcomputing Opendds 3.23.1
In OpenDDS through 3.27, there is a segmentation fault for a DataWriter with a large value of resource_limits.max_samples.
network
low complexity
objectcomputing CWE-770
7.5
2024-02-02 CVE-2023-45028 Allocation of Resources Without Limits or Throttling vulnerability in Qnap Qts, Quts Hero and Qutscloud
An uncontrolled resource consumption vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-770
4.9
2024-01-29 CVE-2024-23826 Allocation of Resources Without Limits or Throttling vulnerability in Se.Math.Spbu Spbu SE Site
spbu_se_site is the website of the Department of System Programming of St.
network
low complexity
se-math-spbu CWE-770
5.7
2024-01-12 CVE-2024-21655 Allocation of Resources Without Limits or Throttling vulnerability in Discourse
Discourse is a platform for community discussion.
network
low complexity
discourse CWE-770
4.3
2024-01-12 CVE-2024-21604 Allocation of Resources Without Limits or Throttling vulnerability in Juniper Junos OS Evolved
An Allocation of Resources Without Limits or Throttling vulnerability in the kernel of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS). If a high rate of specific valid packets are processed by the routing engine (RE) this will lead to a loss of connectivity of the RE with other components of the chassis and thereby a complete and persistent system outage.
network
low complexity
juniper CWE-770
7.5