Vulnerabilities > Allocation of Resources Without Limits or Throttling
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-05 | CVE-2023-26285 | Allocation of Resources Without Limits or Throttling vulnerability in IBM MQ Appliance IBM MQ 9.2 CD, 9.2 LTS, 9.3 CD, and 9.3 LTS could allow a remote attacker to cause a denial of service due to an error processing invalid data. | 5.9 |
| 2023-04-21 | CVE-2023-29575 | Allocation of Resources Without Limits or Throttling vulnerability in Axiosys Bento4 1.6.0639 Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in the mp42aac component. | 5.5 |
| 2023-04-13 | CVE-2023-29573 | Allocation of Resources Without Limits or Throttling vulnerability in Axiosys Bento4 1.6.0639 Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in the mp4info component. | 5.5 |
| 2023-04-11 | CVE-2023-26964 | Allocation of Resources Without Limits or Throttling vulnerability in Hyper H2 and Hyper An issue was discovered in hyper v0.13.7. | 7.5 |
| 2023-04-06 | CVE-2023-24536 | Allocation of Resources Without Limits or Throttling vulnerability in Golang GO Multipart form parsing can consume large amounts of CPU and memory when processing form inputs containing very large numbers of parts. | 7.5 |
| 2023-03-27 | CVE-2022-46416 | Allocation of Resources Without Limits or Throttling vulnerability in Parrot Bebop Firmware 4.7.1 Parrot Bebop 4.7.1. | 5.9 |
| 2023-03-27 | CVE-2023-28867 | Allocation of Resources Without Limits or Throttling vulnerability in Graphql-Java In GraphQL Java (aka graphql-java) before 20.1, an attacker can send a crafted GraphQL query that causes stack consumption. | 7.5 |
| 2023-03-23 | CVE-2023-1544 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. | 6.3 |
| 2023-03-23 | CVE-2023-20067 | Allocation of Resources Without Limits or Throttling vulnerability in Cisco IOS XE A vulnerability in the HTTP-based client profiling feature of Cisco IOS XE Software for Wireless LAN Controllers (WLCs) could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. | 6.5 |
| 2023-03-21 | CVE-2022-42333 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products x86/HVM pinned cache attributes mis-handling T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] To allow cachability control for HVM guests with passed through devices, an interface exists to explicitly override defaults which would otherwise be put in place. | 8.6 |