Vulnerabilities > Allocation of Resources Without Limits or Throttling
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-04 | CVE-2020-10717 | Allocation of Resources Without Limits or Throttling vulnerability in Qemu 5.0/5.0.0 A potential DoS flaw was found in the virtio-fs shared file system daemon (virtiofsd) implementation of the QEMU version >= v5.0. | 6.5 |
| 2020-04-27 | CVE-2019-15234 | Allocation of Resources Without Limits or Throttling vulnerability in Ushareit Shareit 4.0.5.171/4.0.5.177/4.0.6.177 SHAREit through 4.0.6.177 does not check the full message length from the received packet header (which is used to allocate memory for the next set of data). | 7.5 |
| 2020-04-27 | CVE-2019-14941 | Allocation of Resources Without Limits or Throttling vulnerability in Ushareit Shareit 4.0.5.171/4.0.5.177/4.0.6.177 SHAREit through 4.0.6.177 does not check the body length from the received packet header (which is used to allocate memory for the next set of data). | 7.5 |
| 2020-04-07 | CVE-2020-11612 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream. | 7.5 |
| 2020-03-27 | CVE-2020-8552 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products The Kubernetes API server component in versions prior to 1.15.9, 1.16.0-1.16.6, and 1.17.0-1.17.2 has been found to be vulnerable to a denial of service attack via successful API requests. | 4.3 |
| 2020-03-27 | CVE-2020-8551 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products The Kubelet component in versions 1.15.0-1.15.9, 1.16.0-1.16.6, and 1.17.0-1.17.2 has been found to be vulnerable to a denial of service attack via the kubelet API, including the unauthenticated HTTP read-only API typically served on port 10255, and the authenticated HTTPS API typically served on port 10250. | 6.5 |
| 2020-03-23 | CVE-2020-10364 | Allocation of Resources Without Limits or Throttling vulnerability in Mikrotik Routeros The SSH daemon on MikroTik routers through v6.44.3 could allow remote attackers to generate CPU activity, trigger refusal of new authorized connections, and cause a reboot via connect and write system calls, because of uncontrolled resource management. | 7.5 |
| 2020-03-20 | CVE-2020-9345 | Allocation of Resources Without Limits or Throttling vulnerability in Signotec Signopad-Api/Web An issue was discovered in signotec signoPAD-API/Web (formerly Websocket Pad Server) before 3.1.1 on Windows. | 6.5 |
| 2020-03-18 | CVE-2019-11939 | Allocation of Resources Without Limits or Throttling vulnerability in Facebook Thrift Golang Facebook Thrift servers would not error upon receiving messages declaring containers of sizes larger than the payload. | 7.5 |
| 2020-03-10 | CVE-2019-3553 | Allocation of Resources Without Limits or Throttling vulnerability in Facebook Thrift C++ Facebook Thrift servers would not error upon receiving messages declaring containers of sizes larger than the payload. | 7.5 |