The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.
386 vulnerabilities with CWE-674
CVE-2025-43708
LOW
Visicut - Insecure Deserialization
CVSS 3.3
CVE-2025-32387
MEDIUM
Helm <3.17.3 - Buffer Overflow
CVSS 6.5
CVE-2025-1492
HIGH
Wireshark < 4.2.10 - Denial of Service
CVSS 7.8
CVE-2024-58264
LOW
Cosmwasm Serde-json-wasm < 1.0.1 - Out-of-Bounds Write
CVSS 3.2
CVE-2024-12910
MEDIUM
Llamaindex < 0.12.9 - Denial of Service
CVSS 5.9
CVE-2024-58103
MEDIUM
Square Wire <5.2.0 - Info Disclosure
CVSS 5.8
CVE-2024-8176
HIGH
libexpat - Buffer Overflow
CVSS 7.5
CVE-2024-58102
MEDIUM
Datalust Seq <2024.3.13545 - Stack Consumption
CVSS 5.7
CVE-2024-57257
LOW
Das U-Boot <2025.01-rc1 - Buffer Overflow
CVSS 2.0
CVE-2024-57699
HIGH
Net.minidev Json-smart < 2.5.2 - Denial of Service
CVSS 7.5
CVE-2024-54731
MEDIUM
cpdf <2.8 - Buffer Overflow
CVSS 4.0
CVE-2024-49363
HIGH
Misskey <2024.10.1 - DoS
CVSS 7.4
CVE-2024-53090
MEDIUM
Linux kernel - Info Disclosure
CVSS 5.5
CVE-2024-47831
MEDIUM
Next.js <14.2.7 - DoS
CVSS 5.9
CVE-2024-31228
MEDIUM
Redis <6.2.15, <7.2.5, <7.4 - DoS
CVSS 5.5
CVE-2024-7254
HIGH
Google Protobuf < 3.25.5 - Out-of-Bounds Write
CVSS 7.5
CVE-2024-34158
HIGH
Go <unknown> - Code Injection
CVSS 7.5
CVE-2024-44996
MEDIUM
Linux kernel - Buffer Overflow
CVSS 5.5
CVE-2024-43414
HIGH
Apollo Federation <2.8.5 - DoS
CVSS 7.5
CVE-2024-42369
MEDIUM
matrix-js-sdk <34.3.1 - DoS
CVSS 4.1
CVE-2024-44073
HIGH
Rust-bitcoin Miniscript < 12.2.0 - Out-of-Bounds Write
CVSS 7.5
CVE-2024-7866
MEDIUM
Xpdf <4.05 - Buffer Overflow
CVSS 5.5
CVE-2024-37973
HIGH
Secure Boot - Privilege Escalation
CVSS 8.8
CVE-2024-5971
HIGH
Io.undertow Undertow-core < 2.3.15.Final - Denial of Service
CVSS 7.5
CVE-2024-2965
MEDIUM
langchain-ai/langchain - DoS
CVSS 4.7
Details
Vulnerabilities
386