VYPR

CWE-771

Missing Reference to Active Allocated Resource

BaseIncompleteLikelihood: Medium

Description

The product does not properly maintain a reference to a resource that has been allocated, which prevents the resource from being reclaimed.

This does not necessarily apply in languages or frameworks that automatically perform garbage collection, since the removal of all references may act as a signal that the resource is ready to be reclaimed.

Hierarchy (View 1000)

Parents

Children

CVEs mapped to this weakness (2)

  • CVE-2026-3039HigMay 20, 2026
    risk 0.49cvss 7.5epss 0.01

    BIND servers that are configured to use TKEY-based authentication via GSS-API tokens are vulnerable to excessive memory consumption when receiving and processing maliciously-constructed packets. Typically these servers will be found in Active Directory integrated DNS…

  • CVE-2025-21090MedAug 12, 2025
    risk 0.42cvss 6.5epss 0.00

    Missing reference to active allocated resource for some Intel(R) Xeon(R) processors may allow an authenticated user to potentially enable denial of service via local access.