CWE-770: CWE-770

This vulnerability in IBM Cognos Analytics allows authenticated users to send specially crafted requests that exhaust memory resources, causing denial...

This vulnerability in QNAP File Station 5 allows authenticated attackers to exhaust system resources through uncontrolled resource allocation. Attacke...

CVE-2018-25112 allows unauthenticated remote attackers to cause denial-of-service on affected industrial control systems by flooding them with network...

This vulnerability in GitLab CE/EE allows authenticated attackers to trigger a denial of service by exhausting server resources. All GitLab instances ...

This vulnerability in Drupal Events Log Track module allows attackers to cause excessive resource allocation without limits, potentially leading to de...

This vulnerability affects F5 BIG-IP systems with HTTP/2 httprouter profiles configured on virtual servers. Undisclosed HTTP/2 responses can cause mem...

CVE-2025-30202 exposes vLLM's internal state data and enables denial of service attacks in multi-node deployments. The vulnerability allows unauthoriz...

CVE-2025-21605 is a memory exhaustion vulnerability in Redis where unauthenticated clients can cause unlimited growth of output buffers, leading to se...

A denial-of-service vulnerability in Apollo Router Core allows attackers to craft GraphQL queries with deeply nested and reused named fragments that c...

This CVE describes a resource exhaustion vulnerability in ASP.NET Core where an attacker can send specially crafted requests to consume excessive serv...

A denial-of-service vulnerability in Apollo Gateway allows attackers to craft GraphQL queries with deeply nested and reused named fragments that cause...

A denial-of-service vulnerability in Apollo Router allows attackers to craft GraphQL queries with deeply nested and reused named fragments that bypass...

A denial-of-service vulnerability in Apollo Router Core allows attackers to craft GraphQL queries with deeply nested and reused named fragments that c...

A vulnerability in Apollo Compiler versions before 1.27.0 allows attackers to craft GraphQL queries with deeply nested and reused named fragments that...

This vulnerability in parisneo/lollms-webui allows attackers to cause denial of service by sending specially crafted file upload requests with excessi...

A memory exhaustion vulnerability in Ollama allows attackers to upload specially crafted GGUF model files that cause unlimited memory allocation, lead...

This vulnerability allows attackers to cause denial of service in aimhubio/aim tracking servers by sending oversized websocket messages containing lar...

This vulnerability in danswer-ai/danswer version 0.9.0 allows attackers to cause denial of service through memory exhaustion by sending multiple reque...

SuperAGI v0.0.14 is vulnerable to an unauthenticated Denial of Service attack where attackers can crash the service by sending specially crafted HTTP ...

This vulnerability allows unauthenticated attackers to cause a Denial of Service (DoS) by sending specially crafted HTTP requests with manipulated mul...

This vulnerability allows unauthenticated attackers to cause a Denial of Service (DoS) by sending specially crafted HTTP requests with appended charac...

A vulnerability in Danswer AI v0.3.94 allows attackers to cause Denial of Service (DoS) by uploading files with malformed multipart boundaries contain...

This vulnerability in open-webui version 0.3.8 exposes an unauthenticated markdown-to-HTML conversion endpoint. Attackers can send specially crafted m...

A denial-of-service vulnerability in h2o-3's ImportFiles endpoint allows attackers to recursively call the endpoint via the 'path' parameter, filling ...

This vulnerability allows attackers to cause denial of service (DoS) by making API requests for large numbers of tracked metrics simultaneously. The A...

This vulnerability in open-webui version 0.3.32 allows unauthenticated attackers to send large POST requests to the /api/v1/utils/code/format endpoint...

This vulnerability allows unauthenticated attackers to crash LibreChat servers by uploading large files, causing denial of service through out-of-memo...

CVE-2024-10935 is a denial-of-service vulnerability in automatic1111/stable-diffusion-webui where malformed multipart requests with excessive boundary...

CVE-2025-29786 is a denial-of-service vulnerability in the Expr expression language for Go where unbounded input strings can cause excessive memory co...

An unauthenticated remote attacker can send malformed IKEv2 packets to Cisco IOS XR devices, causing them to stop processing all control plane UDP pac...

A vulnerability in OpenTelemetry.Api for .NET versions 1.10.0 to 1.11.1 causes Denial of Service when processing HTTP requests containing tracestate a...

CVE-2025-27419 is a denial-of-service vulnerability in WeGIA web management software that allows unauthenticated attackers to crash servers through ag...

SSH servers implementing file transfer protocols (like SFTP/SCP) are vulnerable to a resource exhaustion denial-of-service attack. Malicious clients c...

A resource allocation vulnerability in Schneider Electric devices allows attackers to send malicious packets to the webserver, causing denial of servi...

This vulnerability in BIG-IP AFM with IPS module enabled allows undisclosed traffic to cause excessive CPU utilization, potentially leading to denial ...

This vulnerability in GitLab CE/EE allows attackers to cause denial of service by crafting malicious search terms for branch names. The attack exploit...

This vulnerability allows attackers to cause denial-of-service (DoS) against DNS resolvers by flooding them with crafted HTTP/2 traffic over DNS-over-...

This vulnerability allows remote unauthenticated attackers to send crafted TR069 requests to AXESS ACS servers, causing permanent Denial of Service th...

CVE-2024-55195 is an allocation-size-too-big vulnerability in OpenImageIO's image buffer component that can cause denial of service through excessive ...

This vulnerability in @fastify/multipart plugin causes temporary uploaded files to persist on disk when users cancel multipart requests, leading to di...

CVE-2025-0635 is a denial-of-service vulnerability in M-Files Server that allows unauthenticated attackers to consume computing resources, potentially...

Lunasvg v3.0.0 contains an allocation-size-too-big vulnerability in the plutovg_surface_create component that can lead to denial of service or potenti...

This vulnerability in MySQL Server's thread pooling component allows unauthenticated attackers with network access to cause a denial of service by cra...

This vulnerability in IBM TXSeries for Multiplatforms 10.1 allows remote attackers to cause denial of service by exploiting improper resource allocati...

This vulnerability in IBM Safer Payments allows remote attackers to cause denial of service by exploiting improper resource allocation. It affects IBM...

CVE-2018-25108 allows unauthenticated remote attackers to cause a denial-of-service (DoS) in affected controllers by exhausting system resources. This...

This vulnerability in Fortinet FortiSIEM allows attackers to cause denial of service by consuming all available TLS connections through resource alloc...

This CVE describes a resource exhaustion vulnerability in FortiOS where an unauthenticated remote attacker can cause a denial-of-service by uploading ...

This vulnerability in the sqlg_hash_source component of OpenLink Virtuoso OpenSource allows attackers to cause Denial of Service (DoS) by sending spec...

A vulnerability in the sqlg_place_dpipes component of OpenLink Virtuoso OpenSource allows attackers to cause Denial of Service (DoS) through specially...