The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.
386 vulnerabilities with CWE-674
CVE-2022-24675
HIGH
Go <1.17.9, <1.18.0 - Buffer Overflow
CVSS 7.5
CVE-2022-28773
HIGH
SAP Web Dispatcher/SAP Internet Communication Manager - DoS
CVSS 7.5
CVE-2022-23974
HIGH
Apache Pinot <0.9.3 - DoS
CVSS 7.5
CVE-2022-27943
MEDIUM
GNU GCC 11.2 - Stack Consumption
CVSS 5.5
CVE-2022-24921
HIGH
Go <1.16.15, <1.17.8 - Stack Exhaustion
CVSS 7.5
CVE-2022-23606
MEDIUM
Envoy - DoS
CVSS 4.4
CVE-2022-25313
MEDIUM
Expat <2.4.5 - Memory Corruption
CVSS 6.5
CVE-2022-23591
HIGH
Google Tensorflow < 2.5.2 - Denial of Service
CVSS 7.5
CVE-2022-23889
MEDIUM
YzmCMS v6.3 - Info Disclosure
CVSS 5.3
CVE-2022-21708
MEDIUM
Graphql-go < 1.3.0 - Denial of Service
CVSS 6.5
CVE-2021-41737
HIGH
Faust 2.23.1 - Memory Corruption
CVSS 7.5
CVE-2021-47465
MEDIUM
Linux kernel - Use After Free
CVSS 5.5
CVE-2021-36395
HIGH
Moodle - DoS
CVSS 7.5
CVE-2021-3997
MEDIUM
Systemd < 250.2 - Denial of Service
CVSS 5.5
CVE-2021-41752
CRITICAL
Jerryscript <e1ce7dd - Buffer Overflow
CVSS 9.8
CVE-2021-46509
HIGH
Cesanta MJS <2.20.0 - Buffer Overflow
CVSS 7.8
CVE-2021-46507
MEDIUM
Jsish v3.5.0 - Buffer Overflow
CVSS 5.5
CVE-2021-46505
MEDIUM
Jsish v3.5.0 - Buffer Overflow
CVSS 5.5
CVE-2021-46195
MEDIUM
GCC v12.0 - DoS
CVSS 5.5
CVE-2021-45832
MEDIUM
HDF5 <1.13.1-1 - Buffer Overflow
CVSS 5.5
CVE-2021-45105
MEDIUM
Apache Log4j < 2.3.1 - Improper Input Validation
CVSS 5.9
CVE-2021-42717
HIGH
ModSecurity <3.0.5, <2.9.4 - DoS
CVSS 7.5
CVE-2021-39929
HIGH
Wireshark < 3.2.17 - Denial of Service
CVSS 7.5
CVE-2021-43172
HIGH
NLnet Labs Routinator <0.10.2 - DoS
CVSS 7.5
CVE-2021-43519
MEDIUM
Lua Interpreter <5.4.4 - DoS
CVSS 5.5
Details
Vulnerabilities
386