Vulnerabilities > Uncontrolled Recursion
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-09 | CVE-2021-43519 | Uncontrolled Recursion vulnerability in multiple products Stack overflow in lua_resume of ldo.c in Lua Interpreter 5.1.0~5.4.4 allows attackers to perform a Denial of Service via a crafted script file. | 5.5 |
| 2021-11-02 | CVE-2021-42697 | Uncontrolled Recursion vulnerability in Akka Http Server Akka HTTP 10.1.x before 10.1.15 and 10.2.x before 10.2.7 can encounter stack exhaustion while parsing HTTP headers, which allows a remote attacker to conduct a Denial of Service attack by sending a User-Agent header with deeply nested comments. | 7.5 |
| 2021-09-07 | CVE-2021-39257 | Uncontrolled Recursion vulnerability in multiple products A crafted NTFS image with an unallocated bitmap can lead to a endless recursive function call chain (starting from ntfs_attr_pwrite), causing stack consumption in NTFS-3G < 2021.8.22. | 5.5 |
| 2021-08-19 | CVE-2020-18898 | Uncontrolled Recursion vulnerability in Exiv2 0.27 A stack exhaustion issue in the printIFDStructure function of Exiv2 0.27 allows remote attackers to cause a denial of service (DOS) via a crafted file. | 6.5 |
| 2021-08-11 | CVE-2021-38566 | Uncontrolled Recursion vulnerability in Foxitsoftware PDF Editor and PDF Reader An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. | 7.5 |
| 2021-08-11 | CVE-2021-38569 | Uncontrolled Recursion vulnerability in Foxitsoftware Foxit Reader An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. | 7.5 |
| 2021-07-26 | CVE-2021-22144 | Uncontrolled Recursion vulnerability in multiple products In Elasticsearch versions before 7.13.3 and 6.8.17 an uncontrolled recursion vulnerability that could lead to a denial of service attack was identified in the Elasticsearch Grok parser. | 6.5 |
| 2021-07-18 | CVE-2021-36773 | Uncontrolled Recursion vulnerability in multiple products uBlock Origin before 1.36.2 and nMatrix before 4.4.9 support an arbitrary depth of parameter nesting for strict blocking, which allows crafted web sites to cause a denial of service (unbounded recursion that can trigger memory consumption and a loss of all blocking functionality). | 7.5 |
| 2021-07-09 | CVE-2021-36154 | Uncontrolled Recursion vulnerability in Linuxfoundation Grpc Swift 1.0.0/1.1.0/1.1.1 HTTP2ToRawGRPCServerCodec in gRPC Swift 1.1.1 and earlier allows remote attackers to deny service via the delivery of many small messages within a single HTTP/2 frame, leading to Uncontrolled Recursion and stack consumption. | 7.5 |
| 2021-07-07 | CVE-2020-20213 | Uncontrolled Recursion vulnerability in Mikrotik Routeros 6.44.5 Mikrotik RouterOs 6.44.5 (long-term tree) suffers from an stack exhaustion vulnerability in the /nova/bin/net process. | 6.5 |