Vulnerabilities > Allocation of Resources Without Limits or Throttling

DATE CVE VULNERABILITY TITLE RISK
2021-10-22 CVE-2021-38463 Allocation of Resources Without Limits or Throttling vulnerability in Auvesy Versiondog
The affected product does not properly control the allocation of resources.
network
low complexity
auvesy CWE-770
8.1
2021-10-22 CVE-2021-38465 Allocation of Resources Without Limits or Throttling vulnerability in Auvesy Versiondog
The webinstaller is a Golang web server executable that enables the generation of an Auvesy image agent.
network
low complexity
auvesy CWE-770
6.5
2021-10-12 CVE-2021-41546 Allocation of Resources Without Limits or Throttling vulnerability in Siemens products
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM ROX RX1400 (All versions < V2.14.1), RUGGEDCOM ROX RX1500 (All versions < V2.14.1), RUGGEDCOM ROX RX1501 (All versions < V2.14.1), RUGGEDCOM ROX RX1510 (All versions < V2.14.1), RUGGEDCOM ROX RX1511 (All versions < V2.14.1), RUGGEDCOM ROX RX1512 (All versions < V2.14.1), RUGGEDCOM ROX RX1524 (All versions < V2.14.1), RUGGEDCOM ROX RX1536 (All versions < V2.14.1), RUGGEDCOM ROX RX5000 (All versions < V2.14.1).
network
low complexity
siemens CWE-770
7.5
2021-10-11 CVE-2021-41799 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
MediaWiki before 1.36.2 allows a denial of service (resource consumption because of lengthy query processing time).
network
low complexity
mediawiki fedoraproject CWE-770
7.5
2021-10-11 CVE-2021-41800 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
MediaWiki before 1.36.2 allows a denial of service (resource consumption because of lengthy query processing time).
network
low complexity
mediawiki fedoraproject CWE-770
5.3
2021-10-05 CVE-2021-35492 Allocation of Resources Without Limits or Throttling vulnerability in Wowza Streaming Engine
Wowza Streaming Engine through 4.8.11+5 could allow an authenticated, remote attacker to exhaust filesystem resources via the /enginemanager/server/vhost/historical.jsdata vhost parameter.
network
low complexity
wowza CWE-770
6.5
2021-10-04 CVE-2021-41591 Allocation of Resources Without Limits or Throttling vulnerability in Acinq Eclair
ACINQ Eclair before 0.6.3 allows loss of funds because of dust HTLC exposure.
network
low complexity
acinq CWE-770
critical
9.4
2021-10-04 CVE-2021-41592 Allocation of Resources Without Limits or Throttling vulnerability in Elementsproject C-Lightning 0.7.1
Blockstream c-lightning through 0.10.1 allows loss of funds because of dust HTLC exposure.
network
low complexity
elementsproject CWE-770
critical
9.4
2021-10-04 CVE-2021-41593 Allocation of Resources Without Limits or Throttling vulnerability in Lightning Network Daemon Project Lightning Network Daemon
Lightning Labs lnd before 0.13.3-beta allows loss of funds because of dust HTLC exposure.
network
low complexity
lightning-network-daemon-project CWE-770
8.6
2021-09-27 CVE-2021-34415 Allocation of Resources Without Limits or Throttling vulnerability in Zoom Meeting Connector
The Zone Controller service in the Zoom On-Premise Meeting Connector Controller before version 4.6.358.20210205 does not verify the cnt field sent in incoming network packets, which leads to exhaustion of resources and system crash.
network
low complexity
zoom CWE-770
7.5