Lucene search
K

38 matches found

Redos
Redos
added 2026/06/05 12:0 a.m.9 views

ROS-20260605-73-0045

The vulnerability in Tomcat11 is related to unlimited resource allocation. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.5CVSS7.2AI score0.0078EPSS
Exploits0
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

Mint 安全漏洞

Mint is a functional underlying HTTP client library developed by Elixir Mint. Versions of Mint from 0.1.0 to 1.9.0 contained security vulnerabilities. These vulnerabilities stemmed from unlimited resource allocation, which could allow attackers to exhaust the memory of the Mint client on an HTTP/...

8.2CVSS5.4AI score0.00384EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/20 12:0 a.m.9 views

Progress Software MOVEit 安全漏洞

Progress Software MOVEit is a secure hosted file transfer software developed by Progress Software Corporation in the United States. Versions of Progress Software MOVEit prior to 2025.0.11, as well as versions from 2025.1.0 to 2025.1.7, contained security vulnerabilities. These vulnerabilities wer...

7.5CVSS5.8AI score0.00364EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/07 3:38 p.m.9 views

EUVD-2025-209720

Improperly controlled modification of Dynamically-Determined object attributes, Allocation of resources without limits or throttling vulnerability in DivvyDrive Information Technologies Inc. DivvyDrive allows Excessive Allocation, Flooding. This issue affects DivvyDrive: from 4.8.2.19 before...

8.3CVSS5.8AI score0.00221EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/07 1:13 p.m.6 views

CVE-2025-14341 Input Data Manipulation in DivvyDrive Information Technologies' DivvyDrive

Improperly controlled modification of Dynamically-Determined object attributes, Allocation of resources without limits or throttling vulnerability in DivvyDrive Information Technologies Inc. DivvyDrive allows Excessive Allocation, Flooding. This issue affects DivvyDrive: from 4.8.2.19 before...

8.3CVSS5.8AI score0.00221EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.9 views

DivvyDrive 安全漏洞

DivvyDrive is a file storage and sharing management platform developed by DivvyDrive Inc. in Turkey. Versions of DivvyDrive prior to 4.8.3.2 contained security vulnerabilities. These vulnerabilities stemmed from improper control over modifications to object properties and unlimited resource...

8.3CVSS5.8AI score0.00221EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/04/23 8:34 a.m.7 views

asp.net: ASP.NET Core: Denial of Service via uncontrolled resource allocation

A flaw was found in ASP.NET Core. This vulnerability allows an unauthorized attacker to perform a Denial of Service DoS attack over a network by allocating resources without limits or throttling. This can lead to the unavailability of the service for legitimate users...

7.5CVSS5.7AI score0.02818EPSS
Exploits0References5
Snyk
Snyk
added 2026/04/21 12:0 a.m.5 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the Optimizer component. An attacker can cause the server to hang or crash repeatedly by sending crafted requests over the network while authenticated with high privileges...

6.9CVSS7.7AI score0.00242EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.32 views

Bouncy Castle Java 安全漏洞

Bouncy Castle Java is an open-source encryption algorithm developed by Legion of the Bouncy Castle Inc. Versions of Bouncy Castle Java prior to 1.84 contained security vulnerabilities. These vulnerabilities stemmed from unlimited resource allocation, which could lead to exhaustion of pre-authoriz...

8.7CVSS5.8AI score0.00758EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/07 12:0 a.m.7 views

MediaWiki ReportIncident Extension 安全漏洞

The MediaWiki ReportIncident Extension is an open-source extension for reporting wiki incidents in MediaWiki. Versions 1.43.7, 1.44.4, and 1.45.2 of the MediaWiki ReportIncident Extension contain security vulnerabilities. These vulnerabilities stem from unlimited resource allocation, which may le...

5.3CVSS5.8AI score0.00256EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.2 views

PT-2026-24332

Name of the Vulnerable Software and Affected Versions .NET 8.0 versions 8.0.0 through 8.0.24 .NET 9.0 versions 9.0.0 through 9.0.13 .NET 10.0 versions 10.0.0 through 10.0.3 Description An uncontrolled resource allocation issue exists in ASP.NET Core, potentially allowing an unauthorized attacker ...

7.8CVSS6.8AI score0.02818EPSS
Exploits0References67
RedhatCVE
RedhatCVE
added 2026/02/12 1:43 p.m.6 views

CVE-2025-58471

An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains an administrator account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of...

5.1CVSS5.6AI score0.00469EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/11 12:17 p.m.3 views

CVE-2025-57711

An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains an administrator account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of...

6.9CVSS5.6AI score0.00469EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.8 views

QNAP Systems File Station 5 安全漏洞

QNAP Systems File Station 5 is a file management system developed by QNAP Systems, a company based in Taiwan, China. Versions of QNAP Systems File Station 5 prior to 5.5.6.5068 contained security vulnerabilities. These vulnerabilities stemmed from unlimited resource allocation without any...

6.9CVSS5.8AI score0.00408EPSS
Exploits0References2
OSV
OSV
added 2026/01/02 3:16 p.m.4 views

CVE-2025-47208

An allocation of resources without limits or throttling vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same...

6.5CVSS5.8AI score0.00286EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/19 12:0 a.m.5 views

Shelly Pro 4PM 安全漏洞

Shelly Pro 4PM is an energy monitoring device from Shelly USA. A security vulnerability exists in Shelly Pro 4PM versions prior to 1.6, which stems from an unlimited resource allocation that could lead to over-allocation...

8.3CVSS6.7AI score0.00393EPSS
Exploits0References2
CNVD
CNVD
added 2025/11/12 12:0 a.m.2 views

QNAP File Station 5 Unlimited or Unthrottled Resource Allocation Vulnerability (CNVD-2025-30284)

QNAP File Station 5 is a core file management application developed by Qualcomm Technologies QNAP for its networked storage NAS devices. QNAP File Station 5 suffers from an Unlimited Resource Allocation or Throttling vulnerability, which can be exploited by an attacker to prevent other systems,...

5.1CVSS6.9AI score0.00474EPSS
Exploits0References1
CNVD
CNVD
added 2025/11/12 12:0 a.m.4 views

QNAP File Station 5 Unlimited or Unthrottled Resource Allocation Vulnerability

QNAP File Station 5 is a core file management application developed by Qualcomm Technologies QNAP for its networked storage NAS devices. QNAP File Station 5 suffers from an Unlimited Resource Allocation or Throttling vulnerability that can be exploited by an attacker to cause resource access to b...

7.1CVSS6.9AI score0.00452EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.4 views

PT-2025-43134

Name of the Vulnerable Software and Affected Versions GitLab CE/EE versions 17.10 through 18.3.4 GitLab CE/EE versions 18.4 through 18.4.2 GitLab CE/EE versions 18.5 through 18.5.0 Description An issue in GitLab CE/EE could allow an unauthenticated attacker to cause a denial of service condition ...

7.8CVSS6.7AI score0.00588EPSS
Exploits0References16
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-0855

Malicious code in bioql PyPI...

7.5CVSS5.9AI score0.01175EPSS
Exploits0References7
Rows per page
Query Builder