CWE-835

Loop with Unreachable Exit Condition ('Infinite Loop')

Parent: CWE-834 - Excessive Iteration

The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

825 vulnerabilities with CWE-835
CVE-2020-36023 MEDIUM
poppler 20.12.1 - Denial of Service via Crafted PDF in FoFiType1C::cvtGlyph
CVSS 6.5
CVE-2020-35141 HIGH
Faucet SDN Ryu 4.34 - Denial of Service via OFPQueueGetConfigReply Infinite Loop
CVSS 7.5
CVE-2020-35139 HIGH
Faucet SDN Ryu 4.34 - Denial of Service via OFPBundleCtrlMsg Infinite Loop
CVSS 7.5
CVE-2020-24221 MEDIUM
ngiflib 0.4 - Denial of Service via Crafted GIF File
CVSS 5.5
CVE-2020-14394 LOW
QEMU - Denial of Service via Infinite Loop in USB xHCI Controller Emulation
CVSS 3.2
CVE-2020-23566 MEDIUM
Irfanview 4.53 - Denial of Service via JPEG2000 PlugInSaveOptions Infinite Loop
CVSS 5.5
CVE-2020-18442 LOW
zziplib 0.13.69 - Denial of Service via Infinite Loop in unzzip_cat_file
CVSS 3.3
CVE-2020-13602 MEDIUM
Zephyr < 1.14.2 - Remote Denial of Service in LwM2M do_write_op_tlv
CVSS 4.0
CVE-2020-36310 MEDIUM
Linux Kernel < 5.8 - Denial of Service via Infinite Loop in KVM SVM
CVSS 5.5
CVE-2020-11186 MEDIUM
Qualcomm Modem Firmware - Denial of Service via Histogram Dimension Parsing
CVSS 5.5
CVE-2020-27618 MEDIUM
glibc < 2.32 - Denial of Service via Infinite Loop in iconv IBM Encodings
CVSS 5.5
CVE-2020-9307 MEDIUM
Hirschmann HiOS 07.0.04-07.1.00 - Unauthenticated Denial of Service via HSR Ring Port Infinite Loop
CVSS 6.5
CVE-2020-24944 HIGH
picoquic < 2020-07-03 - Denial of Service via Crafted QUIC Frame
CVSS 7.5
CVE-2020-36227 HIGH
OpenLDAP < 2.4.57 - Denial of Service via Cancel Operation Infinite Loop
CVSS 7.5
CVE-2020-28095 HIGH
Tenda AC6 Firmware 15.03.06.51_multi - Denial of Service via Change Password API
CVSS 7.5
CVE-2020-29385 MEDIUM
GNOME gdk-pixbuf < 2.42.2 - Denial of Service via Infinite Loop in LZW Decompression
CVSS 5.5
CVE-2020-35609 MEDIUM
Microsoft Azure Sphere 20.05 - Denial of Service via Asynchronous ioctl Calls
CVSS 5.5
CVE-2020-24337 HIGH
picoTCP and picoTCP-NG < 1.7.0 - Denial of Service via TCP Option Parsing Infinite Loop
CVSS 7.5
CVE-2020-17444 HIGH
picoTCP < 1.7.0 - Denial of Service via IPv6 Extension Header Length Overflow
CVSS 7.5
CVE-2020-13986 HIGH
Contiki < 3.0 - Denial of Service via RPL Extension Header Infinite Loop
CVSS 7.5
CVE-2020-13984 HIGH
Contiki < 3.0 - Denial of Service via IPv6 Extension Header Processing
CVSS 7.5
CVE-2020-28916 MEDIUM
QEMU 5.0.0 - Denial of Service via Infinite Loop in e1000e RX Descriptor Handling
CVSS 5.5
CVE-2020-16127 LOW
accountsservice < 0.6.55 - Denial of Service via ~/.pam_environment Symlink
CVSS 2.8
CVE-2020-27152 MEDIUM
Linux kernel <5.9.2 - Infinite Loop
CVSS 5.5
CVE-2020-28030 HIGH
Wireshark 3.2.0-3.2.7 - Denial of Service in GQUIC Dissector
CVSS 7.5
Details
Vulnerabilities 825
Links
MITRE CWE Entry Search this CWE With Exploits