Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-674

CWE-674

Uncontrolled Recursion

Parent: CWE-834 - Excessive Iteration

The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.

430 vulnerabilities with CWE-674

CVE-2026-4870 HIGH

IBM Qiskit SDK 0.43.0-2.5.0 - Parser Recursion Denial of Service

CVE-2026-48734 MEDIUM

ImageMagick: Stack Overflow in MVG decoder

CVE-2026-46557 MEDIUM

ImageMagick: Stack overflow in fx operation

CVE-2026-46689 HIGH

Kanidm: Unauthenticated process abort via SCIM filter stack exhaustion

CVE-2026-45664 MEDIUM

ImageMagick: Policy Bypass in MNG coder could

CVE-2026-9740 HIGH

Unbounded recursion in BSONColumn interleaved-reference causes pre-auth stack overflow

CVE-2026-46373 HIGH

SQLFluff: Recursive Stack Overflow in Parser

CVE-2026-49847 HIGH

FreeSWITCH: Stack overflow in bundled cJSON parser via deeply nested JSON

CVE-2026-49941 HIGH

Net::CIDR::Set versions through 0.20 for Perl did not validate IP addresses

CVE-2026-47706 MEDIUM

Strawberry GraphQL 0.71.0-0.315.6 Fragments - Denial of Service

CVE-2026-47320 MEDIUM

Samsung Open Source Rlottie - Uncontrolled Recursion

CVE-2026-47306 MEDIUM

Samsung Open Source Rlottie - Uncontrolled Recursion

CVE-2026-8936 HIGH

Unbounded recursion in grpcfuse kernel module allows container to crash Docker Desktop VM

CVE-2026-40989 MEDIUM

Spring Cloud Function DoS via Infinite Recursion in Routing Layer

CVE-2026-44740 MEDIUM

go-billy < 5.9.0 - Symlink Resolution Resource Exhaustion

CVE-2026-46149 HIGH

scsi: target: configfs: Bound snprintf() return in tg_pt_gp_members_show()

CVE-2026-42328 MEDIUM

go-ipld-prime: DAG-CBOR and DAG-JSON decoders unbounded recursion depth

CVE-2026-6936 MEDIUM

IBM i is Affected by a Denial of Service Vulnerability []

CVE-2026-44844 MEDIUM

eml_parser: Recursion DoS via nested message/rfc822 attachments

CVE-2026-7453 MEDIUM

WRL File Parsing Memory Exhaustion in Autodesk 3ds Max

CVE-2026-9358 MEDIUM

postcss AST Serialization container.js toString recursion

CVE-2026-47317 MEDIUM

Samsung Open Source Escargot 590345cc6258317c5da850d846ce6baaf2afc2d3 - Uncontrolled Recursion

CVE-2026-47309 MEDIUM

Samsung Escargot 590345cc6258317c5da850d846ce6baaf2afc2d3 - Uncontrolled Recursion via Oversized Payloads

CVE-2026-6811 MEDIUM

MongoDB PHP Driver 1.21.5-2.1.8 - Denial of Service via Deeply Nested BSON Document Processing

CVE-2026-41935 HIGH

Vvveb < 1.0.8.3 Uncontrolled Recursion Denial of Service

Page 1 of 18 Next

Details

Vulnerabilities 430

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy