CWE-704
271 CVEs • Abstraction: Class
Incorrect Type Conversion or Cast
The product does not correctly convert an object, resource, or structure from one type to a different type.
CVEs (271)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Qualcomm 6Sd 8 Gen1 5g Firmware Wcd9380 FirmwareWcn6855 Firmware+3 moreJun 17, 2026 Apr 1, 2022 N/A· v4 8.8 HIGH· v3 7.2 HIGH· v2 Possible buffer overflow to improper validation of hash segment of file while allocating memory in Snapdragon Connectivity, Snapdragon Mobile |
1Qualcomm 157Apq8009w Firmware Apq8017 FirmwareApq8053 Firmware+154 moreJun 17, 2026 Apr 1, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Possible out of bounds access due to improper input validation during graphics profiling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mob...Show more |
3Fedoraproject LinuxOracle5Communications Cloud Native Core Binding Support Function Communications Cloud Native Core Network Exposure FunctionCommunications Cloud Native Core Policy+2 moreJun 17, 2026 Mar 25, 2022 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 A flaw was found in the sctp_make_strreset_req function in net/sctp/sm_make_chunk.c in the SCTP network protocol in the Linux kernel with a local user privilege access. In this flaw, an attempt to use more buffer than is...Show more |
A Denial of Service vulnerability exists in jhead 3.04 and 3.05 due to a wild address read in the Get16u function in exif.c in will cause segmentation fault via a crafted_file. |
3Debian FedoraprojectIsync Project3Debian Linux FedoraIsyncJun 17, 2026 Feb 16, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A flaw was found in mbsync before v1.3.6 and v1.4.2, where an unchecked pointer cast allows a malicious or compromised server to write an arbitrary integer value past the end of a heap-allocated structure by issuing an u...Show more |
The package nanoid from 3.0.0 and before 3.1.31 are vulnerable to Information Exposure via the valueOf() function which allows to reproduce the last id generated. |
1Qualcomm 110Apq8009w Firmware Apq8017 FirmwareApq8096au Firmware+107 moreJun 17, 2026 Jan 13, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and assigning a garbage value to choice when processing the SRS configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Co...Show more |
The HwNearbyMain module has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability may cause a process to restart. |
In setTransactionState of SurfaceFlinger, there is possible arbitrary code execution in a privileged process due to improper casting. This could lead to local escalation of privilege with no additional execution privileg...Show more |
2Debian Mozilla4Debian Linux FirefoxFirefox Esr+1 moreJun 17, 2026 Dec 8, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 An incorrect type conversion of sizes from 64bit to 32bit integers allowed an attacker to corrupt memory leading to a potentially exploitable crash. This vulnerability affects Thunderbird < 91.4.0, Firefox ESR < 91.4.0,...Show more |
1Qualcomm 84Aqt1000 Firmware Qca6390 FirmwareQca6391 Firmware+81 moreJun 17, 2026 Sep 8, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Incorrect pointer argument passed to trusted application TA could result in un-intended memory operations in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT |
Cachet is an open source status page system. Prior to version 2.5.1 authenticated users, regardless of their privileges (User or Admin), can trick Cachet and install the instance again, leading to arbitrary code executio...Show more |
3Debian GnuNetapp7Active Iq Unified Manager Debian LinuxE Series Santricity Os Controller+4 moreJun 17, 2026 Jul 22, 2021 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 The wordexp function in the GNU C Library (aka glibc) through 2.33 may crash or read arbitrary memory in parse_param (in posix/wordexp.c) when called with an untrusted, crafted pattern, potentially resulting in a denial...Show more |
The Net::Netmask module before 2.0000 for Perl does not properly consider extraneous zero characters at the beginning of an IP address string, which (in some situations) allows attackers to bypass access control that is...Show more |
Improper input validation of octal strings in netmask npm package v1.0.6 and below allows unauthenticated remote attackers to perform indeterminate SSRF, RFI, and LFI attacks on many of the dependent packages. A remote u...Show more |
The Data::Validate::IP module through 0.29 for Perl does not properly consider extraneous zero characters at the beginning of an IP address string, which (in some situations) allows attackers to bypass access control tha...Show more |
2Opendesign Siemens4Comos Drawings Software Development KitJt2go+1 moreJun 17, 2026 Jan 18, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A Type Conversion issue exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash, potentially enabling a...Show more |
Type confusion in Gallagher Command Centre Server allows a remote attacker to crash the server or possibly cause remote code execution. This issue affects: Gallagher Command Centre 8.30 versions prior to 8.30.1236(MR1);...Show more |
In SurfaceFlinger::createLayer of SurfaceFlinger.cpp, there is a possible arbitrary code execution due to improper casting. This could lead to local escalation of privilege with no additional execution privileges needed....Show more |
An issue was discovered in the rand_core crate before 0.4.2 for Rust. Casting of byte slices to integer slices mishandles alignment constraints. |