Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')

DATE CVE VULNERABILITY TITLE RISK
2023-12-07 CVE-2023-48834 Resource Exhaustion vulnerability in PHPjabbers CAR Rental Script 3.0
A lack of rate limiting in pjActionAjaxSend in Car Rental v3.0 allows attackers to cause resource exhaustion.
network
low complexity
phpjabbers CWE-400
7.5
2023-12-07 CVE-2023-48840 Resource Exhaustion vulnerability in PHPjabbers Appointment Scheduler 3.0
A lack of rate limiting in pjActionAjaxSend in Appointment Scheduler 3.0 allows attackers to cause resource exhaustion.
network
low complexity
phpjabbers CWE-400
7.5
2023-11-27 CVE-2023-40703 Resource Exhaustion vulnerability in Mattermost
Mattermost fails to properly limit the characters allowed in different fields of a block in Mattermost Boards allowing a attacker to consume excessive resources, possibly leading to Denial of Service, by patching the field of a block using a specially crafted string. 
network
low complexity
mattermost CWE-400
7.5
2023-11-27 CVE-2023-48268 Resource Exhaustion vulnerability in Mattermost
Mattermost fails to limit the amount of data extracted from compressed archives during board import in Mattermost Boards allowing an attacker to consume excessive resources, possibly leading to Denial of Service, by importing a board using a specially crafted zip (zip bomb).
network
low complexity
mattermost CWE-400
7.5
2023-11-27 CVE-2023-48369 Resource Exhaustion vulnerability in Mattermost
Mattermost fails to limit the log size of server logs allowing an attacker sending specially crafted requests to different endpoints to potentially overflow the log.
network
low complexity
mattermost CWE-400
5.3
2023-11-24 CVE-2023-6277 Resource Exhaustion vulnerability in multiple products
An out-of-memory flaw was found in libtiff.
network
low complexity
libtiff fedoraproject CWE-400
6.5
2023-11-23 CVE-2023-33202 Resource Exhaustion vulnerability in Bouncycastle Bouncy Castle for Java and Fips Java API
Bouncy Castle for Java before 1.73 contains a potential Denial of Service (DoS) issue within the Bouncy Castle org.bouncycastle.openssl.PEMParser class.
local
low complexity
bouncycastle CWE-400
5.5
2023-11-16 CVE-2023-47025 Resource Exhaustion vulnerability in Free5Gc 3.3.0
An issue in Free5gc v.3.3.0 allows a local attacker to cause a denial of service via the free5gc-compose component.
local
low complexity
free5gc CWE-400
5.5
2023-11-14 CVE-2023-25949 Resource Exhaustion vulnerability in Intel Aptio V Uefi Firmware Integrator Tools 5.27.03.0003/5.27.06.0017
Uncontrolled resource consumption in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an authenticated user to potentially enable denial of service via local access.
local
low complexity
intel CWE-400
5.5
2023-11-14 CVE-2023-36042 Resource Exhaustion vulnerability in Microsoft Visual Studio 2019 and Visual Studio 2022
Visual Studio Denial of Service Vulnerability
local
low complexity
microsoft CWE-400
5.5