Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')

DATE CVE VULNERABILITY TITLE RISK
2017-04-29 CVE-2017-8327 Resource Exhaustion vulnerability in Entropymine Imageworsener
The bmpr_read_uncompressed function in imagew-bmp.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (memory consumption) via a crafted image.
network
low complexity
entropymine CWE-400
6.5
2017-04-24 CVE-2017-2322 Resource Exhaustion vulnerability in Juniper Northstar Controller 2.1.0
A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1, may allow an authenticated user to cause widespread denials of service to system services by consuming TCP and UDP ports which are normally reserved for other system services.
local
low complexity
juniper CWE-400
5.5
2017-04-24 CVE-2017-1000359 Resource Exhaustion vulnerability in Opendaylight 3.3/4.0
Java out of memory error and significant increase in resource consumption.
network
low complexity
opendaylight CWE-400
5.3
2017-04-24 CVE-2017-1000357 Resource Exhaustion vulnerability in Opendaylight 3.3/4.0
Denial of Service attack when the switch rejects to receive packets from the controller.
network
low complexity
opendaylight CWE-400
7.5
2017-04-24 CVE-2017-2333 Resource Exhaustion vulnerability in Juniper Northstar Controller 2.1.0
A persistent denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a malicious, network-based, authenticated attacker to consume enough system resources to cause a persistent denial of service by visiting certain specific URLs on the server.
network
low complexity
juniper CWE-400
6.5
2017-04-24 CVE-2017-2327 Resource Exhaustion vulnerability in Juniper Northstar Controller 2.1.0
A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an authenticated malicious user to consume large amounts of system resources leading to a cascading denial of services.
local
low complexity
juniper CWE-400
5.5
2017-04-20 CVE-2017-3793 Resource Exhaustion vulnerability in Cisco Adaptive Security Appliance Software
A vulnerability in the TCP normalizer of Cisco Adaptive Security Appliance (ASA) Software (8.0 through 8.7 and 9.0 through 9.6) and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause Cisco ASA and FTD to drop any further incoming traffic on all interfaces, resulting in a denial of service (DoS) condition.
network
high complexity
cisco CWE-400
4.0
2017-04-18 CVE-2017-7940 Resource Exhaustion vulnerability in Entropymine Imageworsener 1.3.0
The iw_read_gif_file function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to consume an amount of available memory via a crafted file.
local
low complexity
entropymine CWE-400
5.5
2017-04-14 CVE-2016-3104 Resource Exhaustion vulnerability in Mongodb 2.4.0/2.6.0
mongod in MongoDB 2.6, when using 2.4-style users, and 2.4 allow remote attackers to cause a denial of service (memory consumption and process termination) by leveraging in-memory database representation when authenticating against a non-existent database.
network
low complexity
mongodb CWE-400
7.5
2017-04-07 CVE-2017-6019 Resource Exhaustion vulnerability in Schneider-Electric Conext Combox 865-1058 Firmware 3.03
An issue was discovered in Schneider Electric Conext ComBox, model 865-1058, all firmware versions prior to V3.03 BN 830.
network
low complexity
schneider-electric CWE-400
7.5