CWE-400: Resource Exhaustion

This vulnerability allows authenticated Splunk users with the 'change_authentication' capability to send multiple LDAP bind requests to a specific int...

This vulnerability allows a high-privileged remote attacker to cause denial of service by exhausting system resources through rapid crafted POST reque...

This vulnerability in MySQL Server's replication component allows authenticated high-privileged attackers to cause a denial of service (DoS) by crashi...

This vulnerability in MySQL Server's InnoDB component allows authenticated high-privilege attackers to cause denial of service by crashing or hanging ...

A vulnerability in MySQL Server's optimizer component allows authenticated high-privilege attackers to cause denial of service by crashing or hanging ...

This vulnerability in MySQL Server's InnoDB component allows high-privileged attackers with network access to cause denial of service by crashing or h...

This vulnerability in Oracle MySQL Server allows high-privileged attackers with network access to cause denial of service by crashing or hanging the s...

This vulnerability in Oracle MySQL's InnoDB component allows authenticated high-privileged attackers to cause a denial of service (DoS) by crashing or...

This vulnerability in MySQL Server's InnoDB component allows authenticated high-privileged attackers to cause denial of service by crashing or hanging...

This vulnerability in MySQL Server's optimizer component allows authenticated high-privilege attackers to cause denial of service by crashing or hangi...

This vulnerability in MySQL Server's InnoDB component allows high-privileged attackers with network access to cause a denial of service (DoS) by crash...

This vulnerability in MySQL Server's InnoDB component allows high-privileged attackers with network access to cause a denial of service by crashing or...

This vulnerability in Oracle MySQL Server's Full-Text Search (FTS) component allows high-privileged attackers with network access to cause a denial of...

This vulnerability in Discourse allows attackers to submit extremely long tag group names in requests, which can cause resource exhaustion and reduce ...

This vulnerability in MySQL Server's InnoDB component allows authenticated high-privileged attackers to cause denial of service by crashing or hanging...

This vulnerability in MySQL Server allows high-privileged attackers with network access to cause a denial of service (DoS) by crashing or hanging the ...

This vulnerability in MySQL Server's InnoDB component allows authenticated high-privilege attackers to cause denial of service by crashing or hanging ...

This vulnerability allows high-privileged Kibana users with osquery pack creation permissions to upload malicious packs that could cause Kibana availa...

A vulnerability in mintplex-labs/anything-llm allows authenticated users with manager or admin privileges to cause a denial of service by modifying a ...

This vulnerability is a use-after-free bug in the Linux kernel's ISDN mISDN netjet driver that can cause a kernel panic during device probe failure. I...

A denial-of-service vulnerability in Wind River VxWorks 7 allows attackers to crash systems by sending specially crafted USB packets. This affects VxW...

A vulnerability in MySQL Server's LDAP authentication component allows high-privileged attackers with network access to cause denial of service by cra...

This vulnerability in MySQL Server's InnoDB component allows authenticated high-privileged attackers with local access to cause a denial of service (D...

A vulnerability in Oracle MySQL Server's Components Services allows high-privileged attackers with network access to cause a denial of service by cras...

This vulnerability in INW Krbyyyzo 25.2002 allows attackers to cause resource consumption (denial of service) by manipulating the 's' parameter in the...

This vulnerability in GNOME VTE allows an attacker to cause denial of service through excessive memory consumption by sending malicious window resize ...

This vulnerability in melange allows attackers to cause disk exhaustion on build runners by specifying malicious URIs in build configurations. The upd...

This CVE describes a ReDOS (Regular Expression Denial of Service) vulnerability in Zohocorp ManageEngine Exchange Reporter Plus. Attackers can cause d...

The Tomofun Furbo 360 pet camera has a file upload vulnerability that allows attackers to cause resource consumption (denial of service) through remot...

This vulnerability in IROAD Dashcam Q9 allows attackers on the local network to spam MFA pairing requests, potentially causing resource exhaustion or ...

This vulnerability in vue-cli's PWA plugin involves inefficient regular expression complexity in the HtmlPwaPlugin component. Attackers can cause deni...

This vulnerability in Apereo CAS 5.2.6 involves inefficient regular expression complexity in the CasConfigurationMetadataServerController.java file, a...

A denial-of-service vulnerability in OpenShift Dedicated's Hive hibernation controller allows attackers to crash the controller by creating malformed ...

This vulnerability allows attackers to disrupt the initial connection between a gNB (gNodeB) and the Near Real-Time RAN Intelligent Controller (Near R...

This vulnerability in Discourse allows authenticated users to send excessive URL requests to the inline onebox generation endpoint, causing denial of ...

Dell PowerScale OneFS versions 9.5.0.x through 9.8.0.x contain an uncontrolled resource consumption vulnerability. A low-privilege remote attacker cou...

This vulnerability in Apache Commons IO allows attackers to cause denial of service by consuming excessive CPU resources through maliciously crafted i...

A buffer overflow vulnerability exists in PingCAP TiDB v8.1.0's (*Column).GetDecimal component when processing crafted queries involving RemoveUnneces...

CVE-2024-21658 is a resource exhaustion vulnerability in the discourse-calendar plugin where overly generous region value length limits allow attacker...

This vulnerability allows attackers to cause a Denial of Service (DoS) condition in GitLab by exploiting catastrophic backtracking when parsing Elasti...

OpenClaw's ACP bridge accepts excessively large prompt text blocks, allowing local ACP clients to send oversized payloads that could cause resource ex...

This vulnerability in libxml2 allows remote attackers to cause denial-of-service by sending crafted XML catalogs with repeated <nextCatalog> elements ...

A vulnerability in BinUtils' cp-demangle.c function allows attackers to cause denial of service through specially crafted PE files. This affects syste...

This CVE describes a denial-of-service vulnerability in Eclipse ThreadX NetX Duo's IPv6 component where sending a specially crafted 'Packet Too Big' I...

This vulnerability allows attackers to cause a denial of service on EV charger control boards by flooding them with ICMP requests. When exploited, the...

This vulnerability allows an attacker on the internal network to cause a denial of service by establishing two concurrent Telnet connections to the sy...

This vulnerability allows attackers to cause a denial of service on electric vehicle charger control boards by flooding them with ARP requests. When e...

SyncBreeze 15.2.24 contains a denial of service vulnerability where attackers can crash the service by sending oversized password parameters with repe...

Servify Express versions before 1.2 have a denial-of-service vulnerability where attackers can send extremely large JSON request bodies, causing exces...

CVE-2024-58306 is a denial of service vulnerability in minaliC 2.0.0 that allows remote attackers to crash the web server by sending oversized GET req...