CWE-606
11 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-606page 1 of 1
- CVE-2022-3252HIGHCVSS 7.5EG 7.52022-09-21
Improper detection of complete HTTP body decompression SwiftNIO Extras provides a pair of helpers for transparently decompressing received HTTP request or response bodies. These two objects (HTTPRequestDecompressor and HTTPResponseDecompre…
- CVE-2023-3446MEDIUMCVSS 5.3EG 5.32023-07-19
Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience lon…
- CVE-2023-3817MEDIUMCVSS 5.3EG 5.32023-07-31
Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience lon…
- CVE-2023-5678MEDIUMCVSS 5.3EG 7.52023-11-06
Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may expe…
- CVE-2023-6237MEDIUMCVSS 5.9EG 5.92024-04-25
Issue summary: Checking excessively long invalid RSA public keys may take a long time. Impact summary: Applications that use the function EVP_PKEY_public_check() to check RSA public keys may experience long delays. Where the key that is b…
- CVE-2024-34486HIGHCVSS 7.5EG 7.52024-05-05
OFPPacketQueue in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service (infinite loop) via OFPQueueProp.len=0.
- CVE-2024-43499HIGHCVSS 7.5EG 7.52024-11-12
.NET and Visual Studio Denial of Service Vulnerability
- CVE-2024-4603MEDIUMCVSS 5.3EG 5.32024-05-16
Issue summary: Checking excessively long DSA keys or parameters may be very slow. Impact summary: Applications that use the functions EVP_PKEY_param_check() or EVP_PKEY_public_check() to check a DSA public key or DSA parameters may experi…
- CVE-2024-8508MEDIUMCVSS 5.3EG 5.32024-10-03
NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling replies with very large RRsets that it needs to perform name compression for. Malicious upstreams responses with very large RRsets can cause Unbou…
- CVE-2026-1519HIGHCVSS 7.5EG 7.52026-03-25
If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may consume excessive CPU. Authoritative-only servers are generally unaffected, although there are circumstances where authoritative…
- CVE-2026-5950MEDIUMCVSS 5.3EG 5.32026-05-20
An unbounded resend loop vulnerability exists in the BIND 9 resolver state machine during bad-server handling, enabling a remote unauthenticated attacker to cause severe resource exhaustion by sending queries that trigger specific retry co…
Map vulnerabilities like CWE-606 to your infrastructure
EchelonGraph correlates every CVE — across CWE-606 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →