Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-14 | CVE-2023-36042 | Resource Exhaustion vulnerability in Microsoft Visual Studio 2019 and Visual Studio 2022 Visual Studio Denial of Service Vulnerability | 5.5 |
| 2023-11-08 | CVE-2023-35767 | Resource Exhaustion vulnerability in Perforce Helix Core In Helix Core versions prior to 2023.2, an unauthenticated remote Denial of Service (DoS) via the shutdown function was identified. | 7.5 |
| 2023-11-06 | CVE-2023-5969 | Resource Exhaustion vulnerability in Mattermost Mattermost fails to properly sanitize the request to /api/v4/redirect_location allowing an attacker, sending a specially crafted request to /api/v4/redirect_location, to fill up the memory due to caching large items. | 5.3 |
| 2023-11-02 | CVE-2023-29046 | Resource Exhaustion vulnerability in Open-Xchange Appsuite Connections to external data sources, like e-mail autoconfiguration, were not terminated in case they hit a timeout, instead those connections were logged. | 4.3 |
| 2023-11-01 | CVE-2023-20155 | Resource Exhaustion vulnerability in Cisco Secure Firewall Management Center A vulnerability in a logging API in Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to cause the device to become unresponsive or trigger an unexpected reload. | 6.5 |
| 2023-11-01 | CVE-2023-5625 | Resource Exhaustion vulnerability in Redhat products A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting in a patch for CVE-2021-21419 not being applied for all builds of all products. | 7.5 |
| 2023-11-01 | CVE-2023-46278 | Resource Exhaustion vulnerability in Cybozu Remote Service 4.1.0 Uncontrolled resource consumption vulnerability in Cybozu Remote Service 4.1.0 to 4.1.1 allows a remote authenticated attacker to consume huge storage space or cause significantly delayed communication. | 6.5 |
| 2023-10-31 | CVE-2023-39610 | Resource Exhaustion vulnerability in Tp-Link Tapo C100 Firmware 1.1.15 An issue in TP-Link Tapo C100 v1.1.15 Build 211130 Rel.15378n(4555) and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted web request. | 6.5 |
| 2023-10-26 | CVE-2023-31418 | Resource Exhaustion vulnerability in Elastic Elasticsearch An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. | 7.5 |
| 2023-10-25 | CVE-2023-39219 | Resource Exhaustion vulnerability in Pingidentity Pingfederate PingFederate Administrative Console dependency contains a weakness where console becomes unresponsive with crafted Java class loading enumeration requests | 7.5 |