Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-674

CWE-674

Uncontrolled Recursion

Parent: CWE-834 - Excessive Iteration

The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.

430 vulnerabilities with CWE-674

CVE-2025-70955 HIGH

TON TVM <2024.10 - Memory Corruption

CVE-2025-36001 MEDIUM

IBM Db2 11.5.0-11.5.9 and 12.1.0-12.1.3 - Authenticated Denial of Service via XML Recursion

CVE-2025-55095 MEDIUM

UX Host Class Storage - Buffer Overflow

CVE-2025-50537 MEDIUM

eslint < 9.26.0 - Denial of Service via Circular Reference Serialization

CVE-2025-68950 MEDIUM

ImageMagick < 7.1.2-12 - Denial of Service via Circular MVG Reference

CVE-2025-68618 MEDIUM

ImageMagick < 7.1.2-12 - Denial of Service via Malicious SVG File

CVE-2025-67899 LOW

uriparser <= 0.9.9 - Denial of Service via Unbounded Recursion in ParseMustBeSegmentNzNc

CVE-2025-59789 HIGH

Apache bRPC < 1.15.0 - Denial of Service via Deep Recursive JSON Data in json2pb Component

CVE-2025-66031 HIGH

node-forge < 1.3.2 - Unauthenticated Denial of Service via ASN.1 Recursive Parsing

CVE-2025-9624 HIGH

OpenSearch 3.0.0-3.2.9 and < 2.19.4 - Denial of Service via Complex Query String Input

CVE-2025-36158 MEDIUM

IBM Concert <2.0.0 - Info Disclosure

CVE-2025-40090 MEDIUM

Linux Kernel 6.12.53-6.12.54, 6.17.3-6.17.4 - Denial of Service via Recursive Locking in ksmbd_session_rpc_method

CVE-2025-11896 LOW

Xpdf < 4.05 - Denial of Service via PDF Object Loop in CMap

CVE-2025-54858 HIGH

F5 BIG-IP Advanced WAF and ASM 15.1.0-15.1.10.7 - Denial of Service via Malformed JSON Schema

CVE-2025-33096 MEDIUM

IBM Engineering Requirements Management Doors Next <7.1 - DoS

CVE-2025-61766 MEDIUM

Bucket < 1.0.0 - Denial of Service via Bucket Query Recursion

CVE-2025-10728 CRITICAL

CVE-2025-43718 LOW

Poppler <25.04.0 - Memory Corruption

CVE-2025-59364 MEDIUM

express-xss-sanitizer < 2.0.1 - Denial of Service via Unbounded Recursion in JSON Request Body Sanitization

CVE-2025-39795 MEDIUM

Linux Kernel - Integer Overflow in blk_stack_limits() Chunk Sectors Check

CVE-2025-9714 MEDIUM

libxml2 <= 2.9.14 - Uncontrolled Recursion in XPath Evaluation

CVE-2025-39704 MEDIUM

Linux Kernel 6.13-6.16.3 - Stack-Based Buffer Overflow in KVM send_ipi_data

CVE-2025-57809 HIGH

XGrammar < 0.1.21 - Uncontrolled Recursion

CVE-2025-5302 HIGH

llama-index-core < 0.12.38 - Denial of Service via JSONReader Recursion

CVE-2025-38614 MEDIUM

Linux Kernel - Uncontrolled Recursion in epoll Instance Graph

Previous Page 5 of 18 Next

Details

Vulnerabilities 430

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy