Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-26 | CVE-2023-31418 | Resource Exhaustion vulnerability in Elastic Elasticsearch An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. | 7.5 |
| 2023-10-25 | CVE-2023-39219 | Resource Exhaustion vulnerability in Pingidentity Pingfederate PingFederate Administrative Console dependency contains a weakness where console becomes unresponsive with crafted Java class loading enumeration requests | 7.5 |
| 2023-10-25 | CVE-2023-42031 | Resource Exhaustion vulnerability in IBM Cics TX and Txseries for Multiplatforms IBM TXSeries for Multiplatforms, 8.1, 8.2, and 9.1, CICS TX Standard CICS TX Advanced 10.1 and 11.1 could allow a privileged user to cause a denial of service due to uncontrolled resource consumption. | 4.9 |
| 2023-10-25 | CVE-2023-46118 | Resource Exhaustion vulnerability in VMWare Rabbitmq RabbitMQ is a multi-protocol messaging and streaming broker. | 4.9 |
| 2023-10-25 | CVE-2023-46120 | Resource Exhaustion vulnerability in VMWare Rabbitmq Java Client The RabbitMQ Java client library allows Java and JVM-based applications to connect to and interact with RabbitMQ nodes. | 7.5 |
| 2023-10-23 | CVE-2023-43622 | Resource Exhaustion vulnerability in Apache Http Server 2.4.55 An attacker, opening a HTTP/2 connection with an initial window size of 0, was able to block handling of that connection indefinitely in Apache HTTP Server. | 7.5 |
| 2023-10-23 | CVE-2023-45802 | Resource Exhaustion vulnerability in multiple products When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request's memory resources were not reclaimed immediately. | 5.9 |
| 2023-10-17 | CVE-2023-45810 | Resource Exhaustion vulnerability in Openfga OpenFGA is a flexible authorization/permission engine built for developers and inspired by Google Zanzibar. | 7.5 |
| 2023-10-17 | CVE-2022-43893 | Resource Exhaustion vulnerability in IBM Security Verify Privilege On-Premises IBM Security Verify Privilege On-Premises 11.5 could allow a privileged user to cause by using a malicious payload. | 4.4 |
| 2023-10-16 | CVE-2023-44388 | Resource Exhaustion vulnerability in Discourse Discourse is an open source platform for community discussion. | 7.5 |