Vulnerabilities > Allocation of Resources Without Limits or Throttling
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-06 | CVE-2023-3246 | Allocation of Resources Without Limits or Throttling vulnerability in Gitlab An issue has been discovered in GitLab EE/CE affecting all versions starting before 16.3.6, all versions starting from 16.4 before 16.4.2, all versions starting from 16.5 before 16.5.1 which allows an attackers to block Sidekiq job processor. | 4.3 |
| 2023-11-03 | CVE-2023-44271 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products An issue was discovered in Pillow before 10.0.0. | 7.5 |
| 2023-11-02 | CVE-2023-46695 | Allocation of Resources Without Limits or Throttling vulnerability in Djangoproject Django An issue was discovered in Django 3.2 before 3.2.23, 4.1 before 4.1.13, and 4.2 before 4.2.7. | 7.5 |
| 2023-10-25 | CVE-2023-29973 | Allocation of Resources Without Limits or Throttling vulnerability in Pfsense 2.6.0 Pfsense CE version 2.6.0 is vulnerable to No rate limit which can lead to an attacker creating multiple malicious users in firewall. | 4.9 |
| 2023-10-14 | CVE-2023-45862 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products An issue was discovered in drivers/usb/storage/ene_ub6250.c for the ENE UB6250 reader driver in the Linux kernel before 6.2.5. | 5.5 |
| 2023-10-13 | CVE-2023-45130 | Allocation of Resources Without Limits or Throttling vulnerability in Parity Frontier Frontier is Substrate's Ethereum compatibility layer. | 7.5 |
| 2023-10-13 | CVE-2023-5573 | Allocation of Resources Without Limits or Throttling vulnerability in Vrite Allocation of Resources Without Limits or Throttling in GitHub repository vriteio/vrite prior to 0.3.0. | 6.5 |
| 2023-10-13 | CVE-2023-44191 | Allocation of Resources Without Limits or Throttling vulnerability in Juniper Junos An Allocation of Resources Without Limits or Throttling vulnerability in Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause Denial of Service (DoS). On all Junos OS QFX5000 Series and EX4000 Series platforms, when a high number of VLANs are configured, a specific DHCP packet will cause PFE hogging which will lead to dropping of socket connections. This issue affects: Juniper Networks Junos OS on QFX5000 Series and EX4000 Series * 21.1 versions prior to 21.1R3-S5; * 21.2 versions prior to 21.2R3-S5; * 21.3 versions prior to 21.3R3-S5; * 21.4 versions prior to 21.4R3-S4; * 22.1 versions prior to 22.1R3-S3; * 22.2 versions prior to 22.2R3-S1; * 22.3 versions prior to 22.3R2-S2, 22.3R3; * 22.4 versions prior to 22.4R2. This issue does not affect Juniper Networks Junos OS versions prior to 21.1R1 | 7.5 |
| 2023-10-12 | CVE-2023-45142 | Allocation of Resources Without Limits or Throttling vulnerability in Opentelemetry 0.43.0 OpenTelemetry-Go Contrib is a collection of third-party packages for OpenTelemetry-Go. | 7.5 |
| 2023-10-12 | CVE-2023-5072 | Allocation of Resources Without Limits or Throttling vulnerability in Json-Java Project Json-Java Denial of Service in JSON-Java versions up to and including 20230618. | 7.5 |