CWE-835

Loop with Unreachable Exit Condition ('Infinite Loop')

Parent: CWE-834 - Excessive Iteration

The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

825 vulnerabilities with CWE-835
CVE-2021-1914 HIGH
Qualcomm APQ8009 Firmware - Denial of Service via Infinite Loop
CVSS 7.5
CVE-2021-39194 MEDIUM
kaml < 0.35.3 - Denial of Service via Polymorphic YAML Tag Parsing
CVSS 4.3
CVE-2021-33599 MEDIUM
F-Secure Atlant - Denial of Service via WIM Archive Scanning
CVSS 4.6
CVE-2021-28698 MEDIUM
Xen >= 3.2.0 - Denial of Service via Grant Table Handling Infinite Loop
CVSS 5.5
CVE-2021-39140 MEDIUM
XStream < 1.4.18 - Denial of Service via CPU Exhaustion
CVSS 6.5
CVE-2021-27565 HIGH
NicheStack < 4.0.1 - Denial of Service via HTTP Request Handler Infinite Loop
CVSS 7.5
CVE-2021-31400 HIGH
HCC Embedded InterNiche < 4.3 - Denial of Service via TCP Out-of-Band Urgent Data Processing
CVSS 7.5
CVE-2021-37714 HIGH
jsoup < 1.14.2 - Denial of Service via Malicious HTML/XML Input
CVSS 7.5
CVE-2021-37686 MEDIUM
TensorFlow 2.6.0rc0-2.6.0rc2 - Infinite Loop via Strided Slice Ellipsis Handling
CVSS 5.5
CVE-2021-38387 HIGH
Contiki 3.0 - Denial of Service via Telnet Server Disconnection
CVSS 7.5
CVE-2021-38311 HIGH
Contiki 3.0 - Denial of Service via Telnet Option Negotiation Loop
CVSS 7.5
CVE-2021-37622 MEDIUM
exiv2 < 0.27.4 - Denial of Service via IPTC Data Deletion
CVSS 5.5
CVE-2021-37621 MEDIUM
exiv2 < 0.27.4 - Denial of Service via Crafted Image ICC Profile
CVSS 5.5
CVE-2021-37623 MEDIUM
exiv2 < 0.27.4 - Denial of Service via Crafted Image File Metadata Deletion
CVSS 5.5
CVE-2021-34334 MEDIUM
exiv2 < 0.27.5 - Denial of Service via Crafted Image File
CVSS 5.5
CVE-2021-3679 MEDIUM
Linux Kernel < 5.14 - Authenticated Denial of Service via Trace Ring Buffer Resource Starvation
CVSS 5.5
CVE-2021-22235 HIGH
Wireshark 3.2.0-3.2.14 and 3.4.0-3.4.6 - Denial of Service in DNP Dissector
CVSS 7.5
CVE-2021-34332 MEDIUM
Siemens JT2Go and Teamcenter Visualization < 13.2.0 - Denial of Service via BMP File Parsing
CVSS 5.5
CVE-2021-35515 HIGH
Apache Commons Compress 1.6-1.19 - Denial of Service via Crafted 7Z Archive
CVSS 7.5
CVE-2021-36125 HIGH
MediaWiki < 1.36 - Denial of Service via Special:GlobalRenameRequest Infinite Loop
CVSS 7.5
CVE-2021-21279 HIGH
contiki-ng < 4.6 - Denial of Service via IPv6 Neighbor Solicitation Message Processing
CVSS 7.5
CVE-2021-30468 HIGH
Apache CXF < 3.3.11 and 3.4.0-3.4.4 - Denial of Service via Malformed JSON
CVSS 7.5
CVE-2021-31812 MEDIUM
Apache PDFBox 2.0.0-2.0.23 - Denial of Service via Infinite Loop
CVSS 5.5
CVE-2021-22222 HIGH
Wireshark 3.4.0-3.4.5 - Denial of Service via DVB-S2-BB Dissector Infinite Loop
CVSS 7.5
CVE-2021-3468 MEDIUM
avahi 0.6-0.8 - Denial of Service via Client Connection Termination Event
CVSS 5.5
Details
Vulnerabilities 825
Links
MITRE CWE Entry Search this CWE With Exploits