Vulnerabilities > Allocation of Resources Without Limits or Throttling

DATE CVE VULNERABILITY TITLE RISK
2021-12-27 CVE-2021-45699 Allocation of Resources Without Limits or Throttling vulnerability in Nervos CKB
An issue was discovered in the ckb crate before 0.40.0 for Rust.
network
low complexity
nervos CWE-770
7.5
2021-12-16 CVE-2020-35210 Allocation of Resources Without Limits or Throttling vulnerability in Atomix
A vulnerability in Atomix v3.1.5 allows attackers to cause a denial of service (DoS) via a Raft session flooding attack using Raft OpenSessionRequest messages.
network
low complexity
atomix CWE-770
6.5
2021-12-16 CVE-2021-38244 Allocation of Resources Without Limits or Throttling vulnerability in Cbioportal Project Cbioportal
A regular expression denial of service (ReDoS) vulnerability exits in cbioportal 3.6.21 and older via a POST request to /ProteinArraySignificanceTest.json.
network
low complexity
cbioportal-project CWE-770
7.5
2021-11-30 CVE-2021-31787 Allocation of Resources Without Limits or Throttling vulnerability in Actions-Semi products
The Bluetooth Classic implementation on Actions ATS2815 chipsets does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and shutdown of a device by flooding the target device with LMP_features_res packets.
low complexity
actions-semi CWE-770
6.5
2021-11-24 CVE-2021-28706 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit.
network
low complexity
xen fedoraproject debian CWE-770
8.6
2021-11-19 CVE-2021-29324 Allocation of Resources Without Limits or Throttling vulnerability in Moddable 10.5.0
OpenSource Moddable v10.5.0 was discovered to contain a stack overflow via the component /moddable/xs/sources/xsScript.c.
local
low complexity
moddable CWE-770
7.8
2021-11-19 CVE-2021-29329 Allocation of Resources Without Limits or Throttling vulnerability in Moddable 10.5.0
OpenSource Moddable v10.5.0 was discovered to contain a stack overflow in the fxBinaryExpressionNodeDistribute function at /moddable/xs/sources/xsTree.c.
local
low complexity
moddable CWE-770
7.8
2021-11-11 CVE-2021-3912 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
OctoRPKI tries to load the entire contents of a repository in memory, and in the case of a GZIP bomb, unzip it in memory, making it possible to create a repository that makes OctoRPKI run out of memory (and thus crash).
network
low complexity
cloudflare debian CWE-770
6.5
2021-11-05 CVE-2021-39907 Allocation of Resources Without Limits or Throttling vulnerability in Gitlab
A potential DOS vulnerability was discovered in GitLab CE/EE starting with version 13.7.
network
low complexity
gitlab CWE-770
5.3
2021-11-05 CVE-2021-39912 Allocation of Resources Without Limits or Throttling vulnerability in Gitlab
A potential DoS vulnerability was discovered in GitLab CE/EE starting with version 13.7.
network
low complexity
gitlab CWE-770
5.3