Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-02 | CVE-2021-36187 | Resource Exhaustion vulnerability in Fortinet Fortiweb A uncontrolled resource consumption in Fortinet FortiWeb version 6.4.0, version 6.3.15 and below, 6.2.5 and below allows attacker to cause a denial of service for webserver daemon via crafted HTTP requests | 5.0 |
| 2021-11-02 | CVE-2020-21573 | Resource Exhaustion vulnerability in Image-Processing Project Image-Processing 0.1.0 An issue was discoverered in in abhijitnathwani image-processing v0.1.0, allows local attackers to cause a denial of service via a crafted image file. | 4.3 |
| 2021-11-02 | CVE-2021-32595 | Resource Exhaustion vulnerability in Fortinet Fortiportal Multiple uncontrolled resource consumption vulnerabilities in the web interface of FortiPortal before 6.0.6 may allow a single low-privileged user to induce a denial of service via multiple HTTP requests. | 4.0 |
| 2021-10-29 | CVE-2021-41186 | Resource Exhaustion vulnerability in Fluentd Fluentd collects events from various data sources and writes them to files to help unify logging infrastructure. | 5.0 |
| 2021-10-28 | CVE-2020-10005 | Resource Exhaustion vulnerability in Apple Macos A resource exhaustion issue was addressed with improved input validation. | 6.5 |
| 2021-10-27 | CVE-2021-40117 | Resource Exhaustion vulnerability in Cisco products A vulnerability in SSL/TLS message handler for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. | 7.5 |
| 2021-10-27 | CVE-2021-40125 | Resource Exhaustion vulnerability in Cisco products A vulnerability in the Internet Key Exchange Version 2 (IKEv2) implementation of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to trigger a denial of service (DoS) condition on an affected device. | 6.5 |
| 2021-10-27 | CVE-2021-22101 | Resource Exhaustion vulnerability in Cloudfoundry Capi-Release Cloud Controller versions prior to 1.118.0 are vulnerable to unauthenticated denial of Service(DoS) vulnerability allowing unauthenticated attackers to cause denial of service by using REST HTTP requests with label_selectors on multiple V3 endpoints by generating an enormous SQL query. | 5.0 |
| 2021-10-22 | CVE-2021-42836 | Resource Exhaustion vulnerability in Gjson Project Gjson GJSON before 1.9.3 allows a ReDoS (regular expression denial of service) attack. | 5.0 |
| 2021-10-19 | CVE-2021-31365 | Resource Exhaustion vulnerability in Juniper Junos An Uncontrolled Resource Consumption vulnerability in Juniper Networks Junos OS on EX2300, EX3400 and EX4300 Series platforms allows an adjacent attacker sending a stream of layer 2 frames will trigger an Aggregated Ethernet (AE) interface to go down and thereby causing a Denial of Service (DoS). | 2.9 |