Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-04 | CVE-2022-23328 | Resource Exhaustion vulnerability in Ethereum GO Ethereum A design flaw in all versions of Go-Ethereum allows an attacker node to send 5120 pending transactions of a high gas price from one account that all fully spend the full balance of the account to a victim Geth node, which can purge all of pending transactions in a victim node's memory pool and then occupy the memory pool to prevent new transactions from entering the pool, resulting in a denial of service (DoS). | 7.5 |
| 2022-02-25 | CVE-2022-25326 | Resource Exhaustion vulnerability in Google Fscrypt fscrypt through v0.3.2 creates a world-writable directory by default when setting up a filesystem, allowing unprivileged users to exhaust filesystem space. | 5.5 |
| 2022-02-24 | CVE-2022-0695 | Resource Exhaustion vulnerability in multiple products Denial of Service in GitHub repository radareorg/radare2 prior to 5.6.4. | 5.5 |
| 2022-02-24 | CVE-2022-24678 | Resource Exhaustion vulnerability in Trendmicro products An security agent resource exhaustion denial-of-service vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service, Trend Micro Worry-Free Business Security 10.0 SP1 and Trend Micro Worry-Free Business Security Services agents could allow an attacker to flood a temporary log location and consume all disk space on affected installations. | 7.5 |
| 2022-02-23 | CVE-2022-0476 | Resource Exhaustion vulnerability in multiple products Denial of Service in GitHub repository radareorg/radare2 prior to 5.6.4. | 5.5 |
| 2022-02-09 | CVE-2021-0092 | Resource Exhaustion vulnerability in multiple products Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service via local access. | 4.4 |
| 2022-02-09 | CVE-2022-22780 | Resource Exhaustion vulnerability in Zoom Meetings The Zoom Client for Meetings chat functionality was susceptible to Zip bombing attacks in the following product versions: Android before version 5.8.6, iOS before version 5.9.0, Linux before version 5.8.6, macOS before version 5.7.3, and Windows before version 5.6.3. | 6.5 |
| 2022-02-06 | CVE-2007-20001 | Resource Exhaustion vulnerability in Starwindsoftware Iscsi SAN A flaw was found in StarWind iSCSI target. | 7.5 |
| 2022-02-06 | CVE-2013-20004 | Resource Exhaustion vulnerability in Starwindsoftware Iscsi SAN A flaw was found in StarWind iSCSI target. | 9.8 |
| 2022-02-01 | CVE-2021-43859 | Resource Exhaustion vulnerability in multiple products XStream is an open source java library to serialize objects to XML and back again. | 7.5 |