Vulnerabilities > Uncontrolled Recursion

DATE CVE VULNERABILITY TITLE RISK
2022-08-10 CVE-2022-30635 Uncontrolled Recursion vulnerability in Golang GO
Uncontrolled recursion in Decoder.Decode in encoding/gob before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a message which contains deeply nested structures.
network
low complexity
golang CWE-674
7.5
2022-06-28 CVE-2022-31052 Uncontrolled Recursion vulnerability in multiple products
Synapse is an open source home server implementation for the Matrix chat network.
3.5
2022-06-27 CVE-2022-31099 Uncontrolled Recursion vulnerability in Pomsky-Lang Pomsky
rulex is a new, portable, regular expression language.
network
low complexity
pomsky-lang CWE-674
4.0
2022-05-18 CVE-2022-1771 Uncontrolled Recursion vulnerability in VIM
Uncontrolled Recursion in GitHub repository vim/vim prior to 8.2.4975.
network
vim CWE-674
4.3
2022-05-18 CVE-2022-30974 Uncontrolled Recursion vulnerability in multiple products
compile in regexp.c in Artifex MuJS through 1.2.0 results in stack consumption because of unlimited recursion, a different issue than CVE-2019-11413.
local
low complexity
artifex debian fedoraproject CWE-674
5.5
2022-04-05 CVE-2022-23974 Uncontrolled Recursion vulnerability in Apache Pinot
In 0.9.3 or older versions of Apache Pinot segment upload path allowed segment directories to be imported into pinot tables.
network
low complexity
apache CWE-674
5.0
2022-02-22 CVE-2022-23606 Uncontrolled Recursion vulnerability in Envoyproxy Envoy 1.21.0
Envoy is an open source edge and service proxy, designed for cloud-native applications.
network
low complexity
envoyproxy CWE-674
4.0
2022-01-28 CVE-2022-23889 Uncontrolled Recursion vulnerability in Yzmcms 6.3
The comment function in YzmCMS v6.3 was discovered as being able to be operated concurrently, allowing attackers to create an unusually large number of comments.
network
low complexity
yzmcms CWE-674
5.0
2022-01-14 CVE-2021-46195 Uncontrolled Recursion vulnerability in GNU GCC 12.0
GCC v12.0 was discovered to contain an uncontrolled recursion via the component libiberty/rust-demangle.c.
network
gnu CWE-674
4.3
2021-12-18 CVE-2021-45105 Uncontrolled Recursion vulnerability in multiple products
Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups.
network
high complexity
apache netapp debian sonicwall oracle CWE-674
5.9