Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')

DATE CVE VULNERABILITY TITLE RISK
2018-06-07 CVE-2017-16117 Resource Exhaustion vulnerability in Slug Project Slug
slug is a module to slugify strings, even if they contain unicode.
network
low complexity
slug-project CWE-400
7.5
7.5
2018-06-07 CVE-2017-16116 Resource Exhaustion vulnerability in String Project String
The string module is a module that provides extra string operations.
network
low complexity
string-project CWE-400
7.5
7.5
2018-06-07 CVE-2017-16115 Resource Exhaustion vulnerability in Timespan Project Timespan
The timespan module is vulnerable to regular expression denial of service.
network
low complexity
timespan-project CWE-400
7.5
7.5
2018-06-07 CVE-2017-16114 Resource Exhaustion vulnerability in Marked Project Marked
The marked module is vulnerable to a regular expression denial of service.
network
low complexity
marked-project CWE-400
7.5
7.5
2018-06-07 CVE-2017-16111 Resource Exhaustion vulnerability in Content Project Content
The content module is a module to parse HTTP Content-* headers.
network
low complexity
content-project CWE-400
7.5
7.5
2018-06-07 CVE-2017-16099 Resource Exhaustion vulnerability in No-Case Project No-Case
The no-case module is vulnerable to regular expression denial of service.
network
low complexity
no-case-project CWE-400
7.5
7.5
2018-06-07 CVE-2017-16098 Resource Exhaustion vulnerability in Charset Project Charset
charset 1.0.0 and below are vulnerable to regular expression denial of service.
network
low complexity
charset-project CWE-400
7.5
7.5
2018-06-07 CVE-2017-16086 Resource Exhaustion vulnerability in Ua-Parser Project Ua-Parser
ua-parser is a port of Browserscope's user agent parser.
network
low complexity
ua-parser-project CWE-400
7.5
7.5
2018-06-01 CVE-2017-6153 Resource Exhaustion vulnerability in F5 products
Features in F5 BIG-IP 13.0.0-13.1.0.3, 12.1.0-12.1.3.1, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1 system that utilizes inflate functionality directly, via an iRule, or via the inflate code from PEM module are subjected to a service disruption via a "Zip Bomb" attack.
network
low complexity
f5 CWE-400
5.3
5.3
2018-05-31 CVE-2016-10524 Resource Exhaustion vulnerability in I18N-Node-Angular Project I18N-Node-Angular
i18n-node-angular is a module used to interact between i18n and angular without using additional resources.
network
low complexity
i18n-node-angular-project CWE-400
8.2
8.2