Vulnerabilities > Allocation of Resources Without Limits or Throttling

DATE CVE VULNERABILITY TITLE RISK
2020-12-15 CVE-2020-29486 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
An issue was discovered in Xen through 4.14.x.
local
low complexity
xen debian fedoraproject CWE-770
6.0
2020-12-15 CVE-2020-29570 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
An issue was discovered in Xen through 4.14.x.
local
low complexity
xen debian fedoraproject CWE-770
6.2
2020-12-15 CVE-2020-29568 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
An issue was discovered in Xen through 4.14.x.
local
low complexity
xen debian CWE-770
6.5
2020-12-15 CVE-2020-29567 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
An issue was discovered in Xen 4.14.x.
local
low complexity
xen fedoraproject CWE-770
6.2
2020-12-15 CVE-2020-27029 Allocation of Resources Without Limits or Throttling vulnerability in Google Android 11.0
In TextView of TextView.java, there is a possible app hang due to improper input validation.
network
low complexity
google CWE-770
6.5
2020-11-04 CVE-2020-8037 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory.
network
low complexity
tcpdump debian fedoraproject apple CWE-770
7.5
2020-10-28 CVE-2020-27978 Allocation of Resources Without Limits or Throttling vulnerability in Shibboleth Identity Provider
Shibboleth Identify Provider 3.x before 3.4.6 has a denial of service flaw.
network
low complexity
shibboleth CWE-770
7.5
2020-10-20 CVE-2020-25648 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
A flaw was found in the way NSS handled CCS (ChangeCipherSpec) messages in TLS 1.3.
network
low complexity
mozilla redhat fedoraproject oracle CWE-770
7.5
2020-10-16 CVE-2020-27173 Allocation of Resources Without Limits or Throttling vulnerability in Vm-Superio Project Vm-Superio 0.1.0
In vm-superio before 0.1.1, the serial console FIFO can grow to unlimited memory usage when data is sent to the input source (i.e., standard input).
network
low complexity
vm-superio-project CWE-770
7.5
2020-10-07 CVE-2020-13342 Allocation of Resources Without Limits or Throttling vulnerability in Gitlab
An issue has been discovered in GitLab affecting versions prior to 13.2.10, 13.3.7 and 13.4.2: Lack of Rate Limiting at Re-Sending Confirmation Email
network
low complexity
gitlab CWE-770
2.7