CWE-400: Resource Exhaustion

This vulnerability in Oracle WebLogic Server allows authenticated attackers with low privileges to cause a denial of service (DoS) by crashing or hang...

MongoDB Server versions 8.0 prior to 8.0.10 have a memory management vulnerability where certain internal operations can cause excessive memory consum...

A vulnerability in Realtek RTL8762E BLE SDK v1.4.0 allows attackers within Bluetooth range to cause a Denial of Service (DoS) by sending specially cra...

This vulnerability allows an authenticated attacker to cause a denial of service by sending manipulated HTTPS Content-Length headers to the webserver,...

This vulnerability allows unauthenticated attackers on adjacent networks to cause denial of service by exhausting resources in OpenVINO model server s...

This vulnerability in Ruby's Net::IMAP library allows a malicious or compromised IMAP server to cause denial of service through memory exhaustion. Whe...

This vulnerability in MySQL Server's InnoDB component allows authenticated attackers with low privileges to cause a denial of service (DoS) by crashin...

A vulnerability in MySQL Server's parser component allows low-privileged attackers with network access to cause denial of service by crashing or hangi...

A segmentation fault vulnerability in libming v0.4.8's decompileCALLMETHOD function allows attackers to cause Denial of Service (DoS) by processing a ...

An authenticated attacker can cause a denial-of-service condition on affected Bizerba devices via network access, disrupting normal operations. This a...

A Denial of Service vulnerability in gaizhenbiao/chuanhuchatgpt allows attackers to crash the service by uploading files with excessively long filenam...

A denial-of-service vulnerability in Dockerized anything-llm allows attackers to crash the entire site instance by uploading an audio file with a very...

This CVE describes a Denial of Service vulnerability in automatic1111/stable-diffusion-webui version 1.10.0 where attackers can crash the server by up...

A Denial of Service vulnerability in binary-husky/gpt_academic version 3.83 allows attackers to crash the server by uploading files with excessively l...

An authenticated denial-of-service vulnerability in lakeFS allows authenticated users to crash the server by exhausting memory. This affects lakeFS ve...

This vulnerability in Internet Connection Sharing (ICS) allows attackers to cause a denial of service condition by sending specially crafted network p...

This vulnerability in Ruby's Net::IMAP library allows a malicious IMAP server to cause denial of service through memory exhaustion. When a client conn...

Apache James server versions below 3.7.6 and 3.8.2 have a vulnerability in their JMAP HTML-to-text conversion implementation that allows attackers to ...

A prototype pollution vulnerability in the lib.createUploader function of @rpldy/uploader v1.8.1 allows attackers to supply crafted payloads that can ...

This CVE describes a logic error in Android's Bluetooth GATT server component that allows nearby attackers to cause denial of service without user int...

Dell PowerScale OneFS versions 8.2.2.x through 9.9.0.0 contain an uncontrolled resource consumption vulnerability that allows remote low-privileged at...

This vulnerability is an incomplete fix for the Rapid Reset attack (CVE-2023-39325/CVE-2023-44487) in the ose-olm-catalogd-container component. It all...

This vulnerability in MySQL Server's optimizer component allows authenticated attackers with low privileges to cause denial of service by crashing or ...

A vulnerability in Silverpeas versions 6.4.2 and earlier allows remote attackers to cause denial of service through the password change function. This...

This vulnerability allows attackers to cause Denial of Service (DoS) conditions in GitLab instances by exploiting resource exhaustion through the banz...

This vulnerability allows attackers to cause a Denial of Service (DoS) condition in GitLab by uploading specially crafted adoc (AsciiDoc) files. All G...

A denial-of-service vulnerability in the Matter protocol's CASE protocol allows attackers to replay manipulated CASE Sigma1 messages, causing affected...

This vulnerability in MySQL Server's Optimizer component allows authenticated attackers with network access to cause a denial of service by crashing o...

This vulnerability in MySQL Server's Optimizer component allows low-privileged attackers with network access to cause a denial of service (DoS) by cra...

This vulnerability in OpenJPEG allows an attacker to cause a denial of service through resource exhaustion by providing a specially crafted image file...

An unauthenticated adjacent attacker can exploit a memory leak in Juniper's Layer 2 Address Learning Daemon (l2ald) on Junos OS Evolved to cause syste...

This vulnerability allows attackers to cause Denial of Service (DoS) conditions in GitLab instances by exploiting resource exhaustion in the banzai pi...

A denial-of-service vulnerability in visionOS file handling protocol allows attackers to crash devices by processing malicious web content. This affec...

This vulnerability in Apple operating systems allows processing a maliciously crafted message to cause a denial-of-service condition. It affects multi...

Kwik commit 745fd4e2 fails to discard unused encryption keys as required by RFC 9001, potentially allowing attackers to decrypt previously encrypted Q...

This vulnerability in the Windows DHCP Server service allows an attacker to send specially crafted packets to cause a denial of service. Systems runni...

This CVE describes a denial-of-service vulnerability in Argo CD where specially crafted ignoreDifferences configurations can cause excessive memory co...

An uncontrolled resource consumption vulnerability in HAProxy could allow an authenticated remote attacker to crash the service by running a specially...

This vulnerability in Akinsoft MyRezzta allows attackers to manipulate input data to cause uncontrolled resource consumption (flooding), potentially l...

ImageMagick versions before 7.1.2-15 and 6.9.13-40 contain a vulnerability where specially crafted IPTC profile data can trigger an infinite loop when...

A vulnerability in IObit Unlocker v1.3.0.11 allows attackers to cause a Denial of Service (DoS) by sending specially crafted requests. This affects us...

This vulnerability in Android's accessibility services allows an attacker to hide enabled accessibility services through a logic error in Accessibilit...

This vulnerability in Android's Wi-Fi configuration validation allows local attackers to trigger a permanent denial-of-service condition without user ...

This vulnerability in Windows Deployment Services allows an unauthorized attacker to cause a denial of service through uncontrolled resource consumpti...

This vulnerability in Kubernetes allows unauthenticated attackers to cause Node Denial of Service by sending numerous container checkpoint requests to...

This CVE describes a resource leak vulnerability in the Linux kernel's megaraid_sas driver. When the driver fails during PCI device probe, it doesn't ...

This vulnerability in AOS firmware allows authenticated attackers to delete critical boot information, permanently bricking the system and requiring h...

This vulnerability in Jetty's ThreadLimitHandler.getRemote() allows unauthenticated attackers to send crafted requests that trigger OutOfMemory errors...

This vulnerability allows unauthenticated remote attackers to cause a denial-of-service condition in the Cisco AnyConnect VPN server on Meraki MX and ...

This vulnerability allows a malicious HID (Human Interface Device) like a keyboard or mouse to cause unexpected process crashes on affected Apple devi...