CWE-400: Resource Exhaustion

This vulnerability in IBM Security Access Manager Container allows attackers to cause denial of service through uncontrolled resource consumption. It ...

This vulnerability in Spring Framework allows attackers to cause denial-of-service (DoS) conditions by sending specially crafted HTTP requests. Applic...

A vulnerability in Mbed TLS 3.5.1 causes persistent handshake denial when a client sends a TLS 1.3 ClientHello message without extensions. This allows...

This is a high-severity denial-of-service vulnerability in Confluence Data Center and Server that allows unauthenticated attackers to disrupt service ...

The CVE-2023-52113 vulnerability, known as launchAnyWhere, is a flaw in the ActivityManagerService module that allows attackers to trigger denial-of-s...

This CVE describes a vulnerability in Drupal's handling of structural elements that could allow an attacker to trigger a denial-of-service condition. ...

This vulnerability allows unauthenticated attackers to trigger route pruning in Cloud Foundry's gorouter, causing denial of service by degrading servi...

This CVE describes a denial of service vulnerability in .NET that allows attackers to crash affected applications by sending specially crafted request...

CVE-2024-0241 is an uncontrolled resource consumption vulnerability in encoded_id-rails gem versions before 1.0.0.beta2. Remote unauthenticated attack...

A denial-of-service vulnerability in Cesanta mjs 2.20.0 allows remote attackers to crash applications using this embedded JavaScript engine via a spec...

This vulnerability in open5gs v2.6.6 allows attackers to crash the AMF (Access and Mobility Management Function) component by exploiting SIGPIPE signa...

Grackle GraphQL server versions before 0.18.0 contain two stack overflow vulnerabilities. Attackers can craft malicious GraphQL queries with cyclic fr...

A Regular Expression Denial of Service (ReDoS) vulnerability in Sentry's Astro SDK allows attackers to cause excessive server computation times, leadi...

This vulnerability allows remote unauthenticated attackers to cause denial-of-service conditions in HMI GC-A2 series devices by sending specially craf...

This vulnerability allows remote unauthenticated attackers to cause a denial-of-service condition in HMI GC-A2 series devices by sending specially cra...

This vulnerability in Appointment Scheduler 3.0 allows attackers to send unlimited AJAX requests to the pjActionAjaxSend endpoint, causing resource ex...

This vulnerability in Time Slots Booking Calendar 4.0 allows attackers to send unlimited AJAX requests to the pjActionAJaxSend endpoint, causing resou...

Traefik's Docker integration creates an automatic route where Traefik serves as its own backend, causing 100% CPU consumption in a denial-of-service c...

A vulnerability in the box_equal function of OpenLink Virtuoso OpenSource v7.2.11 allows attackers to cause Denial of Service (DoS) by executing a SEL...

Unauthenticated attackers can exploit vulnerabilities in the BLE daemon service via the PAPI protocol to cause Denial-of-Service (DoS) on affected Aru...

This vulnerability allows unauthenticated remote attackers to cause a Denial of Service (DoS) in Helix Core servers by exploiting a buffer-related iss...

This vulnerability allows unauthenticated remote attackers to cause a Denial of Service (DoS) in Helix Core servers by exploiting the commit function....

This vulnerability allows unauthenticated remote attackers to trigger a shutdown function in Helix Core servers, causing denial of service. All Helix ...

This vulnerability allows an attacker to cause a denial of service in Calico Typha by initiating a malicious TLS handshake that blocks the server's ma...

This vulnerability in Minikin (Android's text layout engine) allows remote attackers to cause denial of service through resource exhaustion by sending...

CVE-2023-31418 is a denial-of-service vulnerability in Elasticsearch's HTTP layer where unauthenticated attackers can cause nodes to crash with OutOfM...

This vulnerability in Mozilla graphics drivers allows attackers to cause denial of service through large draw calls. It affects Firefox versions befor...

CVE-2023-44388 is a denial-of-service vulnerability in Discourse where malicious requests can rapidly fill production log files, causing servers to ru...

This vulnerability in silverstripe-graphql allows attackers to execute recursive GraphQL queries causing Distributed Denial of Service (DDoS) attacks....

This vulnerability in IBM Security Verify Access OIDC Provider allows remote attackers to cause denial of service through uncontrolled resource consum...

An unauthenticated network attacker can send malformed TCP traffic to cause an infinite loop in the Packet Forwarding Engine on Juniper MX Series rout...

CVE-2023-36606 is a denial-of-service vulnerability in Microsoft Message Queuing (MSMQ) where an unauthenticated attacker could send specially crafted...

This vulnerability in the DHCP Server Service allows an attacker to send specially crafted packets that cause a denial of service, potentially crashin...

CVE-2023-44487 is an HTTP/2 protocol vulnerability that allows attackers to cause denial of service by rapidly resetting streams, consuming server res...

This vulnerability in OpenTelemetry Python autoinstrumentation allows attackers to cause memory exhaustion by sending HTTP requests with random, long ...

A vulnerability in MariaDB allows remote attackers to cause denial of service via port scans on ports 3306 and 4567. This affects MariaDB servers with...

This CVE describes a denial-of-service vulnerability in plone.rest where repeated use of the `++api++` traverser in URLs causes increasing processing ...

This vulnerability allows remote attackers to crash the scanning engine in multiple WithSecure security products by sending a specially crafted PE fil...

This vulnerability allows remote attackers to crash the scanning engine in multiple WithSecure security products by sending specially crafted data fil...

This vulnerability in Sidekiq versions before 7.1.3 allows attackers to cause a Denial of Service (DoS) by manipulating localStorage values in the das...

This vulnerability in go-ethereum (geth) allows attackers to send specially crafted P2P messages that cause vulnerable nodes to consume unbounded amou...

This vulnerability in Array AG OS allows remote attackers to cause denial of service by crashing system service processes through abnormal HTTP operat...

AdGuard DNS versions before 2.2 contain a vulnerability where remote attackers can send malformed UDP packets to cause denial of service. This affects...

This vulnerability in the rtl8812au Wi-Fi driver allows attackers to cause a denial of service by exploiting a flaw in the nl80211_send_chandef functi...

This vulnerability in OpenVPN allows remote attackers to send crafted reset packets through the control channel, causing a denial of service (DoS) con...

IBM TXSeries for Multiplatforms versions 8.1, 8.2, and 9.1 are vulnerable to a denial of service attack due to improper timeout enforcement on read op...

This CVE describes a denial of service vulnerability in .NET and Visual Studio that allows attackers to crash affected applications by sending special...

This vulnerability in PTC's KEPServerEX allows attackers to send specially crafted OPC UA messages containing recursively defined objects, causing unc...

This vulnerability in Keylime's registrar component allows remote attackers to cause a denial of service by exhausting all available SSL connections d...

CVE-2023-37475 is a denial-of-service vulnerability in the Hamba avro Go library where a maliciously crafted string passed to the Unmarshal() function...