Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-17 | CVE-2022-3283 | Resource Exhaustion vulnerability in Gitlab A potential DOS vulnerability was discovered in GitLab CE/EE affecting all versions before before 15.2.5, all versions starting from 15.3 before 15.3.4, all versions starting from 15.4 before 15.4.1 While cloning an issue with special crafted content added to the description could have been used to trigger high CPU usage. | 7.5 |
| 2022-10-13 | CVE-2022-39278 | Resource Exhaustion vulnerability in Istio Istio is an open platform-independent service mesh that provides traffic management, policy enforcement, and telemetry collection. | 7.5 |
| 2022-10-11 | CVE-2022-20425 | Resource Exhaustion vulnerability in Google Android In addAutomaticZenRule of ZenModeHelper.java, there is a possible permanent degradation of performance due to resource exhaustion. | 5.5 |
| 2022-10-11 | CVE-2022-38371 | Resource Exhaustion vulnerability in Siemens products A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versions < V3.5.7), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.21), APOGEE PXC Modular (BACnet) (All versions < V3.5.7), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.21), Desigo PXC00-E.D (All versions >= V2.3), Desigo PXC00-U (All versions >= V2.3), Desigo PXC001-E.D (All versions >= V2.3), Desigo PXC100-E.D (All versions >= V2.3), Desigo PXC12-E.D (All versions >= V2.3), Desigo PXC128-U (All versions >= V2.3), Desigo PXC200-E.D (All versions >= V2.3), Desigo PXC22-E.D (All versions >= V2.3), Desigo PXC22.1-E.D (All versions >= V2.3), Desigo PXC36.1-E.D (All versions >= V2.3), Desigo PXC50-E.D (All versions >= V2.3), Desigo PXC64-U (All versions >= V2.3), Desigo PXM20-E (All versions >= V2.3), Nucleus NET for Nucleus PLUS V1 (All versions < V5.2a), Nucleus NET for Nucleus PLUS V2 (All versions < V5.4), Nucleus ReadyStart V3 V2012 (All versions < V2012.08.1), Nucleus ReadyStart V3 V2017 (All versions < V2017.02.4), Nucleus Source Code (All versions including affected FTP server), TALON TC Compact (BACnet) (All versions < V3.5.7), TALON TC Modular (BACnet) (All versions < V3.5.7). | 7.5 |
| 2022-09-30 | CVE-2022-2529 | Resource Exhaustion vulnerability in Cloudflare Goflow sflow decode package does not employ sufficient packet sanitisation which can lead to a denial of service attack. | 7.5 |
| 2022-09-26 | CVE-2022-3204 | Resource Exhaustion vulnerability in multiple products A vulnerability named 'Non-Responsive Delegation Attack' (NRDelegation Attack) has been discovered in various DNS resolving software. | 7.5 |
| 2022-09-14 | CVE-2022-36114 | Resource Exhaustion vulnerability in Rust-Lang Cargo Cargo is a package manager for the rust programming language. | 6.5 |
| 2022-09-13 | CVE-2022-39158 | Resource Exhaustion vulnerability in Siemens Ruggedcom ROS Affected devices improperly handle partial HTTP requests which makes them vulnerable to slowloris attacks. | 5.3 |
| 2022-09-09 | CVE-2022-31006 | Resource Exhaustion vulnerability in Linuxfoundation Indy-Node indy-node is the server portion of Hyperledger Indy, a distributed ledger purpose-built for decentralized identity. | 7.5 |
| 2022-09-06 | CVE-2022-35913 | Resource Exhaustion vulnerability in Kayako Samourai 0.99.98E Samourai Wallet Stonewallx2 0.99.98e allows a denial of service via a P2P coinjoin. | 4.3 |