CWE-606 - Unchecked Input for Loop Condition

CWE ID:

CWE-606

Abstraction:Base
Structure:Simple
Status:Draft

Release Date:2007-05-07
Latest Modification Date:2023-06-29

Weakness Name

Unchecked Input for Loop Condition

Description

The product does not properly check inputs that are used for loop conditions, potentially leading to a denial of service or other consequences because of excessive looping.

Common Consequences

Scope: Availability

Impact: DoS: Resource Consumption (CPU)

Related Weaknesses

CWE-834Excessive Iteration

CWE-1284Improper Validation of Specified Quantity in Input

Latest Security News

Latest CVE List

Common Alerts

HighRemote Code Execution - Shell Shock
InformationalInformation Disclosure - Sensitive Information in HTTP Referrer Header
MediumVulnerable JS Library
LowX-AspNet-Version Response Header
HighExternal Redirect
MediumX-ChromeLogger-Data (XCOLD) Header Information Leak
HighLog4Shell (CVE-2021-45046)
InformationalContent Security Policy (CSP) Report-Only Header Found
HighSession Fixation
InformationalHTTP Parameter Pollution