Falhas do tipo CWE-400
2.373 resultadosCVE-2024-1635HIGHUndertow: out-of-memory error after several closed connections with wildfly-http-client protocolEPSS 4.6%CVE-2025-66959HIGHAn issue in ollama v.0.12.10 allows a remote attacker to cause a denial of service via the GGUF decoderEPSS 4.5%CVE-2019-11287MEDIUMRabbitMQ Web Management Plugin DoS via heap overflowEPSS 4.5%CVE-2021-22880—The PostgreSQL adapter in Active Record before 6.1.2.1, 6.0.3.5, 5.2.4.5 suffers from a regular expression denial of service (REDoS) vulneraEPSS 4.4%CVE-2023-38149HIGHWindows TCP/IP Denial of Service VulnerabilityEPSS 4.3%CVE-2019-6535HIGHMitsubishi Electric MELSEC-Q Series PLCs Resource ExhaustionEPSS 4.3%CVE-2017-9627—An Uncontrolled Resource Consumption issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prEPSS 4.1%CVE-2018-0410—A vulnerability in the web proxy functionality of Cisco AsyncOS Software for Cisco Web Security Appliances could allow an unauthenticated, rEPSS 4.1%CVE-2018-0418—A vulnerability in the Local Packet Transport Services (LPTS) feature set of Cisco ASR 9000 Series Aggregation Services Router Software coulEPSS 4.0%CVE-2020-3566HIGHCisco IOS XR Software DVMRP Memory Exhaustion VulnerabilityEPSS 4.0%KEVCVE-2022-31129HIGHInefficient Regular Expression Complexity in momentEPSS 3.9%CVE-2021-21240HIGHRegular Expression Denial of Service in httplib2EPSS 3.9%CVE-2017-7521—OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks aEPSS 3.9%CVE-2025-25205HIGHRemote Authentication-Bypass can lead to server crash or limited information disclosure due to faulty pattern matchingEPSS 3.8%CVE-2023-23396MEDIUMMicrosoft Excel Denial of Service VulnerabilityEPSS 3.8%CVE-2020-3304HIGHCisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Denial of Service VulnerabilityEPSS 3.8%CVE-2018-14827—Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. A remote, unauthenticated threat actor may intentionally send specially craftEPSS 3.8%CVE-2023-36478HIGHHTTP/2 HPACK integer overflow and buffer allocationEPSS 3.8%CVE-2019-10953HIGHABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple versions. Researchers have found some conEPSS 3.7%CVE-2019-10977—In Mitsubishi Electric MELSEC-Q series Ethernet module QJ71E71-100 serial number 20121 and prior, an attacker could send crafted TCP packetsEPSS 3.5%