Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-27 | CVE-2021-25226 | Resource Exhaustion vulnerability in Trendmicro Serverprotect 3.0 A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. | 2.1 |
| 2021-01-27 | CVE-2021-25225 | Resource Exhaustion vulnerability in Trendmicro Serverprotect 3.0 A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. | 2.1 |
| 2021-01-27 | CVE-2021-25224 | Resource Exhaustion vulnerability in Trendmicro Serverprotect 3.0 A memory exhaustion vulnerability in Trend Micro ServerProtect for Linux 3.0 could allow a local attacker to craft specific files that can cause a denial-of-service on the affected product. | 2.1 |
| 2021-01-26 | CVE-2021-21271 | Resource Exhaustion vulnerability in Tendermint 0.34.0/0.34.1/0.34.2 Tendermint Core is an open source Byzantine Fault Tolerant (BFT) middleware that takes a state transition machine - written in any programming language - and securely replicates it on many machines. | 4.0 |
| 2021-01-26 | CVE-2020-27295 | Resource Exhaustion vulnerability in Honeywell OPC UA Tunneller The affected product has uncontrolled resource consumption issues, which may allow an attacker to cause a denial-of-service condition on the OPC UA Tunneller (versions prior to 6.3.0.8233). | 5.0 |
| 2021-01-26 | CVE-2020-8295 | Resource Exhaustion vulnerability in Nextcloud Server A wrong check in Nextcloud Server 19 and prior allowed to perform a denial of service attack when resetting the password for a user. | 5.0 |
| 2021-01-26 | CVE-2020-8293 | Resource Exhaustion vulnerability in Nextcloud Server A missing input validation in Nextcloud Server before 20.0.2, 19.0.5, 18.0.11 allows users to store unlimited data in workflow rules causing load and potential DDoS on later interactions and usage with those rules. | 4.0 |
| 2021-01-22 | CVE-2020-4766 | Resource Exhaustion vulnerability in IBM MQ Internet Pass-Thru 2.1/9.2 IBM MQ Internet Pass-Thru 2.1 and 9.2 could allow a remote user to cause a denial of service by sending malformed MQ data requests which would consume all available resources. | 5.0 |
| 2021-01-20 | CVE-2021-1312 | Resource Exhaustion vulnerability in Cisco Elastic Services Controller A vulnerability in the system resource management of Cisco Elastic Services Controller (ESC) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) to the health monitor API on an affected device. | 7.5 |
| 2021-01-15 | CVE-2021-22168 | Resource Exhaustion vulnerability in Gitlab A regular expression denial of service issue has been discovered in NuGet API affecting all versions of GitLab starting from version 12.8. | 4.0 |