Vulnerabilities > Allocation of Resources Without Limits or Throttling
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-15 | CVE-2022-21698 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products client_golang is the instrumentation library for Go applications in Prometheus, and the promhttp package in client_golang provides tooling around HTTP servers and clients. | 7.5 |
| 2022-02-04 | CVE-2021-32036 | Allocation of Resources Without Limits or Throttling vulnerability in Mongodb An authenticated user without any specific authorizations may be able to repeatedly invoke the features command where at a high volume may lead to resource depletion or generate high lock contention. | 7.1 |
| 2022-02-03 | CVE-2022-21732 | Allocation of Resources Without Limits or Throttling vulnerability in Google Tensorflow Tensorflow is an Open Source Machine Learning Framework. | 6.5 |
| 2022-02-03 | CVE-2021-41840 | Allocation of Resources Without Limits or Throttling vulnerability in Insyde Insydeh2O An issue was discovered in NvmExpressDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. | 8.2 |
| 2022-02-01 | CVE-2022-24196 | Allocation of Resources Without Limits or Throttling vulnerability in Itextpdf Itext iText v7.1.17, up to (exluding)": 7.1.18 and 7.2.2 was discovered to contain an out-of-memory error via the component readStreamBytesRaw, which allows attackers to cause a Denial of Service (DoS) via a crafted PDF file. | 6.5 |
| 2022-01-27 | CVE-2021-28096 | Allocation of Resources Without Limits or Throttling vulnerability in Stormshield Network Security An issue was discovered in Stormshield SNS before 4.2.3 (when the proxy is used). | 5.3 |
| 2022-01-25 | CVE-2021-44988 | Allocation of Resources Without Limits or Throttling vulnerability in Jerryscript 3.0.0 Jerryscript v3.0.0 and below was discovered to contain a stack overflow via ecma_find_named_property in ecma-helpers.c. | 7.8 |
| 2022-01-24 | CVE-2021-39293 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products In archive/zip in Go before 1.16.8 and 1.17.x before 1.17.1, a crafted archive header (falsely designating that many files are present) can cause a NewReader or OpenReader panic. | 7.5 |
| 2022-01-21 | CVE-2021-39480 | Allocation of Resources Without Limits or Throttling vulnerability in Bingrep Project Bingrep 0.8.5 Bingrep v0.8.5 was discovered to contain a memory allocation failure which can cause a Denial of Service (DoS). | 7.5 |
| 2022-01-21 | CVE-2022-23837 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products In api.rb in Sidekiq before 5.2.10 and 6.4.0, there is no limit on the number of days when requesting stats for the graph. | 7.5 |