Falhas do tipo CWE-674
236 resultadosCVE-2021-45105MEDIUMApache Log4j2 does not always protect from infinite recursion in lookup evaluationEPSS 100.0%CVE-2024-25111HIGHSQUID-2024:1 Denial of Service in HTTP Chunked DecodingEPSS 65.3%CVE-2023-50269HIGHSQUID-2023:10 Denial of Service in HTTP Request parsingEPSS 57.6%CVE-2020-8285HIGHcurl 7.21.0 to and including 7.73.0 is vulnerable to uncontrolled recursion due to a stack overflow issue in FTP wildcard match parsing.EPSS 9.9%CVE-2023-22617HIGHA remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a miscoEPSS 7.3%CVE-2016-3627HIGHThe xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in recovery mode, allows context-dependent attackers to EPSS 7.1%CVE-2020-28196HIGHMIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because thEPSS 4.4%CVE-2016-9597—It was found that Red Hat JBoss Core Services erratum RHSA-2016:2957 for CVE-2016-3705 did not actually include the fix for the issue found EPSS 4.4%CVE-2018-16300HIGHThe BGP parser in tcpdump before 4.9.3 allows stack consumption in print-bgp.c:bgp_attr_print() because of unlimited recursion.EPSS 4.1%CVE-2018-16452HIGHThe SMB parser in tcpdump before 4.9.3 has stack exhaustion in smbutil.c:smb_fdata() via recursion.EPSS 4.1%CVE-2007-3409HIGHNet::DNS before 0.60, a Perl module, allows remote attackers to cause a denial of service (stack consumption) via a malformed compressed DNSEPSS 3.5%CVE-2020-10704HIGHA flaw was found when using samba as an Active Directory Domain Controller. Due to the way samba handles certain requests as an Active DirecEPSS 3.5%CVE-2022-25313MEDIUMIn Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element.EPSS 3.3%CVE-2024-4340HIGHPassing a heavily nested list to sqlparse.parse() leads to a Denial of Service due to RecursionError.EPSS 3.2%CVE-2019-0001HIGHJunos OS: MX Series: uncontrolled recursion and crash in Broadband Edge subscriber management daemon (bbe-smgd).EPSS 3.0%CVE-2024-7254HIGHStack overflow in Protocol Buffers Java LiteEPSS 2.8%CVE-2024-5971HIGHUndertow: response write hangs in case of java 17 tlsv1.3 newsessionticketEPSS 2.7%CVE-2021-3530—A flaw was discovered in GNU libiberty within demangle_path() in rust-demangle.c, as distributed in GNU Binutils version 2.36. A crafted symEPSS 2.4%CVE-2021-27432—OPC Foundation UA .NET Standard versions prior to 1.4.365.48 and OPC UA .NET Legacy are vulnerable to an uncontrolled recursion, which may aEPSS 2.2%CVE-2025-48924MEDIUMApache Commons Lang, Apache Commons Lang: ClassUtils.getClass(...) can throw a StackOverflowError on very long inputsEPSS 2.2%