Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-20 | CVE-2021-20718 | Resource Exhaustion vulnerability in multiple products mod_auth_openidc 2.4.0 to 2.4.7 allows a remote attacker to cause a denial-of-service (DoS) condition via unspecified vectors. | 7.5 |
| 2021-05-17 | CVE-2021-32455 | Resource Exhaustion vulnerability in Sitel-Sa Cap/Prx Firmware 5.2.01 SITEL CAP/PRX firmware version 5.2.01, allows an attacker with access to the device´s network to cause a denial of service condition on the device. | 6.5 |
| 2021-05-13 | CVE-2021-22139 | Resource Exhaustion vulnerability in Elastic Kibana Kibana versions before 7.12.1 contain a denial of service vulnerability was found in the webhook actions due to a lack of timeout or a limit on the request size. | 6.5 |
| 2021-05-13 | CVE-2021-32918 | Resource Exhaustion vulnerability in multiple products An issue was discovered in Prosody before 0.11.9. | 7.5 |
| 2021-05-11 | CVE-2021-30504 | Resource Exhaustion vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2021.1, DoS was possible because of unbounded resource allocation. | 7.5 |
| 2021-05-10 | CVE-2021-32053 | Resource Exhaustion vulnerability in Fhir Hapi Fhir JPA Server in HAPI FHIR before 5.4.0 allows a user to deny service (e.g., disable access to the database after the attack stops) via history requests. | 5.3 |
| 2021-05-10 | CVE-2021-23011 | Resource Exhaustion vulnerability in F5 products On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 13.1.4, 12.1.x before 12.1.6, and 11.6.x before 11.6.5.3, when the BIG-IP system is buffering packet fragments for reassembly, the Traffic Management Microkernel (TMM) may consume an excessive amount of resources, eventually leading to a restart and failover event. | 7.5 |
| 2021-05-06 | CVE-2021-1275 | Resource Exhaustion vulnerability in Cisco Catalyst Sd-Wan Manager and Sd-Wan Vmanage Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary code or gain access to sensitive information, or allow an authenticated, local attacker to gain escalated privileges or gain unauthorized access to the application. | 7.5 |
| 2021-05-06 | CVE-2021-31409 | Resource Exhaustion vulnerability in Vaadin Unsafe validation RegEx in EmailValidator component in com.vaadin:vaadin-compatibility-server versions 8.0.0 through 8.12.4 (Vaadin versions 8.0.0 through 8.12.4) allows attackers to cause uncontrolled resource consumption by submitting malicious email addresses. | 7.5 |
| 2021-04-30 | CVE-2020-28944 | Resource Exhaustion vulnerability in Open-Xchange OX Guard OX Guard 2.10.4 and earlier allows a Denial of Service via a WKS server that responds slowly or with a large amount of data. | 7.5 |