CWE-835

Loop with Unreachable Exit Condition ('Infinite Loop')

Parent: CWE-834 - Excessive Iteration

The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

829 vulnerabilities with CWE-835
CVE-2017-6467 HIGH
Wireshark 2.0.0-2.0.10 and 2.2.0-2.2.4 - Denial of Service via Netscaler File Parser Infinite Loop
CVSS 7.5
CVE-2017-5852 MEDIUM
PoDoFo 0.9.4 - Denial of Service via Infinite Loop in PdfPage::GetInheritedKeyFromObject
CVSS 5.5
CVE-2017-6299 MEDIUM
ytnef < 1.9.1 - Denial of Service via Infinite Loop in TNEFFillMapi
CVSS 5.5
CVE-2017-6214 HIGH
Linux Kernel < 4.9.11 - Denial of Service via TCP URG Flag Handling
CVSS 7.5
CVE-2017-6056 HIGH
Ubuntu Linux - Denial of Service via HTTPS Request Processing Infinite Loop
CVSS 7.5
CVE-2017-6014 HIGH
Wireshark < 2.2.4 - Denial of Service via STANAG 4607 Capture File
CVSS 7.5
CVE-2017-5596 HIGH
Wireshark 2.0.0-2.0.9 and 2.2.0-2.2.3 - Denial of Service via ASTERIX Dissector Integer Overflow
CVSS 7.5
CVE-2016-9581 LOW
OpenJPEG 2.1.2 - Heap Buffer Overflow in convert_32s_C1P1
CVSS 3.3
CVE-2016-6817 HIGH
Apache Tomcat 8.5.0-8.5.6 and 9.0.0.M1-9.0.0.M11 - Denial of Service via HTTP/2 Header Parser
CVSS 7.5
CVE-2016-4970 HIGH
Netty 4.0.20-4.0.36 - Denial of Service via Infinite Loop in OpenSslEngine
CVSS 7.5
CVE-2016-5042 HIGH
libdwarf < 2016-09-23 - Denial of Service via Crafted DWARF Section
CVSS 7.5
CVE-2016-9776 MEDIUM
QEMU < 2.7.1 - Denial of Service via ColdFire Fast Ethernet Controller Packet Reception
CVSS 5.5
CVE-2016-1981 MEDIUM
QEMU < 2.5.1.1 - Denial of Service via e1000 NIC Descriptor Processing
CVSS 5.5
CVE-2016-6301 HIGH
busybox < 1.25.1 - Denial of Service via Forged NTP Packet
CVSS 7.5
CVE-2016-8910 MEDIUM
QEMU < 2.7.1 - Denial of Service via rtl8139_cplus_transmit Infinite Loop
CVSS 6.0
CVE-2016-8909 MEDIUM
QEMU < 2.7.1 - Denial of Service via Intel HDA Buffer Length and Pointer Position
CVSS 6.0
CVE-2016-7909 MEDIUM
QEMU < 2.7.1 - Denial of Service via Zero Descriptor Ring Length
CVSS 4.4
CVE-2016-7908 MEDIUM
QEMU < 2.7.1 - Denial of Service via Infinite Loop in mcf_fec_do_tx
CVSS 4.4
CVE-2016-4453 MEDIUM
QEMU < 2.6.0 - Denial of Service via VGA Command Infinite Loop
CVSS 4.4
CVE-2015-10103 LOW
InternalError503 <1.3 - Infinite Loop
CVSS 2.8
CVE-2015-6815 LOW
QEMU < 2.4.0.1 - Denial of Service via Transmit Descriptor Processing
CVSS 3.5
CVE-2015-5278 MEDIUM
QEMU < 2.4.0.1 - Denial of Service via Infinite Loop in ne2000_receive
CVSS 6.5
CVE-2015-5239 MEDIUM
QEMU < 2.1.0 - Denial of Service via VNC CLIENT_CUT_TEXT Message
CVSS 6.5
CVE-2015-5694 MEDIUM
OpenStack Designate - Denial of Service via DNS Record Set Size Limit Bypass
CVSS 6.5
CVE-2015-7850 MEDIUM
NTP 4.2.0-4.2.8 - Authenticated Denial of Service via Key File Misconfiguration
CVSS 6.5
Details
Vulnerabilities 829
Links
MITRE CWE Entry Search this CWE With Exploits