CWE-835: Infinite Loop

This vulnerability allows attackers to bypass multiple security layers in Enclave, a JavaScript sandbox for AI agent code execution. Attackers can esc...

An unauthenticated remote attacker can send specially crafted IKEv2 packets to Cisco networking devices, causing them to enter an infinite loop that e...

This vulnerability allows unauthenticated remote attackers to cause Cisco ASA and FTD firewalls to crash and reload by sending specially crafted DNS p...

An unauthenticated remote attacker can send crafted traffic through Cisco Secure Firewall Threat Defense devices to trigger an infinite loop in the Sn...

A vulnerability in Cisco Firepower Threat Defense (FTD) Software's ICMPv6 inspection with Snort 2 allows remote attackers to cause 100% CPU usage via ...

A vulnerability in Cisco FXOS Software and UCS 6300 Series Fabric Interconnects allows authenticated remote attackers to cause denial of service by se...

CVE-2025-64438 is a remotely triggerable denial-of-service vulnerability in Fast DDS that allows unauthenticated attackers to cause out-of-memory cond...

This CVE describes an infinite loop vulnerability in ixray-1.6-stcop software where a loop condition cannot be satisfied, causing indefinite execution...

An unauthenticated attacker can send specially crafted SIP messages over TCP to trigger an infinite loop in Juniper's SIP ALG, crashing critical proce...

CVE-2026-21507 is an infinite loop vulnerability in the CalcProfileID function of iccDEV's IccProfile.cpp. This allows attackers to cause denial of se...

This vulnerability in AIOHTTP allows denial-of-service attacks when Python optimizations are enabled and the application processes POST requests. Atta...

This vulnerability allows attackers to cause a denial of service (DoS) by triggering an infinite loop in Mozart FM Transmitter software when file dele...

This vulnerability in LimeSurvey's /optout endpoint causes infinite HTTP redirects when accessed directly, creating a denial-of-service condition. Att...

This vulnerability in LimeSurvey 6.13.0 creates an infinite redirect loop when accessing the /optin endpoint directly. Attackers can exploit this to c...

This vulnerability in the FreeMODBUS demo/LINUXTCP implementation allows attackers to trigger an infinite loop by sending a specially crafted packet w...

A vulnerability in CPython's tarfile module allows malicious tar archives with negative offsets to cause infinite loops and deadlocks during extractio...

ImageMagick versions before 7.1.2-0 contain an infinite loop vulnerability when processing XMP files during conversion. This can cause denial of servi...

This CVE describes a denial-of-service vulnerability in the DNS implementation that could cause an infinite loop when processing certain DNS responses...

This vulnerability in GitLab allows attackers to trigger an infinite redirect loop, causing a denial of service by making affected instances unrespons...

GeoServer versions before 2.27.0, 2.26.3, and 2.25.7 are vulnerable to denial of service attacks through malicious Jiffle scripts. Attackers can submi...

A denial-of-service vulnerability in libcurl's WebSocket implementation allows a malicious server to send a crafted packet that traps libcurl in an en...

CVE-2024-22654 is an infinite loop vulnerability in tcpreplay's tcprewrite function that can cause denial of service. Attackers can craft malicious pa...

This vulnerability allows attackers to cause a denial of service (DoS) on PeerTube servers by sending specially crafted ActivityPub activities to the ...

This CVE describes a Denial of Service vulnerability in zenml-io/zenml version 0.66.0 where unauthenticated attackers can send specially crafted multi...

A vulnerability in the LangChainLLM class of llama_index v0.12.5 allows denial of service attacks through infinite loops when threads terminate abnorm...

This vulnerability in lm-sys/fastchat v0.2.36 allows unauthenticated attackers to cause denial of service by sending malformed multipart requests with...

This CVE describes a Denial of Service vulnerability in Invoke-AI server v5.0.1 where unauthenticated attackers can send specially crafted multipart r...

This vulnerability allows unauthenticated attackers to send specially crafted multipart/form-data requests with excessive characters appended to bound...

This vulnerability in Android's Intent parsing allows an attacker to cause an infinite loop through specially crafted input, leading to denial of serv...

A denial-of-service vulnerability in Drupal Core allows attackers to cause excessive resource allocation through specially crafted requests. This affe...

This vulnerability in RIOT OS allows remote attackers to cause a denial-of-service condition on CC2538-based IoT devices by sending specially crafted ...

An infinite loop vulnerability in Ivanti Avalanche allows remote unauthenticated attackers to cause denial of service by crashing the service. This af...

CVE-2024-50319 is an infinite loop vulnerability in Ivanti Avalanche that allows remote unauthenticated attackers to cause denial of service by crashi...

CVE-2024-52532 is a denial-of-service vulnerability in GNOME libsoup's WebSocket implementation where certain malicious data patterns cause infinite l...

This vulnerability allows attackers to create a network traffic loop via spoofed UDP packets on port 10000, causing denial of service. It affects Webm...

HAProxy HTTP/2 zero-copy forwarding vulnerability allows remote attackers to cause denial of service by exploiting a loop condition in the h2_send fun...

This vulnerability in zkvyper (a Vyper compiler for zkSync Era) allows infinite loops in compiled smart contracts due to improper loop exit condition ...

This vulnerability allows attackers to cause a denial of service (DoS) in NAS (Network Access Stratum) implementations by sending specially crafted OD...

Envoyproxy with Brotli filter can enter an endless loop during decompression of Brotli data with extra input, causing denial of service. This affects ...

CVE-2024-34488 is a denial-of-service vulnerability in Faucet SDN Ryu's OpenFlow parser where sending a specially crafted OFPMultipartReply packet wit...

This vulnerability in aiohttp allows an attacker to send a specially crafted multipart/form-data POST request that causes the server to enter an infin...

A denial-of-service vulnerability in CodeIgniter's Language class allows attackers to trigger excessive memory consumption on servers. This affects al...

This vulnerability in NLnet Labs Unbound DNS resolver allows remote attackers to cause denial of service via an infinite loop when EDE (Extended DNS E...

This vulnerability allows an attacker to cause a denial of service by sending a specially crafted archive file that triggers an infinite loop in the W...

CVE-2023-45232 is an infinite loop vulnerability in EDK2's Network Package when parsing unknown IPv6 Destination Options headers. This allows attacker...

This vulnerability allows attackers to cause a denial-of-service (DoS) condition in Qualcomm WLAN firmware by sending specially crafted IPv6 packets w...

CVE-2023-51075 is an infinite loop vulnerability in hutool-core's StrSplitter.splitByRegex function that allows attackers to cause Denial of Service (...

This CVE describes an infinite loop vulnerability in Sierra Wireless ALEOS ACEManager that allows remote attackers to cause a denial-of-service condit...

This vulnerability in Juniper QFX5k devices with storm control enabled allows ICMPv6 packets to bypass security checks, causing packets to be incorrec...