The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.
348 vulnerabilities with CWE-674
CVE-2026-29076
MEDIUM
cpp-httplib <0.37.0 - DoS
CVSS 5.9
CVE-2026-25048
xgrammar <0.1.32 - Memory Corruption
CVE-2026-3520
Multer <2.1.1 - DoS
CVE-2026-3388
LOW
Squirrel up to 3.2 - Memory Corruption
CVSS 3.3
CVE-2026-3385
LOW
wren-lang wren <=0.4.0 - Memory Corruption
CVSS 3.3
CVE-2026-3384
LOW
ChaiScript <6.1.0 - DoS
CVSS 3.3
CVE-2026-25971
MEDIUM
ImageMagick <7.1.2-15/6.9.13-40 - Memory Corruption
CVSS 6.2
CVE-2026-2887
LOW
aardappel lobster <2025.4 - Memory Corruption
CVSS 3.3
CVE-2026-27014
MEDIUM
NanaZip 5.0.1252.0-6.0.1630.0 - DoS
CVSS 5.5
CVE-2025-65519
MEDIUM
mayswind ezbookkeeping <=1.2.0 - DoS
CVSS 6.5
CVE-2026-2641
LOW
universal-ctags <=6.2.1 - DoS
CVSS 3.3
CVE-2025-70957
HIGH
TON Lite Server <2024.09 - DoS
CVSS 7.5
CVE-2025-70955
HIGH
TON TVM <2024.10 - Memory Corruption
CVSS 7.5
CVE-2026-1849
MEDIUM
MongoDB Server - Memory Corruption
CVSS 6.5
CVE-2025-36001
MEDIUM
IBM Db2 < 11.5.9 - Denial of Service
CVSS 6.5
CVE-2026-22260
HIGH
Oisf Suricata < 8.0.3 - Out-of-Bounds Write
CVSS 7.5
CVE-2025-55095
MEDIUM
UX Host Class Storage - Buffer Overflow
CVSS 4.2
CVE-2025-50537
MEDIUM
eslint <9.26.0 - Buffer Overflow
CVSS 5.5
CVE-2026-24401
MEDIUM
Avahi <0.9rc2 - Memory Corruption
CVSS 6.5
CVE-2026-0994
Pypi Protobuf < 6.33.5 - Denial of Service
CVE-2026-0990
MEDIUM
libxml2 - DoS
CVSS 5.9
CVE-2026-0989
LOW
libxml2 - DoS
CVSS 3.7
CVE-2026-21500
MEDIUM
iccDEV <2.3.1.2 - Buffer Overflow
CVSS 5.5
CVE-2025-68950
MEDIUM
ImageMagick <7.1.2-12 - DoS
CVSS 4.0
CVE-2025-68618
MEDIUM
ImageMagick <7.1.2-12 - DoS
CVSS 5.3
Details
Vulnerabilities
348