Vulnerabilities > Allocation of Resources Without Limits or Throttling

DATE CVE VULNERABILITY TITLE RISK
2025-01-06 CVE-2024-43064 Allocation of Resources Without Limits or Throttling vulnerability in Qualcomm products
Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access the global registers through SMMU.
local
high complexity
qualcomm CWE-770
4.7
2025-01-02 CVE-2022-49035 Allocation of Resources Without Limits or Throttling vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE I expect that the hardware will have limited this to 16, but just in case it hasn't, check for this corner case.
local
low complexity
linux CWE-770
5.5
2024-12-29 CVE-2024-56722 Allocation of Resources Without Limits or Throttling vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix cpu stuck caused by printings during reset During reset, cmd to destroy resources such as qp, cq, and mr may fail, and error logs will be printed.
local
low complexity
linux CWE-770
5.5
2024-12-19 CVE-2023-30443 Allocation of Resources Without Limits or Throttling vulnerability in IBM DB2 10.5/11.1/11.5
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query.
network
low complexity
ibm CWE-770
6.5
2024-12-07 CVE-2024-41762 Allocation of Resources Without Limits or Throttling vulnerability in IBM DB2
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query.
network
low complexity
ibm CWE-770
6.5
2024-12-05 CVE-2024-11316 Allocation of Resources Without Limits or Throttling vulnerability in ABB products
Fileszie Check vulnerabilities allow a malicious user to bypass size limits or overload to the product.  Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02
network
low complexity
abb CWE-770
7.5
2024-11-23 CVE-2024-41761 Allocation of Resources Without Limits or Throttling vulnerability in IBM DB2 10.5/11.1/11.5
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query.
network
high complexity
ibm CWE-770
5.3
2024-11-19 CVE-2024-50271 Allocation of Resources Without Limits or Throttling vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: signal: restore the override_rlimit logic Prior to commit d64696905554 ("Reimplement RLIMIT_SIGPENDING on top of ucounts") UCOUNT_RLIMIT_SIGPENDING rlimit was not enforced for a class of signals.
local
low complexity
linux CWE-770
5.5
2024-11-19 CVE-2024-50285 Allocation of Resources Without Limits or Throttling vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: ksmbd: check outstanding simultaneous SMB operations If Client send simultaneous SMB operations to ksmbd, It exhausts too much memory through the "ksmbd_work_cache”.
local
low complexity
linux CWE-770
5.5
2024-11-13 CVE-2024-43083 Allocation of Resources Without Limits or Throttling vulnerability in Google Android
In validate of WifiConfigurationUtil.java , there is a possible persistent denial of service due to resource exhaustion.
local
low complexity
google CWE-770
5.5