Vulnerabilities > Uncontrolled Recursion
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-07 | CVE-2021-42717 | Uncontrolled Recursion vulnerability in multiple products ModSecurity 3.x through 3.0.5 mishandles excessively nested JSON objects. | 7.5 |
| 2021-11-19 | CVE-2021-39929 | Uncontrolled Recursion vulnerability in multiple products Uncontrolled Recursion in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file | 7.5 |
| 2021-11-09 | CVE-2021-43519 | Uncontrolled Recursion vulnerability in multiple products Stack overflow in lua_resume of ldo.c in Lua Interpreter 5.1.0~5.4.4 allows attackers to perform a Denial of Service via a crafted script file. | 5.5 |
| 2021-11-02 | CVE-2021-42697 | Uncontrolled Recursion vulnerability in Akka Http Server Akka HTTP 10.1.x before 10.1.15 and 10.2.x before 10.2.7 can encounter stack exhaustion while parsing HTTP headers, which allows a remote attacker to conduct a Denial of Service attack by sending a User-Agent header with deeply nested comments. | 7.5 |
| 2021-09-07 | CVE-2021-39257 | Uncontrolled Recursion vulnerability in multiple products A crafted NTFS image with an unallocated bitmap can lead to a endless recursive function call chain (starting from ntfs_attr_pwrite), causing stack consumption in NTFS-3G < 2021.8.22. | 5.5 |
| 2021-08-19 | CVE-2020-18898 | Uncontrolled Recursion vulnerability in Exiv2 0.27 A stack exhaustion issue in the printIFDStructure function of Exiv2 0.27 allows remote attackers to cause a denial of service (DOS) via a crafted file. | 6.5 |
| 2021-08-11 | CVE-2021-38566 | Uncontrolled Recursion vulnerability in Foxitsoftware PDF Editor and PDF Reader An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. | 7.5 |
| 2021-08-11 | CVE-2021-38569 | Uncontrolled Recursion vulnerability in Foxitsoftware Foxit Reader An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. | 7.5 |
| 2021-07-26 | CVE-2021-22144 | Uncontrolled Recursion vulnerability in multiple products In Elasticsearch versions before 7.13.3 and 6.8.17 an uncontrolled recursion vulnerability that could lead to a denial of service attack was identified in the Elasticsearch Grok parser. | 6.5 |
| 2021-07-18 | CVE-2021-36773 | Uncontrolled Recursion vulnerability in multiple products uBlock Origin before 1.36.2 and nMatrix before 4.4.9 support an arbitrary depth of parameter nesting for strict blocking, which allows crafted web sites to cause a denial of service (unbounded recursion that can trigger memory consumption and a loss of all blocking functionality). | 7.5 |