Vulnerabilities > Allocation of Resources Without Limits or Throttling
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-02-11 | CVE-2019-6975 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products Django 1.11.x before 1.11.19, 2.0.x before 2.0.11, and 2.1.x before 2.1.6 allows Uncontrolled Memory Consumption via a malicious attacker-supplied value to the django.utils.numberformat.format() function. | 7.5 |
| 2019-02-10 | CVE-2019-7704 | Allocation of Resources Without Limits or Throttling vulnerability in Webassembly Binaryen wasm::WasmBinaryBuilder::readUserSection in wasm-binary.cpp in Binaryen 1.38.22 triggers an attempt at excessive memory allocation, as demonstrated by wasm-merge and wasm-opt. | 6.5 |
| 2019-02-10 | CVE-2019-7698 | Allocation of Resources Without Limits or Throttling vulnerability in Axiosys Bento4 1.5.1627 An issue was discovered in AP4_Array<AP4_CttsTableEntry>::EnsureCapacity in Core/Ap4Array.h in Bento4 1.5.1-627. | 6.5 |
| 2019-02-07 | CVE-2019-7582 | Allocation of Resources Without Limits or Throttling vulnerability in Libming The readBytes function in util/read.c in libming through 0.4.8 allows remote attackers to have unspecified impact via a crafted swf file that triggers a memory allocation failure. | 8.8 |
| 2019-02-07 | CVE-2019-7581 | Allocation of Resources Without Limits or Throttling vulnerability in Libming The parseSWF_ACTIONRECORD function in util/parser.c in libming through 0.4.8 allows remote attackers to have unspecified impact via a crafted swf file that triggers a memory allocation failure, a different vulnerability than CVE-2018-7876. | 8.8 |
| 2019-01-29 | CVE-2019-7148 | Allocation of Resources Without Limits or Throttling vulnerability in Elfutils Project Elfutils 0.174 An attempted excessive memory allocation was discovered in the function read_long_names in elf_begin.c in libelf in elfutils 0.174. | 6.5 |
| 2019-01-28 | CVE-2019-6988 | Allocation of Resources Without Limits or Throttling vulnerability in Uclouvain Openjpeg 2.3.0 An issue was discovered in OpenJPEG 2.3.0. | 6.5 |
| 2019-01-25 | CVE-2019-6966 | Allocation of Resources Without Limits or Throttling vulnerability in Axiosys Bento4 1.5.1628 An issue was discovered in Bento4 1.5.1-628. | 6.5 |
| 2019-01-24 | CVE-2019-6486 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products Go before 1.10.8 and 1.11.x before 1.11.5 mishandles P-521 and P-384 elliptic curves, which allows attackers to cause a denial of service (CPU consumption) or possibly conduct ECDH private key recovery attacks. | 8.2 |
| 2019-01-23 | CVE-2019-1644 | Allocation of Resources Without Limits or Throttling vulnerability in Cisco IOT Field Network Director 4.3(0.20) A vulnerability in the UDP protocol implementation for Cisco IoT Field Network Director (IoT-FND) could allow an unauthenticated, remote attacker to exhaust system resources, resulting in a denial of service (DoS) condition. | 7.5 |