Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-04 | CVE-2021-22124 | Resource Exhaustion vulnerability in Fortinet Fortiauthenticator and Fortisandbox An uncontrolled resource consumption (denial of service) vulnerability in the login modules of FortiSandbox 3.2.0 through 3.2.2, 3.1.0 through 3.1.4, and 3.0.0 through 3.0.6; and FortiAuthenticator before 6.0.6 may allow an unauthenticated attacker to bring the device into an unresponsive state via specifically-crafted long request parameters. | 7.8 |
| 2021-07-21 | CVE-2020-20221 | Resource Exhaustion vulnerability in Mikrotik Routeros Mikrotik RouterOs before 6.44.6 (long-term tree) suffers from an uncontrolled resource consumption vulnerability in the /nova/bin/cerm process. | 6.5 |
| 2021-07-19 | CVE-2020-20248 | Resource Exhaustion vulnerability in Mikrotik Routeros 6.47 Mikrotik RouterOs before stable 6.47 suffers from an uncontrolled resource consumption in the memtest process. | 6.5 |
| 2021-07-19 | CVE-2020-20230 | Resource Exhaustion vulnerability in Mikrotik Routeros Mikrotik RouterOs before stable 6.47 suffers from an uncontrolled resource consumption in the sshd process. | 4.0 |
| 2021-07-19 | CVE-2021-32012 | Resource Exhaustion vulnerability in multiple products SheetJS and SheetJS Pro through 0.16.9 allows attackers to cause a denial of service (memory consumption) via a crafted .xlsx document that is mishandled when read by xlsx.js (issue 1 of 2). | 4.3 |
| 2021-07-19 | CVE-2021-32013 | Resource Exhaustion vulnerability in multiple products SheetJS and SheetJS Pro through 0.16.9 allows attackers to cause a denial of service (memory consumption) via a crafted .xlsx document that is mishandled when read by xlsx.js (issue 2 of 2). | 4.3 |
| 2021-07-19 | CVE-2021-32014 | Resource Exhaustion vulnerability in multiple products SheetJS and SheetJS Pro through 0.16.9 allows attackers to cause a denial of service (CPU consumption) via a crafted .xlsx document that is mishandled when read by xlsx.js. | 4.3 |
| 2021-07-15 | CVE-2021-0285 | Resource Exhaustion vulnerability in Juniper Junos An uncontrolled resource consumption vulnerability in Juniper Networks Junos OS on QFX5000 Series and EX4600 Series switches allows an attacker sending large amounts of legitimate traffic destined to the device to cause Interchassis Control Protocol (ICCP) interruptions, leading to an unstable control connection between the Multi-Chassis Link Aggregation Group (MC-LAG) nodes which can in turn lead to traffic loss. | 5.0 |
| 2021-07-15 | CVE-2021-0292 | Resource Exhaustion vulnerability in Juniper Junos OS Evolved 19.4/20.1/20.2 An Uncontrolled Resource Consumption vulnerability in the ARP daemon (arpd) and Network Discovery Protocol (ndp) process of Juniper Networks Junos OS Evolved allows a malicious attacker on the local network to consume memory resources, ultimately resulting in a Denial of Service (DoS) condition. | 3.3 |
| 2021-07-14 | CVE-2021-36716 | Resource Exhaustion vulnerability in Segment Is-Email A ReDoS (regular expression denial of service) flaw was found in the Segment is-email package before 1.0.1 for Node.js. | 5.0 |