Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-674

CWE-674

Uncontrolled Recursion

Parent: CWE-834 - Excessive Iteration

The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.

430 vulnerabilities with CWE-674

CVE-2026-6479 HIGH

PostgreSQL SSL/GSS init causes denial of service, via uncontrolled recursion

CVE-2026-45205 MEDIUM

Apache Commons Configuration: StackOverflowError for YAML input with cycles

CVE-2026-45740 MEDIUM

protobufjs: Denial of Service via unbounded recursive JSON descriptor expansion

CVE-2026-44289 HIGH

protobufjs: Denial of service through unbounded protobuf recursion

CVE-2026-42445 LOW

NanaZip: Uncontrolled recursion in NanaZip UFS directory traversal causes stack exhaustion

CVE-2026-42355 LOW

NanaZip: Uncontrolled recursion in NanaZip Electron ASAR parser causes stack exhaustion

CVE-2026-1681 MEDIUM

net: Stack Overflow with Ping (to own IP Address) via Shell

CVE-2026-44777 MEDIUM

jq: stack overflow in module loading on mutual `include`

CVE-2026-43896 MEDIUM

jq: Stack Overflow in Recursive Object Merge

CVE-2026-40612 MEDIUM

jq: Stack overflow via unbounded recursion in jv_contains

CVE-2026-41311 HIGH

LiquidJS is vulnerable to Denial of Service via circular block reference in layout

CVE-2026-41673 HIGH

xmldom: Denial of service via uncontrolled recursion in XML serialization

CVE-2026-43185 CRITICAL

ksmbd: fix signededness bug in smb_direct_prepare_negotiation()

CVE-2026-43080 MEDIUM

l2tp: Drop large packets with UDP encap

CVE-2026-44028 HIGH

Nix 2.24.4-2.34.6 and Lix 2.93.0-2.95.1 - Unauthenticated Remote Code Execution via NAR Parser Uncontrolled Recursion

CVE-2026-7164 HIGH

FreeBSD pf - SCTP Packet Stack Overflow Denial of Service

CVE-2026-6527 MEDIUM

Uncontrolled Recursion in Wireshark

CVE-2026-5409 MEDIUM

Uncontrolled Recursion in Wireshark

CVE-2026-5408 MEDIUM

Uncontrolled Recursion in Wireshark

CVE-2026-5406 MEDIUM

Uncontrolled Recursion in Wireshark

CVE-2026-5401 MEDIUM

Uncontrolled Recursion in Wireshark

CVE-2026-5299 MEDIUM

Uncontrolled Recursion in Wireshark

CVE-2026-41636 HIGH

Apache Thrift: Node.js skip() recursion

CVE-2026-41606 MEDIUM

Apache Thrift: c_glib dispatch stack overflow

CVE-2026-42039 HIGH

Axios: unbounded recursion in toFormData causes DoS via deeply nested request data

Previous Page 2 of 18 Next

Details

Vulnerabilities 430

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy