Vulnerabilities > Allocation of Resources Without Limits or Throttling
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-11 | CVE-2021-41800 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products MediaWiki before 1.36.2 allows a denial of service (resource consumption because of lengthy query processing time). | 5.3 |
| 2021-10-05 | CVE-2021-35492 | Allocation of Resources Without Limits or Throttling vulnerability in Wowza Streaming Engine Wowza Streaming Engine through 4.8.11+5 could allow an authenticated, remote attacker to exhaust filesystem resources via the /enginemanager/server/vhost/historical.jsdata vhost parameter. | 4.0 |
| 2021-10-04 | CVE-2021-32675 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products Redis is an open source, in-memory database that persists on disk. | 7.5 |
| 2021-10-04 | CVE-2021-41591 | Allocation of Resources Without Limits or Throttling vulnerability in Acinq Eclair ACINQ Eclair before 0.6.3 allows loss of funds because of dust HTLC exposure. | 7.5 |
| 2021-10-04 | CVE-2021-41592 | Allocation of Resources Without Limits or Throttling vulnerability in Elementsproject C-Lightning 0.7.1 Blockstream c-lightning through 0.10.1 allows loss of funds because of dust HTLC exposure. | 7.5 |
| 2021-10-04 | CVE-2021-41593 | Allocation of Resources Without Limits or Throttling vulnerability in Lightning Network Daemon Project Lightning Network Daemon Lightning Labs lnd before 0.13.3-beta allows loss of funds because of dust HTLC exposure. | 7.5 |
| 2021-09-27 | CVE-2021-34415 | Allocation of Resources Without Limits or Throttling vulnerability in Zoom Meeting Connector The Zone Controller service in the Zoom On-Premise Meeting Connector Controller before version 4.6.358.20210205 does not verify the cnt field sent in incoming network packets, which leads to exhaustion of resources and system crash. | 7.8 |
| 2021-09-16 | CVE-2021-29763 | Allocation of Resources Without Limits or Throttling vulnerability in IBM DB2 11.1/11.5 IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 under very specific conditions, could allow a local user to keep running a procedure that could cause the system to run out of memory.and cause a denial of service. | 1.9 |
| 2021-09-14 | CVE-2021-23053 | Allocation of Resources Without Limits or Throttling vulnerability in F5 products On version 15.1.x before 15.1.3, 14.1.x before 14.1.3.1, and 13.1.x before 13.1.3.6, when the brute force protection feature of BIG-IP Advanced WAF or BIG-IP ASM is enabled on a virtual server and the virtual server is under brute force attack, the MySQL database may run out of disk space due to lack of row limit on undisclosed tables in the MYSQL database. | 4.3 |
| 2021-09-10 | CVE-2021-33011 | Allocation of Resources Without Limits or Throttling vulnerability in Jtekt products All versions of the afffected TOYOPUC-PC10 Series,TOYOPUC-Plus Series,TOYOPUC-PC3J/PC2J Series, TOYOPUC-Nano Series products may not be able to properly process an ICMP flood, which may allow an attacker to deny Ethernet communications between affected devices. | 3.3 |