Vulnerabilities > Allocation of Resources Without Limits or Throttling
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-01 | CVE-2022-22950 | Allocation of Resources Without Limits or Throttling vulnerability in VMWare Spring Framework n Spring Framework versions 5.3.0 - 5.3.16 and older unsupported versions, it is possible for a user to provide a specially crafted SpEL expression that may cause a denial of service condition. | 6.5 |
| 2022-04-01 | CVE-2022-22404 | Allocation of Resources Without Limits or Throttling vulnerability in IBM APP Connect Enterprise Certified Container IBM App Connect Enterprise Certified Container Dashboard UI (IBM App Connect Enterprise Certified Container 1.5, 2.0, 2.1, 3.0, and 3.1) may be vulnerable to denial of service due to excessive rate limiting. | 6.5 |
| 2022-03-31 | CVE-2021-43662 | Allocation of Resources Without Limits or Throttling vulnerability in Totolink A720R Firmware and Ex300 V2 Firmware totolink EX300_v2, ver V4.0.3c.140_B20210429 and A720R ,ver V4.1.5cu.470_B20200911 have an issue which causes uncontrolled resource consumption. | 6.5 |
| 2022-03-28 | CVE-2017-20016 | Allocation of Resources Without Limits or Throttling vulnerability in Weka Interest Security Scanner 1.8 A vulnerability has been found in WEKA INTEREST Security Scanner up to 1.8 and classified as problematic. | 7.5 |
| 2022-03-11 | CVE-2021-32476 | Allocation of Resources Without Limits or Throttling vulnerability in Moodle A denial-of-service risk was identified in the draft files area, due to it not respecting user file upload limits. | 7.5 |
| 2022-03-09 | CVE-2022-24741 | Allocation of Resources Without Limits or Throttling vulnerability in Nextcloud Server Nextcloud server is an open source, self hosted cloud style services platform. | 6.5 |
| 2022-03-03 | CVE-2022-21716 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products Twisted is an event-based framework for internet applications, supporting Python 3.6+. | 7.5 |
| 2022-02-28 | CVE-2022-24685 | Allocation of Resources Without Limits or Throttling vulnerability in Hashicorp Nomad HashiCorp Nomad and Nomad Enterprise 1.0.17, 1.1.11, and 1.2.5 allow invalid HCL for the jobs parse endpoint, which may cause excessive CPU usage. | 7.5 |
| 2022-02-24 | CVE-2022-24614 | Allocation of Resources Without Limits or Throttling vulnerability in Metadata-Extractor Project Metadata-Extractor When reading a specially crafted JPEG file, metadata-extractor up to 2.16.0 can be made to allocate large amounts of memory that finally leads to an out-of-memory error even for very small inputs. | 5.5 |
| 2022-02-19 | CVE-2016-20013 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products sha256crypt and sha512crypt through 0.6 allow attackers to cause a denial of service (CPU consumption) because the algorithm's runtime is proportional to the square of the length of the password. | 7.5 |