Vulnerabilities > Allocation of Resources Without Limits or Throttling
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-15 | CVE-2022-20622 | Allocation of Resources Without Limits or Throttling vulnerability in Cisco Aironet Access Point Software A vulnerability in IP ingress packet processing of the Cisco Embedded Wireless Controller with Catalyst Access Points Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, causing a denial of service (DoS) condition. | 7.5 |
| 2022-04-15 | CVE-2022-20717 | Allocation of Resources Without Limits or Throttling vulnerability in Cisco Sd-Wan Vedge Router 20.7 A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Routers could allow an authenticated, local attacker to cause an affected device to run out of memory, resulting in a denial of service (DoS) condition. | 5.5 |
| 2022-04-13 | CVE-2022-1333 | Allocation of Resources Without Limits or Throttling vulnerability in Mattermost Playbooks Mattermost Playbooks plugin v1.24.0 and earlier fails to properly check the limit on the number of webhooks, which allows authenticated and authorized users to create a specifically drafted Playbook which could trigger a large amount of webhook requests leading to Denial of Service. | 4.0 |
| 2022-04-13 | CVE-2022-1337 | Allocation of Resources Without Limits or Throttling vulnerability in Mattermost Server The image proxy component in Mattermost version 6.4.1 and earlier allocates memory for multiple copies of a proxied image, which allows an authenticated attacker to crash the server via links to very large image files. | 6.5 |
| 2022-04-07 | CVE-2022-27819 | Allocation of Resources Without Limits or Throttling vulnerability in Waycrate Swhkd 1.1.5 SWHKD 1.1.5 allows unsafe parsing via the -c option. | 5.3 |
| 2022-04-04 | CVE-2022-1121 | Allocation of Resources Without Limits or Throttling vulnerability in Gitlab A lack of appropriate timeouts in GitLab Pages included in GitLab CE/EE all versions prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 allows an attacker to cause unlimited resource consumption. | 5.0 |
| 2022-04-01 | CVE-2022-22950 | Allocation of Resources Without Limits or Throttling vulnerability in VMWare Spring Framework n Spring Framework versions 5.3.0 - 5.3.16 and older unsupported versions, it is possible for a user to provide a specially crafted SpEL expression that may cause a denial of service condition. | 4.0 |
| 2022-04-01 | CVE-2022-22404 | Allocation of Resources Without Limits or Throttling vulnerability in IBM APP Connect Enterprise Certified Container IBM App Connect Enterprise Certified Container Dashboard UI (IBM App Connect Enterprise Certified Container 1.5, 2.0, 2.1, 3.0, and 3.1) may be vulnerable to denial of service due to excessive rate limiting. | 4.0 |
| 2022-03-31 | CVE-2021-43662 | Allocation of Resources Without Limits or Throttling vulnerability in Totolink A720R Firmware and Ex300 V2 Firmware totolink EX300_v2, ver V4.0.3c.140_B20210429 and A720R ,ver V4.1.5cu.470_B20200911 have an issue which causes uncontrolled resource consumption. | 3.3 |
| 2022-03-28 | CVE-2017-20016 | Allocation of Resources Without Limits or Throttling vulnerability in Weka Interest Security Scanner 1.8 A vulnerability has been found in WEKA INTEREST Security Scanner up to 1.8 and classified as problematic. | 7.5 |