Vulnerabilities > Allocation of Resources Without Limits or Throttling

DATE CVE VULNERABILITY TITLE RISK
2022-08-16 CVE-2022-36155 Allocation of Resources Without Limits or Throttling vulnerability in Monostream Tifig 0.2.2
tifig v0.2.2 was discovered to contain a resource allocation issue via operator new(unsigned long) at asan_new_delete.cpp.
local
low complexity
monostream CWE-770
5.5
2022-08-11 CVE-2022-38155 Allocation of Resources Without Limits or Throttling vulnerability in Samsung Mtower 0.1.0/0.2.0/0.3.0
TEE_Malloc in Samsung mTower through 0.3.0 allows a trusted application to achieve Excessive Memory Allocation via a large len value, as demonstrated by a Numaker-PFM-M2351 TEE kernel crash.
network
low complexity
samsung CWE-770
7.5
2022-08-10 CVE-2022-36324 Allocation of Resources Without Limits or Throttling vulnerability in Siemens products
Affected devices do not properly handle the renegotiation of SSL/TLS parameters.
network
low complexity
siemens CWE-770
7.5
2022-08-09 CVE-2022-36124 Allocation of Resources Without Limits or Throttling vulnerability in Apache Avro
It is possible for a Reader to consume memory beyond the allowed constraints and thus lead to out of memory on the system.
network
low complexity
apache CWE-770
7.5
2022-08-03 CVE-2022-35505 Allocation of Resources Without Limits or Throttling vulnerability in Triplecross Project Triplecross 0.1.0
A segmentation fault in TripleCross v0.1.0 occurs when sending a control command from the client to the server.
network
low complexity
triplecross-project CWE-770
7.5
2022-08-02 CVE-2022-35220 Allocation of Resources Without Limits or Throttling vulnerability in Teamplus Team+ PRO
Teamplus Pro community discussion function has an ‘allocation of resource without limits or throttling’ vulnerability.
network
low complexity
teamplus CWE-770
6.5
2022-08-01 CVE-2022-35922 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Rust-WebSocket is a WebSocket (RFC6455) library written in Rust.
7.5
2022-08-01 CVE-2022-35915 Allocation of Resources Without Limits or Throttling vulnerability in Openzeppelin products
OpenZeppelin Contracts is a library for secure smart contract development.
network
low complexity
openzeppelin CWE-770
5.3
2022-07-20 CVE-2022-32958 Allocation of Resources Without Limits or Throttling vulnerability in Teamplus Team+ PRO
A remote attacker with general user privilege can send a message to Teamplus Pro’s chat group that exceeds message size limit, to terminate other recipients’ Teamplus Pro chat process.
network
low complexity
teamplus CWE-770
6.5
2022-07-17 CVE-2022-29286 Allocation of Resources Without Limits or Throttling vulnerability in Pexip Infinity
Pexip Infinity 27 before 28.0 allows remote attackers to trigger excessive resource consumption and termination because of registrar resource mishandling.
network
low complexity
pexip CWE-770
7.5