目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

CWE-404 不恰当的资源关闭或释放 类漏洞列表 321

CWE-404 不恰当的资源关闭或释放 类弱点 321 条 CVE 漏洞汇总,含 AI 中文分析。

CWE-404属于资源管理缺陷,指程序在资源重用前未正确释放或释放不当。攻击者常利用此漏洞耗尽系统资源,导致拒绝服务或引发内存泄漏。开发者需确保在所有执行路径(包括异常和超时)中均正确释放资源,严格管理资源生命周期,防止资源泄露以维持系统稳定性。

MITRE CWE 官方描述
CWE:CWE-404 不正确的资源关闭或释放 (Improper Resource Shutdown or Release) 英文:产品在资源被重新使用前未释放或不正确地释放了资源。 当资源被创建或分配时,开发人员有责任正确释放该资源,并考虑到所有潜在的过期或失效路径,例如设定的时间段或撤销。
常见影响 (2)
Availability, OtherDoS: Resource Consumption (Other), Varies by Context
Most unreleased resource issues result in general software reliability problems, but if an attacker can intentionally trigger a resource leak, the attacker might be able to launch a denial of service attack by depleting the resource pool.
ConfidentialityRead Application Data
When a resource containing sensitive information is not correctly shutdown, it may expose the sensitive data in a subsequent allocation.
缓解措施 (4)
RequirementsUse a language that does not allow this weakness to occur or provides constructs that make this weakness easier to avoid. For example, languages such as Java, Ruby, and Lisp perform automatic garbage collection that releases memory for objects that have been deallocated.
ImplementationIt is good practice to be responsible for freeing all resources you allocate and to be consistent with how and where you free memory in a function. If you allocate memory that you intend to free upon completion of the function, you must be sure to free the memory at all exit points for that function including error conditions.
ImplementationMemory should be allocated/freed using matching functions such as malloc/free, new/delete, and new[]/delete[].
ImplementationWhen releasing a complex object or structure, ensure that you properly dispose of all of its member components, not just the object itself.
代码示例 (2)
The following method never closes the new file handle. Given enough time, the Finalize() method for BufferReader should eventually call Close(), but there is no guarantee as to how long this action will take. In fact, there is no guarantee that Finalize() will ever be invoked. In a busy environment, the Operating System could use up all of the available file handles before the Close() function is …
private void processFile(string fName) { BufferReader fil = new BufferReader(new FileReader(fName)); String line; while ((line = fil.ReadLine()) != null) { processLine(line); } }
Bad · Java
private void processFile(string fName) { BufferReader fil = new BufferReader(new FileReader(fName)); String line; while ((line = fil.ReadLine()) != null) { processLine(line); } fil.Close(); }
Good · Java
This code attempts to open a connection to a database and catches any exceptions that may occur.
try { Connection con = DriverManager.getConnection(some_connection_string); } catch ( Exception e ) { log( e ); }
Bad · Java
CVE ID标题CVSS风险等级Published
CVE-2026-8123 Open5GS NSSF denial of service vulnerability — Open5GS 4.3 Medium2026-05-08
CVE-2026-8122 Open5GS NSSF服务名称拒绝服务漏洞 — Open5GS 4.3 Medium2026-05-08
CVE-2026-8121 Open5GS NSSF conv.c拒绝服务漏洞 — Open5GS 4.3 Medium2026-05-08
CVE-2026-8120 Open5GS NSSF 拒绝服务漏洞 — Open5GS 4.3 Medium2026-05-08
CVE-2026-8119 Open5GS NSSF nghttp2拒绝服务漏洞 — Open5GS 3.3 Low2026-05-08
CVE-2026-7781 Open5GS nudm-handler.c amf登记更新拒绝服务漏洞 — Open5GS 4.3 Medium2026-05-04
CVE-2026-7780 Open5GS smf-registrations拒绝服务漏洞 — Open5GS 4.3 Medium2026-05-04
CVE-2026-7779 Open5GS udm_nudr_dr_handle_subscription_authentication 拒绝服务漏洞 — Open5GS 4.3 Medium2026-05-04
CVE-2026-7740 tsMuxer vvc.cpp 设置帧率拒绝服务漏洞 — tsMuxer 3.3 Low2026-05-04
CVE-2026-7739 tsMuxer hevc.cpp setFPS拒绝服务漏洞 — tsMuxer 3.3 Low2026-05-04
CVE-2026-7734 GoBGP SRv6 服务解析拒绝服务漏洞 — GoBGP 5.3 Medium2026-05-04
CVE-2026-7708 Open5GS UDR subscription.c denial of service漏洞 — Open5GS 4.3 Medium2026-05-03
CVE-2026-7707 Open5GS UDR 订阅上下文拒绝服务漏洞 — Open5GS 4.3 Medium2026-05-03
CVE-2026-7706 Open5GS AMF gmm-handler.c 拒绝服务漏洞 — Open5GS 4.3 Medium2026-05-03
CVE-2026-7601 Open5GS AMF 拒绝服务漏洞 — Open5GS 4.3 Medium2026-05-02
CVE-2026-7587 Open5GS AMF拒绝服务漏洞 — Open5GS 4.3 Medium2026-05-01
CVE-2026-7586 Open5GS AMF nudm-handler.c 拒绝服务漏洞 — Open5GS 4.3 Medium2026-05-01
CVE-2026-7585 Open5GS AMF 拒绝服务漏洞 — Open5GS 4.3 Medium2026-05-01
CVE-2026-7583 Open5GS BSF上下文内存释放漏洞导致拒绝服务 — Open5GS 4.3 Medium2026-05-01
CVE-2026-7536 Open5GS BSF pcfBindings bsf_sess_add_by_ip_address 拒绝服务漏洞 — Open5GS 5.3 Medium2026-05-01
CVE-2026-7535 Open5GS 传输更新拒绝服务漏洞 — Open5GS 4.3 Medium2026-05-01
CVE-2026-7518 Open5GS AMF SBI接口拒绝服务漏洞 — Open5GS 4.3 Medium2026-05-01
CVE-2025-43935 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 4.4 Medium2026-04-16
CVE-2026-35667 OpenClaw 安全漏洞 — OpenClaw 6.1 Medium2026-04-10
CVE-2026-5661 free5GC 安全漏洞 — Free5GC 5.3 Medium2026-04-06
CVE-2026-5313 Nothing OS 安全漏洞 — stb 4.3 Medium2026-04-01
CVE-2026-4988 Open5GS 安全漏洞 — Open5GS 3.7 Low2026-03-27
CVE-2026-4531 free5GC 安全漏洞 — Free5GC 5.3 Medium2026-03-22
CVE-2026-4240 Open5GS 安全漏洞 — Open5GS 5.3 Medium2026-03-16
CVE-2025-13901 Schneider Electric多款产品 安全漏洞 — Modicon M241/M251 5.3AIMediumAI2026-03-10

CWE-404(不恰当的资源关闭或释放) 是常见的弱点类别,本平台收录该类弱点关联的 321 条 CVE 漏洞。