CWE-834: Excessive Iteration
Description
The product performs an iteration or loop without sufficiently limiting the number of times that the loop is executed.
Submission Date :
March 22, 2011, midnight
Modification Date :
2023-10-26 00:00:00+00:00
Organization :
MITRE
Extended Description
If the iteration can be influenced by an attacker, this weakness could allow attackers to consume excessive resources such as CPU or memory. In many cases, a loop does not need to be infinite in order to cause enough resource consumption to adversely affect the product or its host system; it depends on the amount of resources consumed per iteration.
Related Weaknesses
This table shows the weaknesses and high level categories that are related to this weakness. These relationships are defined to give an overview of the different insight to similar items that may exist at higher and lower levels of abstraction.
CWE-606: Unchecked Input for Loop Condition
CWE-674: Uncontrolled Recursion
CWE-691: Insufficient Control Flow Management
CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')
CWE-1322: Use of Blocking Code in Single-threaded, Non-blocking Context
CWE-1339: Insufficient Precision or Accuracy of a Real Number
Visit http://cwe.mitre.org/ for more details.