Vulnerabilities > Allocation of Resources Without Limits or Throttling

DATE CVE VULNERABILITY TITLE RISK
2022-05-16 CVE-2022-25169 Allocation of Resources Without Limits or Throttling vulnerability in Apache Tika
The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files.
network
apache CWE-770
4.3
2022-05-16 CVE-2022-30775 Allocation of Resources Without Limits or Throttling vulnerability in Xpdfreader Xpdf 4.04
xpdf 4.04 allocates excessive memory when presented with crafted input.
4.3
2022-05-12 CVE-2022-22970 Allocation of Resources Without Limits or Throttling vulnerability in VMWare Spring Framework
In spring framework versions prior to 5.3.20+ , 5.2.22+ and old unsupported versions, applications that handle file uploads are vulnerable to DoS attack if they rely on data binding to set a MultipartFile or javax.servlet.Part to a field in a model object.
network
low complexity
vmware CWE-770
5.0
2022-05-12 CVE-2022-22971 Allocation of Resources Without Limits or Throttling vulnerability in VMWare Spring Framework
In spring framework versions prior to 5.3.20+ , 5.2.22+ and old unsupported versions, application with a STOMP over WebSocket endpoint is vulnerable to a denial of service attack by an authenticated user.
network
low complexity
vmware CWE-770
4.0
2022-05-11 CVE-2022-1428 Allocation of Resources Without Limits or Throttling vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions before 14.8.6, all versions starting from 14.9 before 14.9.4, all versions starting from 14.10 before 14.10.1.
network
low complexity
gitlab CWE-770
4.0
2022-05-11 CVE-2022-1510 Allocation of Resources Without Limits or Throttling vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions starting from 13.9 before 14.8.6, all versions starting from 14.9 before 14.9.4, all versions starting from 14.10 before 14.10.1.
network
low complexity
gitlab CWE-770
5.0
2022-05-04 CVE-2022-28556 Allocation of Resources Without Limits or Throttling vulnerability in Tenda Ac15 Firmware 15.03.05.20Multitde01
Tenda AC15 US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin is vulnerable to Buffer Overflow.
network
low complexity
tenda CWE-770
5.0
2022-05-03 CVE-2022-20751 Allocation of Resources Without Limits or Throttling vulnerability in Cisco Firepower Threat Defense
A vulnerability in the Snort detection engine integration for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause unlimited memory consumption, which could lead to a denial of service (DoS) condition on an affected device.
network
cisco CWE-770
7.1
2022-05-03 CVE-2022-20757 Allocation of Resources Without Limits or Throttling vulnerability in Cisco Firepower Threat Defense
A vulnerability in the connection handling function in Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
network
cisco CWE-770
4.3
2022-05-03 CVE-2022-20767 Allocation of Resources Without Limits or Throttling vulnerability in Cisco Firepower Threat Defense
A vulnerability in the Snort rule evaluation function of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
network
low complexity
cisco CWE-770
7.8