Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-789 (未经控制的内存分配) — Vulnerability Class 99

99 vulnerabilities classified as CWE-789 (未经控制的内存分配). AI Chinese analysis included.

CWE-789 represents a critical memory management weakness where software allocates resources based on unvalidated, excessively large size values provided by external inputs. This flaw typically arises when developers fail to enforce upper bounds on integer parameters before invoking allocation functions, allowing attackers to supply maliciously crafted values that trigger massive memory consumption. Exploitation often leads to denial-of-service conditions through system exhaustion or resource starvation, potentially destabilizing the entire host environment. To mitigate this risk, developers must implement rigorous input validation strategies that strictly check size parameters against predefined, safe thresholds before any allocation occurs. Additionally, utilizing language-specific bounds checking mechanisms and static analysis tools can help identify potential overflows early in the development lifecycle, ensuring that memory requests remain within acceptable operational limits and preventing arbitrary resource depletion.

MITRE CWE Description
The product allocates memory based on an untrusted, large size value, but it does not ensure that the size is within expected limits, allowing arbitrary amounts of memory to be allocated.
Common Consequences (1)
AvailabilityDoS: Resource Consumption (Memory)
Not controlling memory allocation can result in a request for too much system memory, possibly leading to a crash of the application due to out-of-memory conditions, or the consumption of a large amount of memory on the system.
Mitigations (2)
Implementation, Architecture and DesignPerform adequate input validation against any value that influences the amount of memory that is allocated. Define an appropriate strategy for handling requests that exceed the limit, and consider supporting a configuration option so that the administrator can extend the amount of memory to be used if necessary.
OperationRun your program using system-provided resource limits for memory. This might still cause the program to crash or exit, but the impact to the rest of the system will be minimized.
Examples (2)
Consider the following code, which accepts an untrusted size value and allocates a buffer to contain a string of the given size.
unsigned int size = GetUntrustedInt(); /* ignore integer overflow (CWE-190) for this example */ unsigned int totBytes = size * sizeof(char); char *string = (char *)malloc(totBytes); InitializeString(string);
Bad · C
Consider the following code, which accepts an untrusted size value and uses the size as an initial capacity for a HashMap.
unsigned int size = GetUntrustedInt(); HashMap list = new HashMap(size);
Bad · Java
CVE IDTitleCVSSSeverityPublished
CVE-2024-41132 SixLabors ImageSharp Allows Excessive Memory Allocation in Gif Decoder — ImageSharp 5.3 Medium2024-07-22
CVE-2024-35116 IBM MQ denial of service — MQ 5.9 Medium2024-06-28
CVE-2024-37168 @grpc/grpc-js can allocate memory for incoming messages well above configured limits — grpc-node 5.3 Medium2024-06-10
CVE-2024-32035 Memory Allocation with Excessive Size Value in SixLabors.ImageSharp — ImageSharp 5.3 Medium2024-04-15
CVE-2024-2494 Libvirt: negative g_new0 length can lead to unbounded memory allocation 6.2 Medium2024-03-21
CVE-2023-3171 Eap-7: heap exhaustion via deserialization — EAP 7.4.13 7.5 High2023-12-27
CVE-2023-39203 Zoom Client 资源管理错误漏洞 — Zoom Rooms Client for Windows and Zoom VDI Client 4.3 Medium2023-11-14
CVE-2023-5371 Memory Allocation with Excessive Size Value in Wireshark — Wireshark 5.3 Medium2023-10-04
CVE-2023-0809 Eclipse Mosquitto 安全漏洞 — Mosquitto 5.8 Medium2023-10-02
CVE-2023-20202 Cisco IOS XE Software 安全漏洞 — Cisco IOS XE Software 6.1 Medium2023-09-27
CVE-2023-3223 Undertow: outofmemoryerror due to @multipartconfig handling — Red Hat Fuse 7.12.1 7.5 High2023-09-27
CVE-2023-43632 Freely Allocate Buffer on The Stack With Data From Socket — EVE OS 9.0 Critical2023-09-21
CVE-2023-20108 Cisco Unified Communications Manager 安全漏洞 — Cisco Unified Communications Manager IM and Presence Service 7.5 High2023-06-28
CVE-2023-30837 Vyper storage allocator overflow — vyper 7.5 High2023-05-08
CVE-2023-20089 Cisco Nexus 9000 Series Fabric Switches in ACI Mode Link Layer Discovery Protocol Memory Leak Denial of Service Vulnerability — Cisco NX-OS System Software in ACI Mode 7.4 High2023-02-23
CVE-2022-4741 docconv XMLToText memory allocation — docconv 4.3 Medium2022-12-25
CVE-2022-22226 Junos OS: EX4300-MP, EX4600, QFX5000 Series: In VxLAN scenarios specific packets processed cause a memory leak leading to a PFE crash — Junos OS 6.5 Medium2022-10-18
CVE-2022-34917 Unauthenticated clients may cause OutOfMemoryError on Apache Kafka Brokers — Apache Kafka 7.5 -2022-09-20
CVE-2022-36078 Slice Memory Allocation with Excessive Size Value in binary — binary 8.8 High2022-09-02
CVE-2022-31804 CODESYS Gateway server prone to denial of service attack due to excessive memory allocation — CODESYS Gateway Server V2 7.5 High2022-06-24
CVE-2022-30522 mod_sed denial of service — Apache HTTP Server 7.5 -2022-06-08
CVE-2022-20717 Cisco SD-WAN vEdge Routers Denial of Service Vulnerability — Cisco SD-WAN vEdge router 5.5 -2022-04-15
CVE-2022-22188 Junos OS: QFX5100/QFX5110/QFX5120/QFX5200/QFX5210/EX4600/EX4650 Series: When storm control profiling is enabled and a device is under an active storm, a Heap-based Buffer Overflow in the PFE will cause a device to hang. — Junos OS 7.5 High2022-04-14
CVE-2017-20016 WEKA INTEREST Security Scanner Portscan memory allocation — INTEREST Security Scanner 4.3 Medium2022-03-28
CVE-2021-34869 Corel Parallels Desktop 访问控制错误漏洞 — Desktop 8.8 -2022-01-25
CVE-2021-34868 Corel Parallels Desktop 访问控制错误漏洞 — Desktop 8.8 -2022-01-25
CVE-2021-34867 Corel Parallels Desktop 访问控制错误漏洞 — Desktop 8.2 -2022-01-25
CVE-2021-34854 Corel Parallels Desktop 安全漏洞 — Desktop 8.8 -2021-10-25
CVE-2021-1568 Cisco AnyConnect Secure Mobility Client for Windows Denial of Service Vulnerability — Cisco AnyConnect Secure Mobility Client 5.5 Medium2021-06-16
CVE-2021-31811 A carefully crafted PDF file can trigger an OutOfMemory-Exception while loading a tiny file — Apache PDFBox 5.5 -2021-06-12

Vulnerabilities classified as CWE-789 (未经控制的内存分配) represent 99 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.