Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')

DATE CVE VULNERABILITY TITLE RISK
2023-09-27 CVE-2023-20268 Resource Exhaustion vulnerability in Cisco products
A vulnerability in the packet processing functionality of Cisco access point (AP) software could allow an unauthenticated, adjacent attacker to exhaust resources on an affected device.  This vulnerability is due to insufficient management of resources when handling certain types of traffic.
low complexity
cisco CWE-400
4.7
2023-09-27 CVE-2023-40441 Resource Exhaustion vulnerability in Apple Macos
A resource exhaustion issue was addressed with improved input validation.
network
low complexity
apple CWE-400
6.5
2023-09-27 CVE-2023-41310 Resource Exhaustion vulnerability in Huawei Emui and Harmonyos
Keep-alive vulnerability in the sticky broadcast mechanism.
local
low complexity
huawei CWE-400
3.3
2023-09-22 CVE-2023-43771 Resource Exhaustion vulnerability in Mikebrady NOT Quite PTP 1.2/1.2.1/1.2.2
In nqptp-message-handlers.c in nqptp before 1.2.3, crafted packets received on the control port could crash the program.
local
low complexity
mikebrady CWE-400
5.5
2023-09-20 CVE-2023-26144 Resource Exhaustion vulnerability in Graphql
Versions of the package graphql from 16.3.0 and before 16.8.1 are vulnerable to Denial of Service (DoS) due to insufficient checks in the OverlappingFieldsCanBeMergedRule.ts file when parsing large queries.
network
low complexity
graphql CWE-400
5.3
2023-09-19 CVE-2022-47556 Resource Exhaustion vulnerability in Ormazabal Ekorccp Firmware and Ekorrci Firmware
Uncontrolled resource consumption in ekorRCI, allowing an attacker with low-privileged access to the web server to send continuous legitimate web requests to a functionality that is not properly validated, in order to cause a denial of service (DoS) on the device.
network
low complexity
ormazabal CWE-400
6.5
2023-09-18 CVE-2023-42521 Resource Exhaustion vulnerability in Withsecure products
Certain WithSecure products allow a remote crash of a scanning engine via processing of a compressed file.
network
low complexity
withsecure CWE-400
7.5
2023-09-18 CVE-2023-42522 Resource Exhaustion vulnerability in Withsecure products
Certain WithSecure products allow a remote crash of a scanning engine via processing of an import struct in a PE file.
network
low complexity
withsecure CWE-400
7.5
2023-09-18 CVE-2023-42523 Resource Exhaustion vulnerability in Withsecure products
Certain WithSecure products allow a remote crash of a scanning engine via unpacking of a PE file.
network
low complexity
withsecure CWE-400
7.5
2023-09-18 CVE-2023-42520 Resource Exhaustion vulnerability in Withsecure products
Certain WithSecure products allow a remote crash of a scanning engine via unpacking of crafted data files.
network
low complexity
withsecure CWE-400
7.5