CWE-400: Resource Exhaustion

This vulnerability in the MediaWiki IPInfo extension allows attackers to cause excessive resource consumption through uncontrolled allocation. It affe...

CVE-2025-52887 is a memory exhaustion vulnerability in cpp-httplib where excessive HTTP headers cause memory leaks when connections disconnect, potent...

This vulnerability in Liferay Portal and DXP allows remote attackers to cause denial-of-service by consuming system memory through crafted HTTP reques...

This vulnerability allows remote attackers to perform denial-of-service attacks on Liferay Portal/DXP by sending complex GraphQL queries that overwhel...

This vulnerability in Windows Standards-Based Storage Management Service allows unauthorized attackers to cause denial of service by consuming system ...

This vulnerability allows an unauthorized attacker to cause a denial of service (DoS) in Windows LSASS (Local Security Authority Subsystem Service) by...

Dell PowerScale OneFS versions 9.4.0.0 through 9.9.0.0 contain an uncontrolled resource consumption vulnerability. A remote unauthenticated attacker c...

A vulnerability in Samsung's RRC (Radio Resource Control) implementation across multiple Exynos processors allows incorrect handling of undefined valu...

This vulnerability allows attackers to cause Denial of Service (DoS) by sending specially crafted Discovery messages that trigger excessive memory all...

This vulnerability in Rack's query parser allows attackers to send HTTP requests with extremely large numbers of parameters, causing memory exhaustion...

This vulnerability allows unauthenticated attackers to cause a denial of service (DoS) in Oracle Application Object Library by sending specially craft...

CVE-2025-27485 is a denial-of-service vulnerability in Windows Standards-Based Storage Management Service that allows unauthorized attackers to exhaus...

This vulnerability in Windows HTTP.sys allows unauthorized attackers to cause denial of service by consuming excessive resources. It affects Windows s...

This vulnerability in Windows Standards-Based Storage Management Service allows unauthorized attackers to cause denial of service by consuming system ...

This vulnerability in Windows Standards-Based Storage Management Service allows unauthorized attackers to cause denial of service by consuming system ...

This vulnerability allows an unauthorized attacker to cause a denial of service (DoS) on Windows systems by exploiting uncontrolled resource consumpti...

This vulnerability allows unauthorized attackers to cause denial of service in Windows Standards-Based Storage Management Service by consuming system ...

This vulnerability in Windows Cryptographic Services allows attackers to cause denial of service by consuming system resources through network request...

This vulnerability in Windows Standards-Based Storage Management Service allows unauthorized attackers to cause denial of service by consuming system ...

This vulnerability allows attackers to send very large payloads to Snowplow Collector 3.x servers, causing them to become unresponsive and potentially...

CVE-2025-2586 is an unauthenticated API request flooding vulnerability in OpenShift Lightspeed Service. Attackers can send repeated queries to non-exi...

CVE-2025-29487 is an out-of-memory vulnerability in libming's parseABC_STRING_INFO function that allows attackers to trigger allocator exhaustion, lea...

CVE-2025-29484 is an out-of-memory vulnerability in libming's parseABC_NS_SET_INFO function that allows attackers to trigger allocator exhaustion, lea...

Redlib versions before 0.36.0 contain a vulnerability where attackers can cause denial-of-service by submitting specially crafted base2048-encoded DEF...

A Denial of Service vulnerability in gradio-app/gradio version 0.39.1 allows attackers to crash servers by uploading files with excessively long filen...

An unauthenticated attacker can cause denial-of-service by submitting excessively large text in the 'name' field during signup, making the Admin panel...

An unauthenticated Denial of Service vulnerability exists in netease-youdao/qanything v2.0.0 where attackers can send file upload requests with excess...

This vulnerability in open-webui/open-webui allows unauthenticated attackers to submit extremely large payloads in email and password fields during si...

A Denial of Service vulnerability in the brycedrennan/imaginairy repository allows attackers to crash the server by sending invalid requests to the /a...

This vulnerability allows unauthenticated attackers to cause denial of service by sending file upload requests with excessively large filenames to the...

A Denial of Service vulnerability in imartinez/privategpt v0.6.2 allows attackers to crash the server by uploading files with excessively long filenam...

A Denial of Service vulnerability in InvokeAI allows attackers to crash the web interface by sending oversized payloads to board update endpoints. Thi...

A Denial of Service (DoS) vulnerability in lm-sys/fastchat version 0.2.36 allows attackers to crash the server by uploading a file with an excessively...

CVE-2025-29907 is a denial-of-service vulnerability in jsPDF library where attackers can pass malicious data URLs to addImage, html, or addSvgAsImage ...

This vulnerability in ruby-saml allows remote attackers to cause Denial of Service (DoS) by sending specially crafted compressed SAML responses. The l...

An unauthenticated attacker can cause a Denial of Service (DoS) in Palo Alto Networks PAN-OS GlobalProtect by sending specially crafted packets over t...

This CVE describes a memory handling vulnerability in Apple operating systems that could allow a malicious app to cause system crashes or corrupt kern...

This vulnerability allows a malicious application to cause kernel memory corruption or system crashes on macOS systems. It affects macOS users running...

Sysax Multi Server 6.99 is vulnerable to denial of service when processing malicious SSH packets, causing service disruption. This affects organizatio...

This vulnerability in Vasion Print (formerly PrinterLogic) allows remote attackers to perform network scanning and cause denial-of-service conditions....

A critical goroutine leak vulnerability in Abacus server's Server-Sent Events implementation allows resource exhaustion when clients disconnect from t...

GraphQL Mesh has a variable caching vulnerability where initial GraphQL query variables persist across subsequent requests with different variables un...

This vulnerability allows attackers to send excessive password reset and email change requests to legitimate users, potentially causing denial of serv...

This vulnerability allows attackers to abuse the 'Forgot Password' feature in PHPJabbers Bus Reservation System v1.1 by sending excessive password res...

This vulnerability allows attackers to send unlimited password reset requests for legitimate users in PHPJabbers Hotel Booking System v4.0, potentiall...

This vulnerability allows attackers to send excessive password reset or email change requests to legitimate users, potentially causing email denial-of...

A vulnerability in LearnDash v6.7.1 allows attackers to cause Denial of Service (DoS) by uploading excessive files through the profile image upload fu...

A missing null pointer check in the Xclipse GPU driver for Samsung Exynos mobile processors allows attackers to cause denial of service. This affects ...

This vulnerability in Windows Active Directory Domain Services API allows attackers to cause a denial of service condition by sending specially crafte...

A denial-of-service vulnerability in Microsoft Message Queuing (MSMQ) allows attackers to crash the service by sending specially crafted messages. Thi...