CVSS: 7.5EPSS: 4%CPEs: 1EXPL: 1CVE-2019-11706 – Thunderbird ESR < 60.7.XXX - Type Confusion
https://notcve.org/view.php?id=CVE-2019-11706
A flaw in Thunderbird's implementation of iCal causes a type confusion in icaltimezone_get_vtimezone_properties when processing certain email messages, resulting in a crash. ... Una fallo en la implementación de iCal en Thunderbird causa una confusión de tipo en icaltimezone_get_vtimezone_properties cuando se procesan ciertos mensajes de correo electrónico, lo que resulta un fallo. • https://www.exploit-db.com/exploits/47001 https://bugzilla.mozilla.org/show_bug.cgi?id=1555646 https://security.gentoo.org/glsa/201908-20 https://www.mozilla.org/security/advisories/mfsa2019-17 https://access.redhat.com/security/cve/CVE-2019-11706 https://bugzilla.redhat.com/show_bug.cgi?id=1720011 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.6EPSS: 5%CPEs: 18EXPL: 0CVE-2019-0988 – Microsoft Windows jscript9 RegExp.input Type Confusion Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2019-0988
By performing actions in JavaScript, an attacker can trigger a type confusion condition. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0988 https://www.zerodayinitiative.com/advisories/ZDI-19-723 • CWE-787: Out-of-bounds Write CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.6EPSS: 5%CPEs: 20EXPL: 0CVE-2019-0920 – Microsoft Windows ADODB Type Confusion Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2019-0920
By performing actions in script, an attacker can trigger a type confusion condition. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0920 https://www.zerodayinitiative.com/advisories/ZDI-19-625 https://www.zerodayinitiative.com/advisories/ZDI-19-626 https://www.zerodayinitiative.com/advisories/ZDI-19-627 https://www.zerodayinitiative.com/advisories/ZDI-19-638 https://www.zerodayinitiative.com/advisories/ZDI-19-639 • CWE-787: Out-of-bounds Write CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 0CVE-2019-2097
https://notcve.org/view.php?id=CVE-2019-2097
In HAliasAnalyzer.Query of hydrogen-alias-analysis.h, there is possible memory corruption due to type confusion. ... En la función HAliasAnalyzer.Query del archivo hidrogen-alias-analysis.h, existe una posible corrupción de memoria debido a una confusión de tipo. • https://source.android.com/security/bulletin/2019-06-01 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-6532 – Panasonic Control FPWIN PRO Project File Parsing sc_obj Type Confusion Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2019-6532
Panasonic FPWIN Pro version 7.3.0.0 and prior allows attacker-created project files to be loaded by an authenticated user triggering incompatible type errors because the resource does not have expected properties. ... The issue results from the lack of proper validation of user-supplied data, which can result in a type confusion condition. • http://www.securityfocus.com/bid/108683 https://ics-cert.us-cert.gov/advisories/ICSA-19-157-02 https://www.zerodayinitiative.com/advisories/ZDI-19-566 https://www.zerodayinitiative.com/advisories/ZDI-19-568 https://www.zerodayinitiative.com/advisories/ZDI-19-570 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •