CWE-770: CWE-770

This vulnerability in OpenLink Virtuoso Open-Source allows attackers to cause Denial of Service (DoS) by sending specially crafted SQL statements to t...

This CVE describes a denial-of-service vulnerability in multiple Apple operating systems where improper input validation allows a remote attacker to c...

This vulnerability in Django's strip_tags() method and striptags template filter allows attackers to cause denial-of-service by sending specially craf...

CVE-2024-53857 is a resource exhaustion vulnerability in rPGP, a pure Rust OpenPGP implementation. Attackers can craft malicious messages to cause den...

This CVE describes a file size check vulnerability in ABB ASPECT, NEXUS, and MATRIX series products that allows attackers to bypass file size limits. ...

A denial-of-service vulnerability in aedes MQTT broker v0.51.2 allows attackers to crash the service via specially crafted requests. The vulnerability...

Synapse Matrix homeserver versions before 1.120.1 have a vulnerability where multipart/form-data requests can cause excessive memory consumption in ce...

Synapse Matrix homeserver versions before 1.106 are vulnerable to a disk fill attack where unauthenticated attackers can force the server to download ...

CVE-2024-53981 is a denial-of-service vulnerability in python-multipart where attackers can send malicious multipart requests with excessive data befo...

Rizin versions before v0.6.3 contain a vulnerability in the PE binary parsing functions that allows attackers to cause uncontrolled resource consumpti...

Litestar multipart form parser versions before 2.13.0 have no default limit for request body size, allowing attackers to upload arbitrarily large file...

This vulnerability in eSoft Planner's Instructor Appointment Availability module allows attackers to cause a Denial of Service (DoS) by sending specia...

This vulnerability allows an attacker to stall Bitcoin Core nodes for hours by sending a specially crafted unconfirmed transaction that creates orphan...

Bitcoin Core versions before 0.15.0 are vulnerable to a denial-of-service attack where an attacker can flood the node with minimum difficulty headers,...

Bitcoin Core versions before 0.20.0 contain a vulnerability where remote attackers can send specially crafted GETDATA messages that cause the software...

This vulnerability in Espressif's ESP-IDF framework allows attackers to send specially crafted data channel packets that cause a denial of service con...

A remote attacker can cause denial of service in Open Networking Foundation's sdran-in-a-box and onos-a1t components by exploiting the DeleteWatcher f...

CVE-2024-45797 is a resource exhaustion vulnerability in LibHTP, a widely-used HTTP parser library. Attackers can send specially crafted HTTP requests...

An unauthenticated network attacker can cause a denial of service (DoS) on Juniper Junos OS Evolved by exploiting a resource exhaustion vulnerability ...

This vulnerability in Windows Hyper-V allows an authenticated attacker on a guest virtual machine to cause a denial of service condition on the Hyper-...

async-graphql before version 7.0.10 does not limit the number of directives that can be applied to a single GraphQL field. This allows attackers to cr...

This vulnerability in Dovecot allows attackers to cause resource exhaustion by sending emails with extremely large headers. The message-header-parser ...

This vulnerability allows attackers to send unlimited size payloads to Vert.x gRPC servers, potentially causing resource exhaustion and denial of serv...

IDA Pro versions through 8.4 contain a denial-of-service vulnerability in the ida64.dll component. When analyzing binaries with sections containing ma...

This vulnerability in Dahua products allows attackers to send specially crafted data packets to vulnerable interfaces, causing denial of service throu...

CVE-2024-0760 is a denial-of-service vulnerability in BIND DNS servers where malicious clients can send excessive TCP DNS queries, causing server inst...

This vulnerability allows attackers to cause denial of service by exhausting DNS resolver CPU resources through crafted SIG(0) signed requests targeti...

CVE-2024-38534 is a denial-of-service vulnerability in Suricata where specially crafted Modbus traffic can cause unlimited resource accumulation withi...

A memory exhaustion vulnerability in OPC Foundation's OPC UA .NET Standard library allows remote attackers to cause denial of service by sending exces...

This vulnerability in gorilla/schema allows attackers to cause memory exhaustion by exploiting sparse slice functionality when decoding structs contai...

CVE-2024-38528 is a denial-of-service vulnerability in ntpd-rs where an unauthenticated remote attacker can crash the service by exploiting missing co...

A memory leak vulnerability in Palo Alto Networks PAN-OS software allows attackers to send crafted packets that eventually cause the firewall to stop ...

This vulnerability in nghttp2's HTTP/2 implementation allows memory exhaustion attacks when clients send excessive headers. Attackers can cause denial...

CVE-2024-28871 is a denial-of-service vulnerability in LibHTP's HTTP parser where malformed request traffic causes excessive CPU usage. This affects a...

This vulnerability allows attackers to cause memory exhaustion in quic-go implementations by sending excessive NEW_CONNECTION_ID frames while manipula...

Suricata versions before 6.0.17 and 7.0.4 are vulnerable to a denial-of-service attack when processing excessively long SSH banners. Attackers can cau...

Unauthenticated attackers can send large commands to Couchbase Server's memcached component, causing memory exhaustion and denial of service. This aff...

This vulnerability allows attackers to exhaust HTTP/2 connection flow control windows in Varnish Cache, causing denial of service. It affects Varnish ...

CVE-2024-26461 is a memory leak vulnerability in Kerberos 5's GSSAPI sealing implementation that can lead to denial of service through resource exhaus...

CVE-2024-23836 is a resource exhaustion vulnerability in Suricata where attackers can craft malicious network traffic to cause excessive CPU and memor...

This vulnerability affects F5 BIG-IP systems configured with SSL Client Certificate LDAP or CRLDP authentication profiles. When exploited, it causes e...

This vulnerability in F5 BIG-IP AFM IPS engine causes denial of service when processing specific traffic patterns. The IPS engine spends excessive tim...

CVE-2023-50387 (KeyTrap) is a DNSSEC protocol vulnerability that allows remote attackers to cause denial of service by exhausting CPU resources throug...

This vulnerability in BIND 9 DNS resolver allows attackers to cause uncontrolled memory growth by triggering specific query patterns that overwhelm ca...

OpenDDS versions through 3.27 contain a vulnerability where configuring a DataWriter with an excessively large resource_limits.max_samples value cause...

An unauthenticated network attacker can cause a complete and persistent system outage on Juniper Junos OS Evolved by sending a high rate of specific v...

CVE-2024-21634 is a denial-of-service vulnerability in Amazon Ion's Java library (ion-java) where specially crafted Ion data can cause a StackOverflow...

This vulnerability in Zammad allows attackers to send excessive email verification requests to known addresses, causing denial of service through emai...

HashiCorp Vault versions 1.12.0 and newer are vulnerable to denial of service through memory exhaustion when processing large HTTP requests. Attackers...

This vulnerability in Cisco Firepower Management Center allows unauthenticated attackers to cause denial of service by overwhelming a logging API, pot...