CWE-407 - Inefficient Algorithmic Complexity

CWE-407 Low

Abstraction:
Class

Structure:
Simple

Status:
Incomplete

Weakness Name: Inefficient Algorithmic Complexity

Description: An algorithm in a product has an inefficient worst-case computational complexity that may be detrimental to system performance and can be triggered by an attacker, typically using crafted manipulations that ensure that the worst case is being reached.

Common Consequences: Scope: Availability
Impact: DoS: Resource Consumption (CPU), DoS: Resource Consumption (Memory), DoS: Resource Consumption (Other)
Notes: The typical consequence is CPU consumption, but memory consumption and consumption of other resources can also occur.

Related Weaknesses: CWE-405Asymmetric Resource Consumption (Amplification)

Release Date:
2006-07-19

Latest Modification Date:
2023-06-29

Free security scan for your website

Don't show website scan report rating on the leaderboard