CWE-834: Excessive Iteration

Description

The product performs an iteration or loop without sufficiently limiting the number of times that the loop is executed.

Submission Date :

March 22, 2011, midnight

Modification Date :

2023-10-26 00:00:00+00:00

Organization :

MITRE
Extended Description

If the iteration can be influenced by an attacker, this weakness could allow attackers to consume excessive resources such as CPU or memory. In many cases, a loop does not need to be infinite in order to cause enough resource consumption to adversely affect the product or its host system; it depends on the amount of resources consumed per iteration.

Related Weaknesses

This table shows the weaknesses and high level categories that are related to this weakness. These relationships are defined to give an overview of the different insight to similar items that may exist at higher and lower levels of abstraction.

CWE-606: Unchecked Input for Loop Condition
Go to
CWE-674: Uncontrolled Recursion
Go to
CWE-691: Insufficient Control Flow Management
Go to
CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')
Go to
CWE-1322: Use of Blocking Code in Single-threaded, Non-blocking Context
Go to
CWE-1339: Insufficient Precision or Accuracy of a Real Number
Go to

Visit http://cwe.mitre.org/ for more details.