CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')
The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.
Last updated
Overview
CWE-835 (Loop with Unreachable Exit Condition ('Infinite Loop')) is a base-level software weakness catalogued by MITRE in the Common Weakness Enumeration (CWE). It describes a recurring type of mistake that can lead to exploitable security vulnerabilities.
Real-world CVEs
324 recorded CVEs are caused by CWE-835 (Loop with Unreachable Exit Condition ('Infinite Loop')), including 1 in CISA's KEV (Known Exploited Vulnerabilities) catalog. KEVs are shown first. 97 new CWE-835 CVEs have been recorded so far in 2026 (47 in 2025).