logo

CWE-407 - Inefficient Algorithmic Complexity

CWE-407 Low

  • Abstraction:
  • Class
  • Structure:
  • Simple
  • Status:
  • Incomplete
Weakness Name

Inefficient Algorithmic Complexity

Description

An algorithm in a product has an inefficient worst-case computational complexity that may be detrimental to system performance and can be triggered by an attacker, typically using crafted manipulations that ensure that the worst case is being reached.

Common Consequences

Scope: Availability

Impact: DoS: Resource Consumption (CPU), DoS: Resource Consumption (Memory), DoS: Resource Consumption (Other)

Notes: The typical consequence is CPU consumption, but memory consumption and consumption of other resources can also occur.

Related Weaknesses

CWE-405Asymmetric Resource Consumption (Amplification)

  • Release Date:
  • 2006-07-19
  • Latest Modification Date:
  • 2023-06-29

Free security scan for your website