CWE-407

Inefficient Algorithmic Complexity

No catalog description on file. The MITRE CWE site has the canonical reference.

CVEs (total)

4

Critical

0

High

2

Medium

2

Low

0

Severity distribution

Recent CVEs

showing 4 of 4

CVE-2026-45664Medium· 5.3EPSS 0%1 d ago
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-47 and 7.1.2-22, because of a missing check in the MNG coder it would be possible to read more images than the list limi
CVE-2026-8889High· 7.5EPSS 0%2 d ago
Version 3.0.7 of the Securly Chrome Extension uses deprecated SHA-1 hashing for IWF CSAM URL matching (25,020 hashes) and CIPA blocklist matching (12,352 hashes).
CVE-2025-14831Medium· 5.3EPSS 0%2 d ago
A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Central Processing Unit) and memory consumption via specially crafted malicious certificates containing a large number of name constraints and
CVE-2026-41850High· 7.5EPSS 0%3 d ago
Applications that evaluate user-supplied Spring Expression Language (SpEL) expressions are vulnerable to an Algorithmic Denial of Service (DoS). By providing a specially crafted expression, an attacker can trigger excessive resource consump

CWE catalog data sourced from MITRE. CVE associations come from NVD weakness mappings; some CVEs carry multiple CWEs.