Vulnerabilities > Allocation of Resources Without Limits or Throttling
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-24 | CVE-2021-39293 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products In archive/zip in Go before 1.16.8 and 1.17.x before 1.17.1, a crafted archive header (falsely designating that many files are present) can cause a NewReader or OpenReader panic. | 7.5 |
| 2022-01-21 | CVE-2021-39480 | Allocation of Resources Without Limits or Throttling vulnerability in Bingrep Project Bingrep 0.8.5 Bingrep v0.8.5 was discovered to contain a memory allocation failure which can cause a Denial of Service (DoS). | 7.5 |
| 2022-01-21 | CVE-2022-23837 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products In api.rb in Sidekiq before 5.2.10 and 6.4.0, there is no limit on the number of days when requesting stats for the graph. | 7.5 |
| 2022-01-19 | CVE-2022-22153 | Allocation of Resources Without Limits or Throttling vulnerability in Juniper Junos An Insufficient Algorithmic Complexity combined with an Allocation of Resources Without Limits or Throttling vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on SRX Series and MX Series with SPC3 allows an unauthenticated network attacker to cause latency in transit packet processing and even packet loss. | 7.5 |
| 2022-01-10 | CVE-2021-46050 | Allocation of Resources Without Limits or Throttling vulnerability in Webassembly Binaryen 103 A Stack Overflow vulnerability exists in Binaryen 103 via the printf_common function. | 5.5 |
| 2022-01-10 | CVE-2020-9059 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products Z-Wave devices based on Silicon Labs 500 series chipsets using S0 authentication are susceptible to uncontrolled resource consumption leading to battery exhaustion. | 6.5 |
| 2022-01-06 | CVE-2021-28714 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products Guest can force Linux netback driver to hog large amounts of kernel memory T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Incoming data packets for a guest in the Linux kernel's netback driver are buffered until the guest is ready to process them. | 6.5 |
| 2022-01-06 | CVE-2021-28715 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products Guest can force Linux netback driver to hog large amounts of kernel memory T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Incoming data packets for a guest in the Linux kernel's netback driver are buffered until the guest is ready to process them. | 6.5 |
| 2022-01-06 | CVE-2021-43045 | Allocation of Resources Without Limits or Throttling vulnerability in Apache Avro A vulnerability in the .NET SDK of Apache Avro allows an attacker to allocate excessive resources, potentially causing a denial-of-service attack. | 7.5 |
| 2022-01-06 | CVE-2021-44590 | Allocation of Resources Without Limits or Throttling vulnerability in Libming 0.4.8 In libming 0.4.8, a memory exhaustion vulnerability exist in the function cws2fws in util/main.c. | 6.5 |