Description
The product does not release a file descriptor or handle after its effective lifetime has ended, i.e., after the file descriptor/handle is no longer needed.
Extended Description
When a file descriptor or handle is not released after use (typically by explicitly closing it), attackers can cause a denial of service by consuming all available file descriptors/handles, or otherwise preventing other system processes from obtaining their own file descriptors/handles.
CVE vulnerabilities with CWE-775 (7)
7.8
CVSS
HIGH
CVE-2016-8819
pub. 2016-12-16
7.5
CVSS
HIGH
CVE-2024-24444
pub. 2025-01-21
7.5
CVSS
HIGH
CVE-2017-8452
pub. 2017-06-16
6.9
CVSS
MEDIUM
CVE-2019-25557
pub. 2026-03-21
5.3
CVSS
MEDIUM
CVE-2025-53476
pub. 2025-10-07
2.1
CVSS
LOW
CVE-2026-45287
pub. 2026-06-04
1.3
CVSS
LOW
CVE-2025-13751
pub. 2025-12-03