CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
Parent: CWE-834 - Excessive Iteration
The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.
825 vulnerabilities with CWE-835
CVE-2024-5569
MEDIUM
zipp < 3.19.1 - Denial of Service via Infinite Loop in Path Module Functions
CVSS 6.2
CVE-2024-6227
HIGH
aim 3.19.3 - Denial of Service via Remote Tracking Server Loop
CVSS 7.5
CVE-2024-36990
MEDIUM
Splunk Enterprise <9.2.2, <9.1.5, <9.0.10 & Splunk Cloud <9.2.2403.100 - Authenticated DoS via Datamodel/Web REST
CVSS 6.5
CVE-2024-36288
MEDIUM
Linux Kernel - Denial of Service via Infinite Loop in gss_free_in_token_pages
CVSS 5.5
CVE-2024-6061
LOW
GPAC 2.5-DEV-rev228-g11067ea92-master - Infinite Loop in MP4Box isoffin_process Function
CVSS 3.3
CVE-2024-5949
MEDIUM
Deep Sea Electronics DSE855 - Unauthenticated Denial of Service via Multipart Boundary Handling
CVSS 6.5
CVE-2024-36732
HIGH
OneFlow v0.9.1 - Denial of Service via Empty Array in tensordot
CVSS 7.5
CVE-2024-32976
HIGH
Envoy 1.18.0-1.27.5 - Denial of Service via Brotli Decompression Infinite Loop
CVSS 7.5
CVE-2024-35982
MEDIUM
Linux Kernel 3.13-6.8.6 - Infinite Loop in batman-adv Local TT Resize
CVSS 5.5
CVE-2024-35981
MEDIUM
Linux Kernel 5.18-6.1.89, 6.2-6.6.28, 6.7-6.8.6 - Denial of Service via RSS Key Handling
CVSS 5.5
CVE-2024-4854
MEDIUM
Fedora < 3.6.22 - Infinite Loop
CVSS 6.4
CVE-2024-24788
MEDIUM
Go standard library net 1.22.0-1.22.2 - Denial of Service via Malformed DNS Response
CVSS 5.9
CVE-2024-32886
MEDIUM
Vitess < 19.0.4, < 18.0.5, < 17.0.7 - Denial of Service via Infinite Loop in Query Execution
CVSS 4.9
CVE-2024-34489
HIGH
Faucet SDN Ryu 4.34 - Denial of Service via OFPHello Length Zero
CVSS 7.5
CVE-2024-34488
HIGH
Faucet SDN Ryu 4.34 - Denial of Service via OFPMultipartReply Infinite Loop
CVSS 7.5
CVE-2024-34487
HIGH
Faucet SDN Ryu 4.34 - Denial of Service via OFPFlowStats Infinite Loop
CVSS 7.5
CVE-2024-34484
MEDIUM
Faucet SDN Ryu 4.34 - Denial of Service via OFPBucket Action Length Zero
CVSS 5.3
CVE-2024-30251
HIGH
aiohttp < 3.9.4 - Denial of Service via Crafted Multipart Form Data
CVSS 7.5
CVE-2024-27032
MEDIUM
Linux kernel 4.19.307 through 4.20 - Loop Deadlock in Block Reservation
CVSS 6.3
CVE-2024-20353
HIGH
KEV
Cisco Adaptive Security Appliance Software - Denial of Service via HTTP Header Parsing
CVSS 8.6
CVE-2024-32650
HIGH
rustls 0.21.0-0.21.10, 0.22.0-0.22.3, 0.23.0-0.23.4 - Denial of Service via Infinite Loop in complete_io
CVSS 7.5
CVE-2024-2397
MEDIUM
tcpdump >=0d4083e <b9811ef - Denial of Service via Crafted DLT_PPP_SERIAL .pcap File
CVSS 6.2
CVE-2024-28732
HIGH
Faucet SDN Ryu 4.34 - Denial of Service via OFPMatch Infinite Loop
CVSS 7.5
CVE-2024-31949
MEDIUM
FRRouting < 9.1 - Denial of Service via MP/GR Capability Infinite Loop
CVSS 6.5
CVE-2024-24746
HIGH
Apache NimBLE <= 1.6.0 - Denial of Service via GATT Operation
CVSS 7.5
Details
Vulnerabilities
825