Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-02 | CVE-2020-29260 | Resource Exhaustion vulnerability in multiple products libvncclient v0.9.13 was discovered to contain a memory leak via the function rfbClientCleanup(). | 7.5 |
| 2022-09-02 | CVE-2022-22101 | Resource Exhaustion vulnerability in Qualcomm products Denial of service in multimedia due to uncontrolled resource consumption while parsing an incoming HAB message in Snapdragon Auto | 5.5 |
| 2022-09-02 | CVE-2022-39194 | Resource Exhaustion vulnerability in Mediawiki An issue was discovered in the MediaWiki through 1.38.2. | 4.9 |
| 2022-09-01 | CVE-2022-1677 | Resource Exhaustion vulnerability in Redhat Openshift Container Platform In OpenShift Container Platform, a user with permissions to create or modify Routes can craft a payload that inserts a malformed entry into one of the cluster router's HAProxy configuration files. | 6.3 |
| 2022-08-31 | CVE-2022-1259 | Resource Exhaustion vulnerability in multiple products A flaw was found in Undertow. | 7.5 |
| 2022-08-31 | CVE-2022-2004 | Resource Exhaustion vulnerability in Automationdirect products AutomationDirect DirectLOGIC is vulnerable to a a specially crafted packet can be sent continuously to the PLC to prevent access from DirectSoft and other devices, causing a denial-of-service condition. | 7.5 |
| 2022-08-24 | CVE-2022-24375 | Resource Exhaustion vulnerability in Node-Opcua Project Node-Opcua The package node-opcua before 2.74.0 are vulnerable to Denial of Service (DoS) when bypassing the limitations for excessive memory consumption by sending multiple CloseSession requests with the deleteSubscription parameter equal to False. | 7.5 |
| 2022-08-16 | CVE-2022-35013 | Resource Exhaustion vulnerability in Pngdec Project Pngdec 1.0.0/1.0.1 PNGDec commit 8abf6be was discovered to contain a FPE via SaveBMP at /linux/main.cpp. | 6.5 |
| 2022-08-05 | CVE-2022-2053 | Resource Exhaustion vulnerability in Redhat Integration Camel K, Jboss Fuse and Undertow When a POST request comes through AJP and the request exceeds the max-post-size limit (maxEntitySize), Undertow's AjpServerRequestConduit implementation closes a connection without sending any response to the client/proxy. | 7.5 |
| 2022-08-04 | CVE-2022-33203 | Resource Exhaustion vulnerability in F5 Big-Ip Access Policy Manager In BIG-IP Versions 16.1.x before 16.1.3, 15.1.x before 15.1.6.1, and 14.1.x before 14.1.5, when a BIG-IP APM access policy with Service Connect agent is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. | 7.5 |