CWE-400: Resource Exhaustion

An unauthenticated attacker can exploit this vulnerability in Veal98 Echo Open-Source Community System to send email verification messages to arbitrar...

This vulnerability in Free5GC allows attackers to cause denial of service by sending specially crafted POST requests to the Nnssf_NSSAIAvailability AP...

An unauthenticated remote denial-of-service vulnerability in HPE web management interfaces allows attackers to crash affected systems, requiring manua...

This vulnerability allows remote attackers to brute-force predictable MD5 tokens used for critical user workflows like password resets and email confi...

A vulnerability in dvsekhvalnov jose2go library versions 1.5.0 through 1.7.0 allows attackers to cause Denial-of-Service (DoS) by sending specially cr...

Open5GS AMF crashes when receiving a malformed NGSetupRequest message, causing denial of service for 5G core network users. This affects all deploymen...

A vulnerability in KiloView Dual Channel 4k HDMI & 3G-SDI HEVC Video Encoder firmware allows remote attackers to cause denial of service through the s...

This vulnerability allows attackers to perform a Slowloris-style Denial-of-Service attack against Summer Pearl Group Vacation Rental Management Platfo...

This vulnerability allows attackers to flood caches with excessive data through API requests, causing legitimate cache entries to be evicted. This can...

LibreChat 0.7.9 is vulnerable to denial of service attacks through the /api/memories endpoint. Attackers can submit arbitrarily large 'key' or 'value'...

This vulnerability in Bitcoin Core allows attackers to cause uncontrolled resource consumption (denial of service) by exploiting a flaw in how the sof...

This vulnerability in Prevx v3.0.5.220 allows attackers to cause denial of service by sending a specific IOCTL code to the pxscan.sys driver, which te...

This vulnerability allows remote attackers to perform denial-of-service attacks against Liferay Portal/DXP by sending Headless API requests that retur...

This vulnerability in CAPEv2 allows attackers who can submit samples to cause denial-of-analysis by generating deeply nested or oversized behavior dat...

A missing NULL pointer check in Samsung Exynos processors allows attackers to cause Denial of Service by sending malformed MM (Mobility Management) pa...

OpenBao versions before 2.4.1 have a memory exhaustion vulnerability where specially crafted JSON payloads can cause disproportionate memory consumpti...

This vulnerability in kafka-ui versions 0.6.0 through 0.7.2 allows attackers to cause a Denial of Service (DoS) by uploading a specially crafted confi...

This vulnerability in Windows Remote Procedure Call allows unauthorized attackers to cause denial of service by consuming excessive system resources. ...

An unauthenticated attacker can flood Juniper Junos Space with HTTP API requests, consuming all file handles and causing a complete denial of service....

This vulnerability in Rack's multipart parser allows remote attackers to cause denial of service by sending incomplete multipart headers that trigger ...

This vulnerability in Rack (Ruby web server interface) allows remote attackers to cause denial of service through memory exhaustion. By sending multip...

This vulnerability allows remote attackers to cause a Denial of Service (DoS) on TCL Smart TVs by flooding the UPnP/DLNA MediaRenderer with malformed ...

The AT_NA2000 PLC from Nanda Automation Technology has a TCP implementation flaw that violates RFC5961 by accepting RST packets with sequence numbers ...

A Denial of Service vulnerability exists in TensorFlow v2.18.0 where using 'valid' padding in tf.keras.layers.Conv2D operations can cause resource exh...

A vulnerability in O-RAN Near Realtime RIC ric-plt-submgr allows remote attackers to cause denial of service via crafted requests to the Subscription ...

A vulnerability in PyTorch's torch.linalg.lu component allows attackers to trigger a Denial of Service (DoS) through specific slice operations. This a...

This vulnerability in Apache IoTDB is an uncontrolled resource consumption issue (CWE-400) that could allow attackers to cause denial of service. It a...

This CVE describes a Regular Expression Denial of Service (ReDoS) vulnerability in the huggingface/transformers library's AdamWeightDecay optimizer. A...

This vulnerability allows remote attackers to perform denial-of-service attacks on Liferay Portal/DXP by exploiting GraphQL queries that return unlimi...

A vulnerability in Open5GS allows remote attackers to cause denial of service by sending a specially crafted Create Session Request message to the SMF...

This vulnerability in Open5GS allows attackers to cause denial of service by triggering an assertion failure through repeated UE connect/disconnect me...

This CVE describes a denial of service vulnerability affecting Android Pixel devices. Attackers can exploit this vulnerability to cause system instabi...

An integer overflow and invalid input vulnerability in rust-ffmpeg's cached method allows attackers to cause denial of service or potentially execute ...

A denial of service vulnerability exists in gnark versions 0.12.0 where the fake-GLV algorithm for scalar multiplication fails to converge quickly for...

This vulnerability allows unauthenticated attackers to cause a Denial of Service (DoS) on Reolink video doorbells by flooding the RTMP server with sim...

This vulnerability in Eclipse Jetty allows HTTP/2 clients to trigger resource exhaustion attacks by sending malformed frames that force the server to ...

This vulnerability allows attackers to cause denial-of-service through memory exhaustion in Firefox and Thunderbird's WebRender graphics component. It...

This vulnerability in Firefox for iOS allows malicious scripts to bypass the popup blocker, enabling attackers to open excessive new tabs. This could ...

This buffer overflow vulnerability in TOTOLINK A3002R routers allows attackers to cause Denial of Service by sending specially crafted input to the fw...

This CVE describes a buffer overflow vulnerability in the TOTOLINK A3002R router's web interface. Attackers can send specially crafted requests to the...

CVE-2025-55197 is a denial-of-service vulnerability in pypdf where specially crafted PDF files with malicious FlateDecode filters can cause RAM exhaus...

This vulnerability allows an unauthorized attacker to cause a denial-of-service condition in Windows Remote Desktop Services by consuming excessive re...

Copyparty versions before 1.18.9 have a vulnerability where the filter parameter on the 'Recent Uploads' page accepts arbitrary regular expressions. W...

CVE-2025-53012 is a denial-of-service vulnerability in MaterialX library versions before 1.39.3 where unlimited nested file imports can cause stack ex...

A memory handling vulnerability in Suricata's HTTP/2 parser allows uncontrolled memory consumption when processing data on stream 0. This can lead to ...

This vulnerability in TRENDnet TPL-430AP access points allows denial-of-service attacks when the USERLIMIT_GLOBAL option is set to 0 in bftpd configur...

This vulnerability allows attackers to cause denial of service by sending specially crafted DNS packets with highly compressed domain names. When pars...

This vulnerability allows an attacker to cause a denial-of-service (DoS) condition in Apache Tomcat by exploiting an HTTP/2 protocol flaw. An uncooper...

This vulnerability allows unauthenticated remote attackers to cause denial of service in Zimbra Collaboration Suite by sending specially crafted GET r...

This vulnerability in Windows Netlogon allows unauthorized attackers to cause denial of service by consuming excessive resources. It affects Windows s...