← Back
CWE-704

271 CVEs • Abstraction: Class

Incorrect Type Conversion or Cast

The product does not correctly convert an object, resource, or structure from one type to a different type.

JSON object

Loading...

CVEs (271)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
1Qualcomm
6Sd 8 Gen1 5g Firmware
Wcd9380 FirmwareWcn6855 Firmware+3 more
Jun 17, 2026
Apr 1, 2022
N/A· v4
8.8 HIGH· v3
7.2 HIGH· v2
Possible buffer overflow to improper validation of hash segment of file while allocating memory in Snapdragon Connectivity, Snapdragon Mobile
1Qualcomm
157Apq8009w Firmware
Apq8017 FirmwareApq8053 Firmware+154 more
Jun 17, 2026
Apr 1, 2022
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
Possible out of bounds access due to improper input validation during graphics profiling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mob...Show more
Possible out of bounds access due to improper input validation during graphics profiling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon WearablesShow less
3Fedoraproject
LinuxOracle
5Communications Cloud Native Core Binding Support Function
Communications Cloud Native Core Network Exposure FunctionCommunications Cloud Native Core Policy+2 more
Jun 17, 2026
Mar 25, 2022
N/A· v4
5.5 MEDIUM· v3
2.1 LOW· v2
A flaw was found in the sctp_make_strreset_req function in net/sctp/sm_make_chunk.c in the SCTP network protocol in the Linux kernel with a local user privilege access. In this flaw, an attempt to use more buffer than is...Show more
A flaw was found in the sctp_make_strreset_req function in net/sctp/sm_make_chunk.c in the SCTP network protocol in the Linux kernel with a local user privilege access. In this flaw, an attempt to use more buffer than is allocated triggers a BUG_ON issue, leading to a denial of service (DOS).Show less
1Jhead Project
1Jhead
Jun 17, 2026
Mar 23, 2022
N/A· v4
5.5 MEDIUM· v3
4.3 MEDIUM· v2
A Denial of Service vulnerability exists in jhead 3.04 and 3.05 due to a wild address read in the Get16u function in exif.c in will cause segmentation fault via a crafted_file.
3Debian
FedoraprojectIsync Project
3Debian Linux
FedoraIsync
Jun 17, 2026
Feb 16, 2022
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
A flaw was found in mbsync before v1.3.6 and v1.4.2, where an unchecked pointer cast allows a malicious or compromised server to write an arbitrary integer value past the end of a heap-allocated structure by issuing an u...Show more
A flaw was found in mbsync before v1.3.6 and v1.4.2, where an unchecked pointer cast allows a malicious or compromised server to write an arbitrary integer value past the end of a heap-allocated structure by issuing an unexpected APPENDUID response. This could be plausibly exploited for remote code execution on the client.Show less
1Nanoid Project
1Nanoid
Jun 17, 2026
Jan 14, 2022
N/A· v4
5.5 MEDIUM· v3
2.1 LOW· v2
The package nanoid from 3.0.0 and before 3.1.31 are vulnerable to Information Exposure via the valueOf() function which allows to reproduce the last id generated.
1Qualcomm
110Apq8009w Firmware
Apq8017 FirmwareApq8096au Firmware+107 more
Jun 17, 2026
Jan 13, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and assigning a garbage value to choice when processing the SRS configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Co...Show more
Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and assigning a garbage value to choice when processing the SRS configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon WearablesShow less
1Huawei
1Harmonyos
Jun 17, 2026
Jan 3, 2022
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
The HwNearbyMain module has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability may cause a process to restart.
1Google
1Android
Jun 17, 2026
Dec 15, 2021
N/A· v4
7.8 HIGH· v3
4.6 MEDIUM· v2
In setTransactionState of SurfaceFlinger, there is possible arbitrary code execution in a privileged process due to improper casting. This could lead to local escalation of privilege with no additional execution privileg...Show more
In setTransactionState of SurfaceFlinger, there is possible arbitrary code execution in a privileged process due to improper casting. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12Android ID: A-193033243Show less
2Debian
Mozilla
4Debian Linux
FirefoxFirefox Esr+1 more
Jun 17, 2026
Dec 8, 2021
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
An incorrect type conversion of sizes from 64bit to 32bit integers allowed an attacker to corrupt memory leading to a potentially exploitable crash. This vulnerability affects Thunderbird < 91.4.0, Firefox ESR < 91.4.0,...Show more
An incorrect type conversion of sizes from 64bit to 32bit integers allowed an attacker to corrupt memory leading to a potentially exploitable crash. This vulnerability affects Thunderbird < 91.4.0, Firefox ESR < 91.4.0, and Firefox < 95.Show less
1Qualcomm
84Aqt1000 Firmware
Qca6390 FirmwareQca6391 Firmware+81 more
Jun 17, 2026
Sep 8, 2021
N/A· v4
7.8 HIGH· v3
4.6 MEDIUM· v2
Incorrect pointer argument passed to trusted application TA could result in un-intended memory operations in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT
1Catchethq
1Catchet
Jun 17, 2026
Aug 27, 2021
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
Cachet is an open source status page system. Prior to version 2.5.1 authenticated users, regardless of their privileges (User or Admin), can trick Cachet and install the instance again, leading to arbitrary code executio...Show more
Cachet is an open source status page system. Prior to version 2.5.1 authenticated users, regardless of their privileges (User or Admin), can trick Cachet and install the instance again, leading to arbitrary code execution on the server. This issue was addressed in version 2.5.1 by improving the middleware `ReadyForUse`, which now performs a stricter validation of the instance name. As a workaround, only allow trusted source IP addresses to access to the administration dashboard.Show less
3Debian
GnuNetapp
7Active Iq Unified Manager
Debian LinuxE Series Santricity Os Controller+4 more
Jun 17, 2026
Jul 22, 2021
N/A· v4
9.1 CRITICAL· v3
6.4 MEDIUM· v2
The wordexp function in the GNU C Library (aka glibc) through 2.33 may crash or read arbitrary memory in parse_param (in posix/wordexp.c) when called with an untrusted, crafted pattern, potentially resulting in a denial...Show more
The wordexp function in the GNU C Library (aka glibc) through 2.33 may crash or read arbitrary memory in parse_param (in posix/wordexp.c) when called with an untrusted, crafted pattern, potentially resulting in a denial of service or disclosure of information. This occurs because atoi was used but strtoul should have been used to ensure correct calculations.Show less
2Fedoraproject
Net\
2\
Fedora
Jun 17, 2026
Apr 6, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
The Net::Netmask module before 2.0000 for Perl does not properly consider extraneous zero characters at the beginning of an IP address string, which (in some situations) allows attackers to bypass access control that is...Show more
The Net::Netmask module before 2.0000 for Perl does not properly consider extraneous zero characters at the beginning of an IP address string, which (in some situations) allows attackers to bypass access control that is based on IP addresses.Show less
1Netmask Project
1Netmask
Jun 17, 2026
Apr 1, 2021
N/A· v4
9.1 CRITICAL· v3
6.4 MEDIUM· v2
Improper input validation of octal strings in netmask npm package v1.0.6 and below allows unauthenticated remote attackers to perform indeterminate SSRF, RFI, and LFI attacks on many of the dependent packages. A remote u...Show more
Improper input validation of octal strings in netmask npm package v1.0.6 and below allows unauthenticated remote attackers to perform indeterminate SSRF, RFI, and LFI attacks on many of the dependent packages. A remote unauthenticated attacker can bypass packages relying on netmask to filter IPs and reach critical VPN or LAN hosts.Show less
2Data\
Netapp
2\
Snapcenter
Jun 17, 2026
Mar 31, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
The Data::Validate::IP module through 0.29 for Perl does not properly consider extraneous zero characters at the beginning of an IP address string, which (in some situations) allows attackers to bypass access control tha...Show more
The Data::Validate::IP module through 0.29 for Perl does not properly consider extraneous zero characters at the beginning of an IP address string, which (in some situations) allows attackers to bypass access control that is based on IP addresses.Show less
2Opendesign
Siemens
4Comos
Drawings Software Development KitJt2go+1 more
Jun 17, 2026
Jan 18, 2021
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A Type Conversion issue exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash, potentially enabling a...Show more
An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A Type Conversion issue exists when rendering malformed .DXF and .DWG files. This can allow attackers to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart).Show less
1Gallagher
1Command Centre
Jun 17, 2026
Dec 14, 2020
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
Type confusion in Gallagher Command Centre Server allows a remote attacker to crash the server or possibly cause remote code execution. This issue affects: Gallagher Command Centre 8.30 versions prior to 8.30.1236(MR1);...Show more
Type confusion in Gallagher Command Centre Server allows a remote attacker to crash the server or possibly cause remote code execution. This issue affects: Gallagher Command Centre 8.30 versions prior to 8.30.1236(MR1); 8.20 versions prior to 8.20.1166(MR3); 8.10 versions prior to 8.10.1211(MR5); version 8.00 and prior versions.Show less
1Google
1Android
Jun 17, 2026
Oct 14, 2020
N/A· v4
7.8 HIGH· v3
4.6 MEDIUM· v2
In SurfaceFlinger::createLayer of SurfaceFlinger.cpp, there is a possible arbitrary code execution due to improper casting. This could lead to local escalation of privilege with no additional execution privileges needed....Show more
In SurfaceFlinger::createLayer of SurfaceFlinger.cpp, there is a possible arbitrary code execution due to improper casting. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9Android ID: A-137284057Show less
1Rand Project
1Rand
Jun 17, 2026
Sep 14, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
An issue was discovered in the rand_core crate before 0.4.2 for Rust. Casting of byte slices to integer slices mishandles alignment constraints.