The product performs an iteration or loop without sufficiently limiting the number of times that the loop is executed.
105 vulnerabilities with CWE-834
CVE-2026-41313
MEDIUM
pypdf: Possible long runtimes for wrong size values in incremental mode
CVSS 6.5
CVE-2026-41168
MEDIUM
pypdf has possible long runtimes for wrong size values in cross-reference and object streams
CVSS 5.3
CVE-2026-40347
MEDIUM
Python-Multipart affected by Denial of Service via large multipart preamble or epilogue data
CVSS 5.3
CVE-2026-34043
MEDIUM
Serialize JavaScript has CPU Exhaustion Denial of Service via crafted array-like objects
CVSS 5.9
CVE-2026-27025
MEDIUM
pypdf <6.7.1 - DoS
CVSS 5.5
CVE-2025-67726
HIGH
Tornado < 6.5.3 - Denial of Service
CVSS 7.5
CVE-2025-55181
MEDIUM
Proxygen - Memory Corruption
CVSS 5.3
CVE-2025-62707
HIGH
pypdf <6.1.3 - Buffer Overflow
CVSS 7.5
CVE-2025-56571
HIGH
Ebradyjobory Finance.js - Denial of Service
CVSS 7.5
CVE-2025-6714
HIGH
Mongodb < 6.0.23 - Denial of Service
CVSS 7.5
CVE-2024-4227
HIGH
Genivia gSOAP - DoS
CVSS 7.5
CVE-2024-8049
MEDIUM
Telerik Document Processing <2024.4.1106 - DoS
CVSS 6.5
CVE-2024-42237
MEDIUM
Linux Kernel - Buffer Overflow
CVSS 5.5
CVE-2024-42071
MEDIUM
Linux Kernel - Use After Free
CVSS 5.5
CVE-2024-4603
MEDIUM
OpenSSL - DoS
CVSS 5.3
CVE-2024-0842
HIGH
Backuply - Backup, Restore, Migrate and Clone <1.2.5 - DoS
CVSS 7.5
CVE-2024-25144
MEDIUM
Liferay Portal/DXP <7.4.3.26-7.2 - DoS
CVSS 4.1
CVE-2023-49316
HIGH
phpseclib <3.0.34 - DoS
CVSS 7.5
CVE-2023-4043
MEDIUM
Eclipse Parsson <1.1.4-1.0.5 - Info Disclosure
CVSS 5.9
CVE-2023-5632
HIGH
Eclipse Mosquitto - Denial of Service
CVSS 7.5
CVE-2023-33953
HIGH
gRPC - DoS
CVSS 7.5
CVE-2023-29407
MEDIUM
Image Processing - DoS
CVSS 6.5
CVE-2023-3817
MEDIUM
OpenSSL - DoS
CVSS 5.3
CVE-2023-38200
HIGH
Keylime - DoS
CVSS 7.5
CVE-2023-30226
MEDIUM
Rizin < 0.5.0 - Denial of Service
CVSS 5.5
Details
Vulnerabilities
105