CVEbaza.plSłownik CWECWE-674
Common Weakness Enumeration

CWE-674

Uncontrolled Recursion

Kategoria: ClassCVE: 503
Opis

Produkt nie kontroluje prawidłowo ilości rekurencji, co prowadzi do nadmiernego zużycia zasobów, takich jak przydzielona pamięć lub stos programu. Może to spowodować awarie lub obniżenie wydajności systemu.

Description (EN)

The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.

Podatności CVE z CWE-674 (503)
9.8
CVSS
CRITICAL
CVE-2026-43185

Podatność w sterowniku ksmbd jądra Linux umożliwia zdalnym, nieuwierzytelnionym atakującym wywołanie przepełnienia bufora na stercie (heap buffer overflow) poprzez spreparowane pakiety negocjacji SMB Direct. Krytyczny poziom CVSS 9.8 wynika z pełnej dostępności sieciowej bez wymaganych uprawnień ani interakcji użytkownika.

pub. 2026-05-06
9.8
CVSS
CRITICAL
CVE-2023-51803

Aplikacja Heimdall w wersjach przed 2.5.7 nie waliduje poprawnie zawartości plików graficznych używanych jako ikony, co pozwala na przesłanie pliku zawierającego kod PHP. Jest to podatność krytyczna, umożliwiająca atakującemu zdalne wykonanie kodu na serwerze.

pub. 2024-04-01
9.8
CVSS
CRITICAL
CVE-2021-41752

Stack overflow vulnerability in Jerryscript before commit e1ce7dd7271288be8c0c8136eea9107df73a8ce2 on Oct 20, 2021 due to an unbounded recursive call to the new opt() function.

pub. 2022-04-05
9.8
CVSS
CRITICAL
CVE-2018-1000618

EOSIO/eos eos version after commit f1545dd0ae2b77580c2236fdb70ae7138d2c7168 contains a stack overflow vulnerability in abi_serializer that can result in attack eos network node. This attack appear to be exploitable via network request. This vulnerability appears to have been fixed in after commit cf7209e703e6d3f7a5413e0cb1fe88a4d8e4b38d .

pub. 2018-07-09
9.4
CVSS
CRITICAL
CVE-2025-10728

Podatność w module Qt SVG powoduje, że przetwarzanie pliku SVG zawierającego element <pattern> może wywołać niekończącą się rekurencję, prowadzącą do przepełnienia stosu (stack overflow) i awarii aplikacji. Zagrożenie jest poważne, ponieważ wystarczy otworzyć specjalnie spreparowany plik SVG, aby doprowadzić do odmowy usługi (DoS).

pub. 2025-10-03
9.1
CVSS
CRITICAL
CVE-2026-40324

Parser GraphQL `Utf8GraphQLParser` w bibliotece Hot Chocolate nie posiada limitu głębokości rekurencji, co pozwala atakującemu na awaryjne zakończenie całego procesu roboczego poprzez przesłanie sprytnie zagnieżdżonego dokumentu GraphQL o rozmiarze zaledwie 40 KB. Podatność jest krytyczna, ponieważ `StackOverflowException` w środowisku .NET jest niemożliwy do przechwycenia, a atak nie wymaga żadnego uwierzytelnienia.

pub. 2026-04-18
8.8
CVSS
HIGH
CVE-2024-37973

Secure Boot Security Feature Bypass Vulnerability

pub. 2024-07-09
8.8
CVSS
HIGH
CVE-2019-9543

An issue was discovered in Poppler 0.74.0. A recursive function call, in JBIG2Stream::readGenericBitmap() located in JBIG2Stream.cc, can be triggered by sending a crafted pdf file to (for example) the pdfseparate binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. This is related to JArithmeticDecoder::decodeBit.

pub. 2019-03-01
8.8
CVSS
HIGH
CVE-2019-9545

An issue was discovered in Poppler 0.74.0. A recursive function call, in JBIG2Stream::readTextRegion() located in JBIG2Stream.cc, can be triggered by sending a crafted pdf file to (for example) the pdfimages binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. This is related to JBIG2Bitmap::clearToZero.

pub. 2019-03-01
8.8
CVSS
HIGH
CVE-2019-9143

An issue was discovered in Exiv2 0.27. There is infinite recursion at Exiv2::Image::printTiffStructure in the file image.cpp. This can be triggered by a crafted file. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact.

pub. 2019-02-25
8.8
CVSS
HIGH
CVE-2019-9144

An issue was discovered in Exiv2 0.27. There is infinite recursion at BigTiffImage::printIFD in the file bigtiffimage.cpp. This can be triggered by a crafted file. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact.

pub. 2019-02-25
8.7
CVSS
HIGH
CVE-2026-46689

Kanidm is an identity management platform. Prior to version 1.9.3, a single unauthenticated GET to any /scim/v1/... endpoint with a ?filter= query string of a few thousand nested parentheses (≈ 4–12 KB) drives the recursive-descent PEG parser past the worker thread's stack guard page. Rust responds to stack overflow with std::process::abort() — the entire kanidmd process exits. The parse runs inside axum's Query<ScimEntryGetQuery> extractor, before any handler body and therefore before any ACL check. This issue has been patched in version 1.9.3.

pub. 2026-06-10
8.7
CVSS
HIGH
CVE-2026-9740

A vulnerability in MongoDB Server's BSON validation logic allows an unauthenticated user to crash the mongod process by sending a specially crafted message. The BSON validator's handling of certain nested binary data structures permits uncontrolled mutual recursion between validation functions, where each re-entry resets internal depth tracking.

pub. 2026-06-09
8.7
CVSS
HIGH
CVE-2026-41673

xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module. In @xmldom/xmldom prior to versions 0.9.10 and 0.8.13 and xmldom version 0.6.0 and prior, seven recursive traversals in lib/dom.js operate without a depth limit. A sufficiently deeply nested DOM tree causes a RangeError: Maximum call stack size exceeded, crashing the application. This issue has been patched in versions @xmldom/xmldom versions 0.9.10 and 0.8.13.

pub. 2026-05-07
8.7
CVSS
HIGH
CVE-2026-41636

Uncontrolled Recursion vulnerability in Apache Thrift Node.js bindings This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.

pub. 2026-04-28
8.7
CVSS
HIGH
CVE-2026-41680

Marked is a markdown parser and compiler. From 18.0.0 to 18.0.1, a critical Denial of Service (DoS) vulnerability exists in marked. By providing a specific 3-byte input sequence a tab, a vertical tab, and a newline (\x09\x0b\n)—an unauthenticated attacker can trigger an infinite recursion loop during parsing. This leads to unbounded memory allocation, causing the host Node.js application to crash via Memory Exhaustion (OOM). This vulnerability is fixed in 18.0.2.

pub. 2026-04-24
8.7
CVSS
HIGH
CVE-2026-33498

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.55 and 9.6.0-alpha.44, an attacker can send an unauthenticated HTTP request with a deeply nested query containing logical operators to permanently hang the Parse Server process. The server becomes completely unresponsive and must be manually restarted. This is a bypass of the fix for CVE-2026-32944. This issue has been patched in versions 8.6.55 and 9.6.0-alpha.44.

pub. 2026-03-24
8.7
CVSS
HIGH
CVE-2026-32944

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.21 and 8.6.45, an unauthenticated attacker can crash the Parse Server process by sending a single request with deeply nested query condition operators. This terminates the server and denies service to all connected clients. Starting in version 9.6.0-alpha.21 and 8.6.45, a depth limit for query condition operator nesting has been added via the `requestComplexity.queryDepth` server option. The option is disabled by default to avoid a breaking change. To mitigate, upgrade and set the option to a value appropriate for your app. No known workarounds are available.

pub. 2026-03-18
8.7
CVSS
HIGH
CVE-2026-25048

xgrammar is an open-source library for efficient, flexible, and portable structured generation. Prior to version 0.1.32, the multi-level nested syntax caused a segmentation fault (core dumped). This issue has been patched in version 0.1.32.

pub. 2026-03-05
8.7
CVSS
HIGH
CVE-2026-3520

Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability in Multer prior to version 2.1.1 allows an attacker to trigger a Denial of Service (DoS) by sending malformed requests, potentially causing stack overflow. Users should upgrade to version 2.1.1 to receive a patch. No known workarounds are available.

pub. 2026-03-04
Pokazano 20 z 503 podatności
Informacje
ID: CWE-674
Typ: Class
Podatności: 503
MITRE CWE ↗
← Słownik CWE