Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-21 | CVE-2019-11388 | Resource Exhaustion vulnerability in Modsecurity Owasp Modsecurity Core Rule SET 3.0.0/3.0.2/3.1.0 An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) through 3.1.0. | 5.3 |
| 2019-04-21 | CVE-2019-11387 | Resource Exhaustion vulnerability in Modsecurity Owasp Modsecurity Core Rule SET 3.0.0/3.0.2/3.1.0 An issue was discovered in OWASP ModSecurity Core Rule Set (CRS) through 3.1.0. | 5.3 |
| 2019-04-18 | CVE-2018-16878 | Resource Exhaustion vulnerability in multiple products A flaw was found in pacemaker up to and including version 2.0.1. | 5.5 |
| 2019-04-17 | CVE-2019-9220 | Resource Exhaustion vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. | 7.5 |
| 2019-04-10 | CVE-2019-0033 | Resource Exhaustion vulnerability in Juniper Junos A firewall bypass vulnerability in the proxy ARP service of Juniper Networks Junos OS allows an attacker to cause a high CPU condition leading to a Denial of Service (DoS). | 7.5 |
| 2019-04-10 | CVE-2019-0199 | Resource Exhaustion vulnerability in Apache Tomcat The HTTP/2 implementation in Apache Tomcat 9.0.0.M1 to 9.0.14 and 8.5.0 to 8.5.37 accepted streams with excessive numbers of SETTINGS frames and also permitted clients to keep streams open without reading/writing request/response data. | 7.5 |
| 2019-04-04 | CVE-2018-19282 | Resource Exhaustion vulnerability in Rockwellautomation Powerflex 525 AC Drives Firmware 5.001 Rockwell Automation PowerFlex 525 AC Drives 5.001 and earlier allow remote attackers to cause a denial of service by crashing the Common Industrial Protocol (CIP) network stack. | 9.8 |
| 2019-04-03 | CVE-2018-4409 | Resource Exhaustion vulnerability in Apple products A resource exhaustion issue was addressed with improved input validation. | 6.5 |
| 2019-04-02 | CVE-2019-4080 | Resource Exhaustion vulnerability in IBM Websphere Application Server IBM WebSphere Application Server Admin Console 7.5, 8.0, 8.5, and 9.0 is vulnerable to a potential denial of service, caused by improper parameter parsing. | 6.5 |
| 2019-04-01 | CVE-2018-3979 | Resource Exhaustion vulnerability in multiple products A remote denial-of-service vulnerability exists in the way the Nouveau Display Driver (the default Ubuntu Nvidia display driver) handles GPU shader execution. | 6.5 |