Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')

DATE CVE VULNERABILITY TITLE RISK
2019-10-29 CVE-2018-19151 Resource Exhaustion vulnerability in Qtum
qtum through 0.16 (a chain-based proof-of-stake cryptocurrency) allows a remote denial of service.
network
low complexity
qtum CWE-400
7.5
2019-10-16 CVE-2019-15264 Resource Exhaustion vulnerability in Cisco products
A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol implementation of Cisco Aironet and Catalyst 9100 Access Points (APs) could allow an unauthenticated, adjacent attacker to cause an affected device to restart unexpectedly, resulting in a denial of service (DoS) condition.
low complexity
cisco CWE-400
6.1
2019-10-14 CVE-2019-17592 Resource Exhaustion vulnerability in multiple products
The csv-parse module before 4.4.6 for Node.js is vulnerable to Regular Expression Denial of Service.
network
low complexity
csv-parse-project fedoraproject CWE-400
7.5
2019-10-10 CVE-2019-13921 Resource Exhaustion vulnerability in Siemens Simatic Winac RTX (F) 2010 Sp1/Sp2
A vulnerability has been identified in SIMATIC WinAC RTX (F) 2010 (All versions < SP3 Update 1).
network
low complexity
siemens CWE-400
5.0
2019-10-10 CVE-2019-10936 Resource Exhaustion vulnerability in Siemens products
A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7, SIMATIC S7-400 CPU 414F-3 PN/DP V7, SIMATIC S7-400 CPU 416-3 PN/DP V7, SIMATIC S7-400 CPU 416F-3 PN/DP V7, Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P, SIMATIC CFU PA, SIMATIC ET 200pro IM154-8 PN/DP CPU, SIMATIC ET 200pro IM154-8F PN/DP CPU, SIMATIC ET 200pro IM154-8FX PN/DP CPU, SIMATIC ET 200S IM151-8 PN/DP CPU, SIMATIC ET 200S IM151-8F PN/DP CPU, SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl.
network
low complexity
siemens CWE-400
7.5
2019-10-10 CVE-2019-10923 Resource Exhaustion vulnerability in Siemens products
A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7, SIMATIC S7-400 CPU 414F-3 PN/DP V7, SIMATIC S7-400 CPU 416-3 PN/DP V7, SIMATIC S7-400 CPU 416F-3 PN/DP V7, Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P, SCALANCE X-200IRT switch family (incl.
network
low complexity
siemens CWE-400
7.5
2019-10-09 CVE-2019-15226 Resource Exhaustion vulnerability in Envoyproxy Envoy
Upon receiving each incoming request header data, Envoy will iterate over existing request headers to verify that the total size of the headers stays below a maximum limit.
network
low complexity
envoyproxy CWE-400
7.8
2019-10-04 CVE-2019-6015 Resource Exhaustion vulnerability in FON products
FON2601E-SE, FON2601E-RE, FON2601E-FSW-S, and FON2601E-FSW-B with firmware versions 1.1.7 and earlier contain an issue where they may behave as open resolvers.
network
low complexity
fon CWE-400
7.8
2019-10-02 CVE-2019-15256 Resource Exhaustion vulnerability in Cisco products
A vulnerability in the Internet Key Exchange version 1 (IKEv1) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition.
network
low complexity
cisco CWE-400
8.6
2019-09-27 CVE-2019-9349 Resource Exhaustion vulnerability in Google Android 10.0
In libstagefright, there is a possible resource exhaustion due to improper input validation.
network
google CWE-400
7.1