CWE-400: Resource Exhaustion

This vulnerability is a prototype pollution flaw in the lib.deepMerge function of @zag-js/core v0.50.0 that allows attackers to supply crafted payload...

This CVE describes a prototype pollution vulnerability in underscore-contrib's lib.fromQuery function that allows attackers to manipulate JavaScript o...

This CVE describes a prototype pollution vulnerability in the deepMerge function of @stryker-mutator/util version 8.6.0, allowing attackers to cause D...

This CVE describes a prototype pollution vulnerability in the lib.merge function of xe-utils v3.5.31, which allows attackers to cause Denial of Servic...

This CVE describes a prototype pollution vulnerability in eazy-logger v4.0.1 that allows attackers to cause Denial of Service (DoS) by sending special...

A prototype pollution vulnerability in ajax-request v1.2.3 allows attackers to manipulate JavaScript object prototypes by sending crafted payloads to ...

This vulnerability allows attackers to cause resource exhaustion on F5 BIG-IP systems by sending specific traffic to SSL/TLS or DNSSEC configurations....

This vulnerability in F5 BIG-IP message routing profiles allows undisclosed traffic to cause excessive memory consumption, potentially leading to deni...

This vulnerability in Open5gs AMF allows remote attackers to cause a denial of service by sending specially crafted InitialUEMessage or Registration r...

A denial-of-service vulnerability in Open5GS v2.7.2 allows remote attackers to crash the service via the ogs_dbi_auth_info function. This affects all ...

Open5GS MME versions up to 2.6.4 contain a reachable assertion vulnerability in the UE Context Release Request packet handler. An attacker can send sp...

CVE-2023-37014 is a denial-of-service vulnerability in Open5GS MME where attackers can send malformed S1AP packets to crash the service. This affects ...

This vulnerability in Magma's decode_access_point_name_ie function allows attackers to trigger a reachable assertion via crafted NAS packets, causing ...

This vulnerability allows unauthenticated attackers to cause a denial of service (DoS) on Oracle WebLogic Server 14.1.1.0.0 by sending specially craft...

This vulnerability allows unauthenticated attackers to cause denial of service (DoS) attacks against Oracle PeopleSoft Enterprise PeopleTools by sendi...

This vulnerability in XINJE XL5E-16T programmable logic controllers allows attackers to send specially crafted Modbus messages that cause a denial of ...

This vulnerability in Windows Remote Desktop Services allows attackers to cause a denial of service by sending specially crafted requests to vulnerabl...

This vulnerability in Windows Universal Plug and Play (UPnP) Device Host service allows attackers to cause a denial of service by sending specially cr...

This vulnerability in Microsoft Message Queuing (MSMQ) allows attackers to cause a denial of service by sending specially crafted packets to vulnerabl...

This vulnerability in Microsoft Message Queuing (MSMQ) allows attackers to cause a denial of service by sending specially crafted packets to vulnerabl...

Microsoft Message Queuing (MSMQ) contains a denial-of-service vulnerability that allows attackers to crash the service by sending specially crafted pa...

This vulnerability in Microsoft Message Queuing (MSMQ) allows an attacker to cause a denial of service by sending specially crafted packets to the ser...

This vulnerability in IP Helper allows attackers to cause a denial of service condition on affected systems. It affects Windows systems with IP Helper...

This Windows Kerberos vulnerability allows attackers to cause denial of service by sending specially crafted requests to Kerberos services. It affects...

This vulnerability in Windows Connected Devices Platform Service (Cdpsvc) allows attackers to cause a denial of service condition on affected systems....

This vulnerability in OpenLink Virtuoso OpenSource allows attackers to cause denial of service by sending specially crafted SQL statements to the dfe_...

This vulnerability in Suricata allows attackers to cause a denial-of-service by sending specially crafted network traffic that triggers a stack overfl...

An uncontrolled resource consumption vulnerability in PlexTrac's WebSocket implementation allows attackers to cause denial of service by exhausting se...

A vulnerability in the PROFINET stack implementation of Bosch Rexroth IndraDrive allows attackers to cause denial of service by sending arbitrary UDP ...

A remote server can send a specially crafted push message that causes the browser's parent process to hang, making Firefox or Thunderbird unresponsive...

Werkzeug versions before 3.0.6 contain a resource exhaustion vulnerability in the MultiPartParser that handles multipart/form-data requests. Attackers...

A Denial of Service vulnerability in http-proxy-middleware allows attackers to crash Node.js servers by sending requests to specific paths. This affec...

An unauthenticated attacker can send specific HTTPS requests to Juniper Junos OS devices, causing uncontrolled process creation that leads to resource...

This vulnerability allows attackers to launch HTTP Denial-of-Service attacks against Progress Telerik Report Server by targeting anonymous endpoints t...

This vulnerability in Microsoft's Simple Certificate Enrollment Protocol (SCEP) allows attackers to cause denial of service by sending specially craft...

This vulnerability in Microsoft's Simple Certificate Enrollment Protocol (SCEP) allows attackers to cause denial of service by sending specially craft...

This vulnerability allows attackers to cause a denial of service (DoS) in BranchCache, a Windows feature that caches content from remote servers. Atta...

This vulnerability in Discourse allows authenticated users to create posts with many replies and then fetch them all at once, potentially causing deni...

CVE-2024-47850 is a vulnerability in CUPS cups-browsed that allows attackers to trigger HTTP POST requests to arbitrary destinations via a single IPP ...

Dell SmartFabric OS10 Software contains an uncontrolled resource consumption vulnerability that allows remote unauthenticated attackers to cause denia...

This CVE describes a vulnerability in Xen hypervisor's memory mapping logic for PCI devices with Reserved Memory Regions (RMRR) or Unity Mapping range...

This vulnerability allows attackers to cause a stack overflow by sending malicious Protocol Buffers data with deeply nested groups, potentially crashi...

This vulnerability allows remote attackers to cause denial-of-service conditions on affected Apple devices through improper state management. It affec...

This vulnerability allows attackers to cause a denial of service in the DHCP Server service by sending specially crafted packets. It affects Windows S...

This vulnerability affects multiple SIMATIC S7-200 SMART CPU models where improper handling of malformed TCP packets can cause denial of service. An u...

CVE-2024-8418 is a denial-of-service vulnerability in Aardvark-dns where an attacker can keep TCP connections open indefinitely, causing the DNS serve...

A denial-of-service vulnerability in CPython's http.cookies module where parsing cookies containing backslashes in quoted values triggers quadratic co...

This vulnerability affects BIG-IP tenants on specific hardware and virtual editions using Intel E810 SR-IOV NICs, where undisclosed traffic patterns c...

This CVE describes a denial of service vulnerability in .NET and Visual Studio where an attacker can cause affected systems to become unresponsive or ...

This vulnerability in Django's floatformat template filter allows attackers to cause denial of service through memory exhaustion by providing speciall...