Vulnerabilities > Allocation of Resources Without Limits or Throttling

DATE CVE VULNERABILITY TITLE RISK
2021-11-19 CVE-2021-29324 Allocation of Resources Without Limits or Throttling vulnerability in Moddable 10.5.0
OpenSource Moddable v10.5.0 was discovered to contain a stack overflow via the component /moddable/xs/sources/xsScript.c.
local
low complexity
moddable CWE-770
7.8
2021-11-19 CVE-2021-29329 Allocation of Resources Without Limits or Throttling vulnerability in Moddable 10.5.0
OpenSource Moddable v10.5.0 was discovered to contain a stack overflow in the fxBinaryExpressionNodeDistribute function at /moddable/xs/sources/xsTree.c.
local
low complexity
moddable CWE-770
7.8
2021-11-11 CVE-2021-3912 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
OctoRPKI tries to load the entire contents of a repository in memory, and in the case of a GZIP bomb, unzip it in memory, making it possible to create a repository that makes OctoRPKI run out of memory (and thus crash).
network
low complexity
cloudflare debian CWE-770
6.5
2021-11-05 CVE-2021-39907 Allocation of Resources Without Limits or Throttling vulnerability in Gitlab
A potential DOS vulnerability was discovered in GitLab CE/EE starting with version 13.7.
network
low complexity
gitlab CWE-770
5.3
2021-11-05 CVE-2021-39912 Allocation of Resources Without Limits or Throttling vulnerability in Gitlab
A potential DoS vulnerability was discovered in GitLab CE/EE starting with version 13.7.
network
low complexity
gitlab CWE-770
5.3
2021-11-04 CVE-2021-34741 Allocation of Resources Without Limits or Throttling vulnerability in Cisco Asyncos
A vulnerability in the email scanning algorithm of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to perform a denial of service (DoS) attack against an affected device.
network
low complexity
cisco CWE-770
7.5
2021-11-02 CVE-2021-36174 Allocation of Resources Without Limits or Throttling vulnerability in Fortinet Fortiportal
A memory allocation with excessive size value vulnerability in the license verification function of FortiPortal before 6.0.6 may allow an attacker to perform a denial of service attack via specially crafted license blobs.
network
low complexity
fortinet CWE-770
7.5
2021-10-29 CVE-2021-1121 Allocation of Resources Without Limits or Throttling vulnerability in Nvidia Virtual GPU
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager kernel driver, where a vGPU can cause resource starvation among other vGPUs hosted on the same GPU, which may lead to denial of service.
local
low complexity
nvidia CWE-770
5.5
2021-10-28 CVE-2021-22461 Allocation of Resources Without Limits or Throttling vulnerability in Huawei Harmonyos 2.0
A component of the HarmonyOS has a Allocation of Resources Without Limits or Throttling vulnerability.
local
low complexity
huawei CWE-770
5.5
2021-10-25 CVE-2021-34854 Allocation of Resources Without Limits or Throttling vulnerability in Parallels Desktop 16.1.3
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.3 (49160).
local
low complexity
parallels CWE-770
7.8