CWE-400: Resource Exhaustion

This vulnerability in Jetty's ThreadLimitHandler.getRemote() allows unauthenticated attackers to send crafted requests that trigger OutOfMemory errors...

This vulnerability allows unauthenticated remote attackers to cause a denial-of-service condition in the Cisco AnyConnect VPN server on Meraki MX and ...

This vulnerability allows a malicious HID (Human Interface Device) like a keyboard or mouse to cause unexpected process crashes on affected Apple devi...

This vulnerability in LibreChat allows attackers to exploit an unrestricted fork function to create numerous content forks containing large Mermaid gr...

This vulnerability in Intel Tiber Edge Platform's Edge Orchestrator software allows authenticated users on adjacent networks to cause denial of servic...

This CVE describes a potential prototype pollution vulnerability in OneTrust SDK version 6.33.0 that could allow a local attacker to cause denial of s...

This vulnerability in HobbesOSR Kitten's set_pte_at function allows attackers to cause resource consumption (denial of service) by manipulating page t...

This vulnerability in Nextcloud Server allows attackers to trick the link reference provider into downloading larger websites than intended when proce...

Minder's Git provider is vulnerable to a denial-of-service attack where authenticated users can cause the Minder server to crash by instructing it to ...

A cache handling vulnerability in macOS allows applications to cause denial-of-service conditions. This affects macOS Sequoia, Tahoe, and Sonoma opera...

An uncontrolled resource consumption vulnerability in Qsync Central allows local attackers with user accounts to launch denial-of-service attacks by e...

An uncontrolled resource consumption vulnerability in Qsync Central allows local attackers with user accounts to launch denial-of-service attacks by e...

A vulnerability in mquickjs allows local attackers to cause denial of service by providing a specially crafted file to the get_mblock_size function. T...

This vulnerability in apko allows attackers to cause resource exhaustion by forcing excessive CPU usage during gzip inflation of malicious APK archive...

Avahi's simple protocol server ignores the documented client connection limit, allowing unprivileged local users to establish unlimited connections. T...

This vulnerability allows a malicious Android app to cause resource exhaustion in the AppOpsService, potentially preventing emergency calls in limited...

This vulnerability in Android's NotificationManagerService allows local attackers to cause permanent denial of service through resource exhaustion. It...

This vulnerability allows attackers to bypass per-package notification channel limits in Android's NotificationManagerService, potentially causing res...

CVE-2025-13837 is a denial-of-service vulnerability in Python's plistlib module where malicious plist files can trigger excessive memory allocation, c...

This vulnerability allows an authenticated local attacker to cause denial of service through uncontrolled resource consumption in Gaudi software. It a...

A vulnerability in libarchive's bsdtar allows attackers to cause denial of service through unbounded memory allocation when processing malicious subst...

This CVE describes a denial-of-service vulnerability in Python's os.path.expandvars() function. When user-controlled input is passed to this function,...

CVE-2025-61155 is an access control vulnerability in GameDriverX64.sys anti-cheat driver that allows user-mode processes to send specially crafted IOC...

This vulnerability in MySQL Server's DML component allows authenticated high-privilege attackers to cause denial of service (server hang/crash) or mod...

A vulnerability in MySQL Server's InnoDB component allows high-privileged attackers with network access to cause denial of service (server hangs or cr...

This CVE describes a denial-of-service vulnerability in Apple operating systems where an application could cause system instability or crashes. It aff...

This Android vulnerability allows resource exhaustion through repeated package access requests, potentially causing persistent denial of service on af...

This CVE describes a resource exhaustion vulnerability in Android's framework that could allow local attackers to cause permanent denial of service wi...

This CVE describes a resource exhaustion vulnerability in Android that can cause crash loops, leading to local denial of service. Attackers can exploi...

The Linux kernel's ksmbd SMB server component allows repeated connections from clients with the same IP address to exhaust maximum connection limits, ...

SINEC Traffic Analyzer versions before V3.0 run Docker containers without proper resource limits, allowing attackers to exhaust system resources and c...

This vulnerability in Intel Tiber Edge Platform's Edge Orchestrator software allows authenticated users to cause resource exhaustion through uncontrol...

This vulnerability allows processing a maliciously crafted media file to cause unexpected app termination or corrupt process memory. It affects Apple ...

A kernel vulnerability in Cray Operating System (COS) allows local attackers to trigger a Denial of Service condition. This affects systems running vu...

A local denial-of-service vulnerability in fluent-bit v3.7.2 allows attackers to crash the service by exploiting a flaw in the cfl_list_size function....

A memory initialization vulnerability in macOS allows remote attackers to cause application crashes or heap corruption. This affects macOS Ventura, Se...

This vulnerability allows malicious web content to cause unexpected process crashes in Apple's WebKit browser engine. It affects users of Safari and A...

A local denial-of-service vulnerability in Floodlight v1.2 allows attackers with local access to crash the controller via the Topology Manager, Topolo...

This macOS kernel memory corruption vulnerability allows malicious applications to cause system crashes or corrupt kernel memory, potentially leading ...

This vulnerability allows local attackers to crash emergency callback mode on Android devices due to a missing null check in the EmergencyCallbackMode...

This vulnerability in Netty allows attackers to cause denial of service by creating a large file that Netty attempts to load on Windows systems. When ...

This vulnerability involves an out-of-bounds access issue in Apple's image processing components that could cause denial-of-service. Attackers could e...

A logic error in Apple operating systems allows an app to cause a denial-of-service (DoS) by exploiting improper error handling. This vulnerability af...

A memory initialization vulnerability in macOS allows processing malicious files to cause unexpected application termination. This affects users runni...

This vulnerability in MySQL Server's optimizer component allows high-privileged attackers with network access to cause denial of service (server hangs...

This vulnerability in Oracle VM VirtualBox allows a low-privileged attacker with local access to a Linux host to cause a denial of service (DoS) by cr...

A NULL pointer dereference vulnerability in the AMD display driver component of the Linux kernel can cause a kernel crash when disabling a display str...

This vulnerability allows attackers to bypass Wi-Fi network isolation controls in multi-BSSID environments by adapting port-stealing techniques. Succe...

Open OnDemand users can flood system logs by generating repeated errors through the shell app, creating excessively large log files that consume disk ...

This vulnerability allows an attacker to cause denial of service in webtransport-go implementations by preventing WebTransport session closure. Attack...