Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')

DATE CVE VULNERABILITY TITLE RISK
2018-01-29 CVE-2017-15133 Resource Exhaustion vulnerability in Miekg-Dns Prject Miekg-Dns
A denial of service flaw was found in miekg-dns before 1.0.4.
network
low complexity
miekg-dns-prject CWE-400
7.5
2018-01-27 CVE-2018-6352 Resource Exhaustion vulnerability in Podofo Project Podofo 0.9.5
In PoDoFo 0.9.5, there is an Excessive Iteration in the PdfParser::ReadObjectsInternal function of base/PdfParser.cpp.
local
low complexity
podofo-project CWE-400
5.5
2018-01-26 CVE-2017-3768 Resource Exhaustion vulnerability in multiple products
An unprivileged attacker with connectivity to the IMM2 could cause a denial of service attack on the IMM2 (Versions earlier than 4.4 for Lenovo System x and earlier than 6.4 for IBM System x).
network
low complexity
lenova ibm CWE-400
7.5
2018-01-25 CVE-2018-5954 Resource Exhaustion vulnerability in PHPfreechat
phpFreeChat 1.7 and earlier allows remote attackers to cause a denial of service by sending a large number of connect commands.
network
low complexity
phpfreechat CWE-400
7.5
2018-01-25 CVE-2018-5748 Resource Exhaustion vulnerability in multiple products
qemu/qemu_monitor.c in libvirt allows attackers to cause a denial of service (memory consumption) via a large QEMU reply.
network
low complexity
redhat debian CWE-400
7.5
2018-01-19 CVE-2018-5784 Resource Exhaustion vulnerability in multiple products
In LibTIFF 4.0.9, there is an uncontrolled resource consumption in the TIFFSetDirectory function of tif_dir.c.
network
low complexity
libtiff debian canonical CWE-400
6.5
2018-01-18 CVE-2018-0094 Resource Exhaustion vulnerability in Cisco Unified Computing System Central Software 1.4(1A)
A vulnerability in IPv6 ingress packet processing for Cisco UCS Central Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to high CPU utilization on the targeted device.
network
low complexity
cisco CWE-400
7.5
2018-01-18 CVE-2018-0090 Resource Exhaustion vulnerability in Cisco Nx-Os 7.3(2)N1(0.6)/8.3(0)Kms(0.31)/8.8(3.5)S0
A vulnerability in management interface access control list (ACL) configuration of Cisco NX-OS System Software could allow an unauthenticated, remote attacker to bypass configured ACLs on the management interface.
network
low complexity
cisco CWE-400
7.5
2018-01-18 CVE-2018-0086 Resource Exhaustion vulnerability in Cisco Unified Customer Voice Portal
A vulnerability in the application server of the Cisco Unified Customer Voice Portal (CVP) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device.
network
low complexity
cisco CWE-400
8.6
2018-01-12 CVE-2017-13211 Resource Exhaustion vulnerability in Google Android 8.0
In bta_scan_results_cb_impl of btif_ble_scanner.cc, there is possible resource exhaustion if a large number of repeated BLE scan results are received.
network
low complexity
google CWE-400
7.5