CVE-2024-58102

MEDIUM Year: 2024
CVSS v3 Score
5.7
Medium
Weakness Type
CWE-674
View all →

Vulnerability Description

An issue was discovered in Datalust Seq before 2024.3.13545. An insecure default parsing depth limit allows stack consumption when parsing user-supplied queries containing deeply nested expressions.

Related Vulnerabilities

CVE-2024-58103

MEDIUM
CVSS:5.8(Medium)

Square Wire before 5.2.0 does not enforce a recursion limit on nested groups in ByteArrayProtoReader32.kt and ProtoReader.kt.

CWE-6742024

CVE-2017-0692

MEDIUM
CVSS:5.5(Medium)

A denial of service vulnerability in the Android media framework. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36725407.

CWE-6742017

CVE-2017-7515

MEDIUM
CVSS:5.5(Medium)

poppler through version 0.55.0 is vulnerable to an uncontrolled recursion in pdfunite resulting into potential denial-of-service.

CWE-6742017

CVE-2017-9616

MEDIUM
CVSS:5.5(Medium)

In Wireshark 2.2.7, overly deep mp4 chunks may cause stack exhaustion (uncontrolled recursion) in the dissect_mp4_box function in epan/dissectors/file-mp4.c.

CWE-6742017

CVE-2017-9617

MEDIUM
CVSS:5.5(Medium)

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion (uncontrolled recursion) in the dissect_daap_one_tag function in epan/dissectors/packet-daap.c in the DAAP dissector.

CWE-6742017

CVE-2018-11254

MEDIUM
CVSS:5.5(Medium)

An issue was discovered in PoDoFo 0.9.5. There is an Excessive Recursion in the PdfPagesTree::GetPageNode() function of PdfPagesTree.cpp. Remote attackers could leverage this vulnerability to cause a ...

CWE-6742018