Vulnerabilities > Allocation of Resources Without Limits or Throttling
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-16 | CVE-2021-38244 | Allocation of Resources Without Limits or Throttling vulnerability in Cbioportal Project Cbioportal A regular expression denial of service (ReDoS) vulnerability exits in cbioportal 3.6.21 and older via a POST request to /ProteinArraySignificanceTest.json. | 7.5 |
| 2021-11-30 | CVE-2021-31787 | Allocation of Resources Without Limits or Throttling vulnerability in Actions-Semi products The Bluetooth Classic implementation on Actions ATS2815 chipsets does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and shutdown of a device by flooding the target device with LMP_features_res packets. | 6.5 |
| 2021-11-24 | CVE-2021-28706 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. | 8.6 |
| 2021-11-19 | CVE-2021-29324 | Allocation of Resources Without Limits or Throttling vulnerability in Moddable 10.5.0 OpenSource Moddable v10.5.0 was discovered to contain a stack overflow via the component /moddable/xs/sources/xsScript.c. | 7.8 |
| 2021-11-19 | CVE-2021-29329 | Allocation of Resources Without Limits or Throttling vulnerability in Moddable 10.5.0 OpenSource Moddable v10.5.0 was discovered to contain a stack overflow in the fxBinaryExpressionNodeDistribute function at /moddable/xs/sources/xsTree.c. | 7.8 |
| 2021-11-11 | CVE-2021-3912 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products OctoRPKI tries to load the entire contents of a repository in memory, and in the case of a GZIP bomb, unzip it in memory, making it possible to create a repository that makes OctoRPKI run out of memory (and thus crash). | 6.5 |
| 2021-11-05 | CVE-2021-39907 | Allocation of Resources Without Limits or Throttling vulnerability in Gitlab A potential DOS vulnerability was discovered in GitLab CE/EE starting with version 13.7. | 5.3 |
| 2021-11-05 | CVE-2021-39912 | Allocation of Resources Without Limits or Throttling vulnerability in Gitlab A potential DoS vulnerability was discovered in GitLab CE/EE starting with version 13.7. | 5.3 |
| 2021-11-04 | CVE-2021-34741 | Allocation of Resources Without Limits or Throttling vulnerability in Cisco Asyncos A vulnerability in the email scanning algorithm of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to perform a denial of service (DoS) attack against an affected device. | 7.5 |
| 2021-11-02 | CVE-2021-36174 | Allocation of Resources Without Limits or Throttling vulnerability in Fortinet Fortiportal A memory allocation with excessive size value vulnerability in the license verification function of FortiPortal before 6.0.6 may allow an attacker to perform a denial of service attack via specially crafted license blobs. | 7.5 |