Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-06 | CVE-2023-40591 | Resource Exhaustion vulnerability in Ethereum GO Ethereum go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. | 7.5 |
| 2023-09-06 | CVE-2023-28188 | Resource Exhaustion vulnerability in Apple Macos A denial-of-service issue was addressed with improved input validation. | 6.5 |
| 2023-09-01 | CVE-2023-3205 | Resource Exhaustion vulnerability in Gitlab An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. | 6.5 |
| 2023-09-01 | CVE-2023-3210 | Resource Exhaustion vulnerability in Gitlab An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. | 6.5 |
| 2023-09-01 | CVE-2023-4647 | Resource Exhaustion vulnerability in Gitlab An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1 in which the projects API pagination can be skipped, potentially leading to DoS on certain instances. | 7.5 |
| 2023-08-31 | CVE-2023-4162 | Resource Exhaustion vulnerability in Brocade Fabric Operating System 9.0.1E/9.1.1 A segmentation fault can occur in Brocade Fabric OS after Brocade Fabric OS v9.0 and before Brocade Fabric OS v9.2.0a through the passwdcfg command. | 4.4 |
| 2023-08-24 | CVE-2023-4418 | Resource Exhaustion vulnerability in Sick Lms500 Firmware, Lms511 Firmware and Lms531 Firmware A remote unprivileged attacker can sent multiple packages to the LMS5xx to disrupt its availability through a TCP SYN-based denial-of-service (DDoS) attack. | 7.5 |
| 2023-08-24 | CVE-2023-40709 | Resource Exhaustion vulnerability in Opto22 Snap PAC S1 Firmware R10.3B An adversary could crash the entire device by sending a large quantity of ICMP requests if the controller has the built-in web server enabled but does not have the built-in web server completely set up and configured for the SNAP PAC S1 Firmware version R10.3b | 7.5 |
| 2023-08-24 | CVE-2023-40710 | Resource Exhaustion vulnerability in Opto22 Snap PAC S1 Firmware R10.3B An adversary could cause a continuous restart loop to the entire device by sending a large quantity of HTTP GET requests if the controller has the built-in web server enabled but does not have the built-in web server completely set up and configured for the SNAP PAC S1 Firmware version R10.3b | 7.5 |
| 2023-08-22 | CVE-2022-48063 | Resource Exhaustion vulnerability in GNU Binutils GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function load_separate_debug_files at dwarf2.c. | 5.5 |