Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')

DATE CVE VULNERABILITY TITLE RISK
2017-07-23 CVE-2017-11526 Resource Exhaustion vulnerability in Imagemagick
The ReadOneMNGImage function in coders/png.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted file.
network
low complexity
imagemagick CWE-400
6.5
2017-07-22 CVE-2017-11521 Resource Exhaustion vulnerability in multiple products
The SdpContents::Session::Medium::parse function in resip/stack/SdpContents.cxx in reSIProcate 1.10.2 allows remote attackers to cause a denial of service (memory consumption) by triggering many media connections.
network
low complexity
resiprocate debian CWE-400
7.5
2017-07-20 CVE-2017-7063 Resource Exhaustion vulnerability in Apple Iphone OS
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-400
7.5
2017-07-20 CVE-2017-7007 Resource Exhaustion vulnerability in Apple Iphone OS
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-400
7.5
2017-07-17 CVE-2017-7684 Resource Exhaustion vulnerability in Apache Openmeetings
Apache OpenMeetings 1.0.0 doesn't check contents of files being uploaded.
network
low complexity
apache CWE-400
7.5
2017-07-17 CVE-2017-2348 Resource Exhaustion vulnerability in Juniper Junos
The Juniper Enhanced jdhcpd daemon may experience high CPU utilization, or crash and restart upon receipt of an invalid IPv6 UDP packet.
network
low complexity
juniper CWE-400
7.5
2017-07-17 CVE-2017-1000064 Resource Exhaustion vulnerability in Kitto Project Kitto 0.5.1
kittoframework kitto version 0.5.1 is vulnerable to memory exhaustion in the router resulting in DoS
network
low complexity
kitto-project CWE-400
7.5
2017-07-17 CVE-2016-6312 Resource Exhaustion vulnerability in Redhat Enterprise Linux 5.11
The mod_dontdothat component of the mod_dav_svn Apache module in Subversion as packaged in Red Hat Enterprise Linux 5.11 does not properly detect recursion during entity expansion, which allows remote authenticated users with access to the webdav repository to cause a denial of service (memory consumption and httpd crash).
network
low complexity
redhat CWE-400
6.5
2017-07-12 CVE-2017-9845 Resource Exhaustion vulnerability in SAP Netweaver 7.40
disp+work 7400.12.21.30308 in SAP NetWeaver 7.40 allows remote attackers to cause a denial of service (resource consumption) via a crafted DIAG request, aka SAP Security Note 2405918.
network
low complexity
sap CWE-400
7.5
2017-07-10 CVE-2017-7670 Resource Exhaustion vulnerability in Apache Traffic Control
The Traffic Router component of the incubating Apache Traffic Control project is vulnerable to a Slowloris style Denial of Service attack.
network
low complexity
apache CWE-400
7.5