Filtered by CWE-400
Total 2909 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2025-21218 2025-01-15 7.5 High
Windows Kerberos Denial of Service Vulnerability
CVE-2025-21300 2025-01-15 7.5 High
Windows upnphost.dll Denial of Service Vulnerability
CVE-2025-21231 2025-01-15 7.5 High
IP Helper Denial of Service Vulnerability
CVE-2025-21230 2025-01-15 7.5 High
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
CVE-2025-21207 2025-01-15 7.5 High
Windows Connected Devices Platform Service (Cdpsvc) Denial of Service Vulnerability
CVE-2025-21330 2025-01-15 7.5 High
Windows Remote Desktop Services Denial of Service Vulnerability
CVE-2025-21389 2025-01-15 7.5 High
Windows upnphost.dll Denial of Service Vulnerability
CVE-2025-21290 2025-01-15 7.5 High
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
CVE-2025-21289 2025-01-15 7.5 High
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
CVE-2025-21270 2025-01-15 7.5 High
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
CVE-2025-21251 2025-01-15 7.5 High
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
CVE-2024-49075 1 Microsoft 10 Windows 10 1809, Windows 10 21h2, Windows 10 22h2 and 7 more 2025-01-15 7.5 High
Windows Remote Desktop Services Denial of Service Vulnerability
CVE-2024-49129 1 Microsoft 5 Windows Server 2012, Windows Server 2016, Windows Server 2019 and 2 more 2025-01-15 7.5 High
Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability
CVE-2024-49096 1 Microsoft 15 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 12 more 2025-01-15 7.5 High
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
CVE-2023-28217 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2025-01-14 7.5 High
Windows Network Address Translation (NAT) Denial of Service Vulnerability
CVE-2023-33720 1 Mp4v2 Project 1 Mp4v2 2025-01-14 6.5 Medium
mp4v2 v2.1.2 was discovered to contain a memory leak via the class MP4BytesProperty.
CVE-2019-9518 11 Apache, Apple, Canonical and 8 more 26 Traffic Server, Mac Os X, Swiftnio and 23 more 2025-01-14 7.5 High
Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a denial of service. The attacker sends a stream of frames with an empty payload and without the end-of-stream flag. These frames can be DATA, HEADERS, CONTINUATION and/or PUSH_PROMISE. The peer spends time processing each frame disproportionate to attack bandwidth. This can consume excess CPU.
CVE-2017-12076 1 Synology 1 Diskstation Manager 2025-01-14 N/A
Uncontrolled Resource Consumption vulnerability in SYNO.Core.PortForwarding.Rules in Synology DiskStation (DSM) before 6.1.1-15088 allows remote authenticated attacker to exhaust the memory resources of the machine, causing a denial of service attack.
CVE-2019-9511 12 Apache, Apple, Canonical and 9 more 29 Traffic Server, Mac Os X, Swiftnio and 26 more 2025-01-14 7.5 High
Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.
CVE-2019-9513 12 Apache, Apple, Canonical and 9 more 25 Traffic Server, Mac Os X, Swiftnio and 22 more 2025-01-14 7.5 High
Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU.