Vulnerabilities > Allocation of Resources Without Limits or Throttling
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-11 | CVE-2023-26964 | Allocation of Resources Without Limits or Throttling vulnerability in Hyper H2 and Hyper An issue was discovered in hyper v0.13.7. | 7.5 |
| 2023-04-11 | CVE-2022-43768 | Allocation of Resources Without Limits or Throttling vulnerability in Siemens products A vulnerability has been identified in SIMATIC CP 1242-7 V2 (6GK7242-7KX31-0XE0) (All versions < V3.4.29), SIMATIC CP 1243-1 (6GK7243-1BX30-0XE0) (All versions < V3.4.29), SIMATIC CP 1243-1 DNP3 (incl. | 7.5 |
| 2023-04-06 | CVE-2023-24536 | Allocation of Resources Without Limits or Throttling vulnerability in Golang GO Multipart form parsing can consume large amounts of CPU and memory when processing form inputs containing very large numbers of parts. | 7.5 |
| 2023-04-04 | CVE-2023-27492 | Allocation of Resources Without Limits or Throttling vulnerability in Envoyproxy Envoy Envoy is an open source edge and service proxy designed for cloud-native applications. | 6.5 |
| 2023-04-03 | CVE-2023-28837 | Allocation of Resources Without Limits or Throttling vulnerability in Torchbox Wagtail Wagtail is an open source content management system built on Django. | 4.9 |
| 2023-03-27 | CVE-2022-46416 | Allocation of Resources Without Limits or Throttling vulnerability in Parrot Bebop Firmware 4.7.1 Parrot Bebop 4.7.1. | 5.9 |
| 2023-03-27 | CVE-2023-28867 | Allocation of Resources Without Limits or Throttling vulnerability in Graphql-Java In GraphQL Java (aka graphql-java) before 20.1, an attacker can send a crafted GraphQL query that causes stack consumption. | 7.5 |
| 2023-03-23 | CVE-2023-1544 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. | 6.3 |
| 2023-03-23 | CVE-2023-20067 | Allocation of Resources Without Limits or Throttling vulnerability in Cisco IOS XE A vulnerability in the HTTP-based client profiling feature of Cisco IOS XE Software for Wireless LAN Controllers (WLCs) could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. | 6.5 |
| 2023-03-22 | CVE-2023-28119 | Allocation of Resources Without Limits or Throttling vulnerability in Saml Project Saml 0.4.12 The crewjam/saml go library contains a partial implementation of the SAML standard in golang. | 7.5 |