CVEs classified under CWE-410, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (15)
CVE-2021-1615 — CVSS 8.6 (high): A vulnerability in the packet processing functionality of Cisco Embedded Wireless Controller (EWC) Software for Catalyst Access Points…
CVE-2025-41653 — CVSS 7.5 (high): An unauthenticated remote attacker can exploit a denial-of-service vulnerability in the device's web server functionality by sending a…
CVE-2025-27479 — CVSS 7.5 (high): Insufficient resource pool in Windows Kerberos allows an unauthorized attacker to deny service over a network.
CVE-2025-0453 — CVSS 7.5 (high): In mlflow/mlflow version 2.17.2, the `/graphql` endpoint is vulnerable to a denial of service attack. An attacker can create large batches…
CVE-2022-40224 — CVSS 7.5 (high): A denial of service vulnerability exists in the web server functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A…
CVE-2022-2048 — CVSS 7.5 (high): In Eclipse Jetty HTTP/2 server implementation, when encountering an invalid HTTP/2 request, the error handling has a bug that can wind up…
CVE-2019-0056 — CVSS 7.5 (high): This issue only affects devices with three (3) or more MPC10's installed in a single chassis with OSPF enabled and configured on the…
CVE-2025-20103 — CVSS 6.5 (medium): Insufficient resource pool in the core management mechanism for some Intel(R) Processors may allow an authenticated user to potentially…
CVE-2024-7392 — CVSS 6.5 (medium): ChargePoint Home Flex Bluetooth Low Energy Denial-of-Service Vulnerability. This vulnerability allows network-adjacent attackers to create…
CVE-2022-46679 — CVSS 6.5 (medium): Dell PowerScale OneFS 8.2.x, 9.0.0.x - 9.4.0.x, contain an insufficient resource pool vulnerability. A remote unauthenticated attacker…
CVE-2025-12986: When a WF200/WGM160P device is configured to operate as an Access Point, it may be vulnerable to a denial of service triggered by a…
CVE-2026-34019 — CVSS 5.3 (medium): When Bidirectional Forwarding Detection (BFD) is configured in Static and Dynamic routing protocols, undisclosed traffic can cause the…
CVE-2025-27694 — CVSS 5.3 (medium): Dell Wyse Management Suite, versions prior to WMS 5.1, contains an Insufficient Resource Pool vulnerability. An unauthenticated attacker…
CVE-2023-7033 — CVSS 5.3 (medium): Insufficient Resource Pool vulnerability in Ethernet function of Mitsubishi Electric Corporation MELSEC iQ-R series CPU module, MELSEC iQ-L…
CVE-2025-2134 — CVSS 3.5 (low): IBM Jazz Reporting Service could allow an authenticated user on the network to affect the system's performance using complicated queries…