Vulnerabilities > Allocation of Resources Without Limits or Throttling

DATE CVE VULNERABILITY TITLE RISK
2024-05-14 CVE-2024-2454 Allocation of Resources Without Limits or Throttling vulnerability in Gitlab
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.11 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2.
network
low complexity
gitlab CWE-770
6.5
2024-05-14 CVE-2024-27804 Allocation of Resources Without Limits or Throttling vulnerability in Apple products
The issue was addressed with improved memory handling.
local
low complexity
apple CWE-770
5.5
2024-05-07 CVE-2024-0026 Allocation of Resources Without Limits or Throttling vulnerability in Google Android
In multiple functions of SnoozeHelper.java, there is a possible persistent denial of service due to resource exhaustion.
local
low complexity
google CWE-770
5.5
2024-05-07 CVE-2024-0027 Allocation of Resources Without Limits or Throttling vulnerability in Google Android
In multiple functions of SnoozeHelper.java, there is a possible way to cause a boot loop due to resource exhaustion.
local
low complexity
google CWE-770
5.5
2024-05-07 CVE-2024-32663 Allocation of Resources Without Limits or Throttling vulnerability in Oisf Suricata
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine.
network
low complexity
oisf CWE-770
7.5
2024-05-01 CVE-2024-27013 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
In the Linux kernel, the following vulnerability has been resolved: tun: limit printing rate when illegal packet received by tun dev vhost_worker will call tun call backs to receive packets.
local
low complexity
linux fedoraproject CWE-770
5.5
2024-04-05 CVE-2024-28949 Allocation of Resources Without Limits or Throttling vulnerability in Mattermost Server
Mattermost Server versions 9.5.x before 9.5.2, 9.4.x before 9.4.4, 9.3.x before 9.3.3, 8.1.x before 8.1.11 don't limit the number of user preferences which allows an attacker to send a large number of user preferences potentially causing denial of service.
network
low complexity
mattermost CWE-770
6.5
2024-03-28 CVE-2024-2818 Allocation of Resources Without Limits or Throttling vulnerability in Gitlab
An issue has been discovered in GitLab CE/EE affecting all versions before 16.8.5, all versions starting from 16.9 before 16.9.3, all versions starting from 16.10 before 16.10.1.
network
low complexity
gitlab CWE-770
6.5
2024-03-15 CVE-2024-2446 Allocation of Resources Without Limits or Throttling vulnerability in Mattermost Server
Mattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2, and 9.4.x before 9.4.3 fail to limit the number of @-mentions processed per message, allowing an authenticated attacker to crash the client applications of other users via large, crafted messages.
network
low complexity
mattermost CWE-770
4.3
2024-03-15 CVE-2024-28053 Allocation of Resources Without Limits or Throttling vulnerability in Mattermost Server
Resource Exhaustion in Mattermost Server versions 8.1.x before 8.1.10 fails to limit the size of the payload that can be read and parsed allowing an attacker to send a very large email payload and crash the server.
network
low complexity
mattermost CWE-770
6.5