Vulnerabilities > Allocation of Resources Without Limits or Throttling

DATE CVE VULNERABILITY TITLE RISK
2022-07-11 CVE-2022-31080 Allocation of Resources Without Limits or Throttling vulnerability in Linuxfoundation Kubeedge
KubeEdge is an open source system for extending native containerized application orchestration capabilities to hosts at Edge.
network
low complexity
linuxfoundation CWE-770
6.5
2022-07-07 CVE-2021-31645 Allocation of Resources Without Limits or Throttling vulnerability in Glftpd 2.11A
An issue was discovered in glFTPd 2.11a that allows remote attackers to cause a denial of service via exceeding the connection limit.
network
low complexity
glftpd CWE-770
7.5
2022-07-07 CVE-2022-32205 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
A malicious server can serve excessive amounts of `Set-Cookie:` headers in a HTTP response to curl and curl < 7.84.0 stores all of them.
4.3
2022-07-07 CVE-2022-32206 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
curl < 7.84.0 supports "chained" HTTP compression algorithms, meaning that a serverresponse can be compressed multiple times and potentially with different algorithms.
6.5
2022-06-28 CVE-2021-40607 Allocation of Resources Without Limits or Throttling vulnerability in Gpac
The schm_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command.
local
low complexity
gpac CWE-770
5.5
2022-06-28 CVE-2021-40609 Allocation of Resources Without Limits or Throttling vulnerability in Gpac
The GetHintFormat function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command.
local
low complexity
gpac CWE-770
5.5
2022-06-28 CVE-2022-34750 Allocation of Resources Without Limits or Throttling vulnerability in Mediawiki
An issue was discovered in MediaWiki through 1.38.1.
network
low complexity
mediawiki CWE-770
7.5
2022-06-27 CVE-2021-40941 Allocation of Resources Without Limits or Throttling vulnerability in Axiosys Bento4 1.6.0638
In Bento4 1.6.0-638, there is an allocator is out of memory in the function AP4_Array<AP4_TrunAtom::Entry>::EnsureCapacity in Ap4Array.h:172, as demonstrated by GPAC.
network
low complexity
axiosys CWE-770
7.5
2022-06-25 CVE-2022-31016 Allocation of Resources Without Limits or Throttling vulnerability in Argoproj Argo CD
Argo CD is a declarative continuous deployment for Kubernetes.
network
low complexity
argoproj CWE-770
6.5
2022-06-21 CVE-2022-22979 Allocation of Resources Without Limits or Throttling vulnerability in VMWare Spring Cloud Function
In Spring Cloud Function versions prior to 3.2.6, it is possible for a user who directly interacts with framework provided lookup functionality to cause a denial-of-service condition due to the caching issue in the Function Catalog component of the framework.
network
low complexity
vmware CWE-770
7.5