Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')

DATE CVE VULNERABILITY TITLE RISK
2021-09-08 CVE-2021-30742 Resource Exhaustion vulnerability in Apple Ipad OS and Iphone OS
A memory consumption issue was addressed with improved memory handling.
network
apple CWE-400
6.8
2021-09-01 CVE-2020-9000 Resource Exhaustion vulnerability in Iportalis Control Portal 7.1.13.0
An issue was discovered in iPortalis iCS 7.1.13.0.
network
low complexity
iportalis CWE-400
5.0
2021-08-30 CVE-2021-32832 Resource Exhaustion vulnerability in Rocket.Chat
Rocket.Chat is an open-source fully customizable communications platform developed in JavaScript.
network
low complexity
rocket-chat CWE-400
4.0
2021-08-27 CVE-2021-39171 Resource Exhaustion vulnerability in Passport-Saml Project Passport-Saml
Passport-SAML is a SAML 2.0 authentication provider for Passport, the Node.js authentication library.
network
low complexity
passport-saml-project CWE-400
5.0
2021-08-18 CVE-2021-33580 Resource Exhaustion vulnerability in Apache Roller
User controlled `request.getHeader("Referer")`, `request.getRequestURL()` and `request.getQueryString()` are used to build and run a regex expression.
network
apache CWE-400
4.3
2021-08-11 CVE-2021-38566 Resource Exhaustion vulnerability in Foxitsoftware PDF Editor and PDF Reader
An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1.
network
low complexity
foxitsoftware CWE-400
5.0
2021-08-11 CVE-2021-0008 Resource Exhaustion vulnerability in Intel Ethernet Controller E810 Firmware 1.3.19/1.4.11/1.5.1.0
Uncontrolled resource consumption in firmware for Intel(R) Ethernet Adapters 800 Series Controllers and associated adapters before version 1.5.3.0 may allow privileged user to potentially enable denial of service via local access.
local
low complexity
intel CWE-400
2.1
2021-08-10 CVE-2021-25659 Resource Exhaustion vulnerability in Siemens Automation License Manager
A vulnerability has been identified in Automation License Manager 5 (All versions), Automation License Manager 6 (All versions < V6.0 SP9 Update 2).
network
low complexity
siemens CWE-400
5.0
2021-08-05 CVE-2021-3679 Resource Exhaustion vulnerability in multiple products
A lack of CPU resource in the Linux kernel tracing module functionality in versions prior to 5.14-rc3 was found in the way user uses trace ring buffer in a specific way.
local
low complexity
linux redhat CWE-400
2.1
2021-08-04 CVE-2021-22124 Resource Exhaustion vulnerability in Fortinet Fortiauthenticator and Fortisandbox
An uncontrolled resource consumption (denial of service) vulnerability in the login modules of FortiSandbox 3.2.0 through 3.2.2, 3.1.0 through 3.1.4, and 3.0.0 through 3.0.6; and FortiAuthenticator before 6.0.6 may allow an unauthenticated attacker to bring the device into an unresponsive state via specifically-crafted long request parameters.
network
low complexity
fortinet CWE-400
7.8