CVSS: 5.9EPSS: 53%CPEs: 3EXPL: 1CVE-2019-9816 – Spidermonkey - IonMonkey Unexpected ObjectGroup in ObjectGroupDispatch Operation
https://notcve.org/view.php?id=CVE-2019-9816
A possible vulnerability exists where type confusion can occur when manipulating JavaScript objects in object groups, allowing for the bypassing of security checks within these groups. ... Se presenta una posible vulnerabilidad donde puede producirse una confusión de tipo al manipular objetos de JavaScript en grupos de objetos, lo que permite omitir las comprobaciones de seguridad dentro de estos grupos. • https://www.exploit-db.com/exploits/46940 https://bugzilla.mozilla.org/show_bug.cgi?id=1536768 https://www.mozilla.org/security/advisories/mfsa2019-13 https://www.mozilla.org/security/advisories/mfsa2019-14 https://www.mozilla.org/security/advisories/mfsa2019-15 https://access.redhat.com/security/cve/CVE-2019-9816 https://bugzilla.redhat.com/show_bug.cgi?id=1712625 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 8.8EPSS: 7%CPEs: 7EXPL: 0CVE-2019-0937 – Microsoft Chakra Exception Handling Type Confusion Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2019-0937
By performing actions in JavaScript, an attacker can trigger a type confusion condition. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0937 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 10%CPEs: 8EXPL: 0CVE-2019-7820 – Adobe Acrobat Pro DC XFA Template Type Confusion Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2019-7820
Adobe Acrobat and Reader versions 2019.010.20100 and earlier, 2019.010.20099 and earlier, 2017.011.30140 and earlier, 2017.011.30138 and earlier, 2015.006.30495 and earlier, and 2015.006.30493 and earlier have a type confusion vulnerability. ... Adobe Acrobat and Reader versiones 2019.010.20100 y anteriores, versiones 2019.010.20099 y anteriores, versiones 2017.011.30140 y anteriores, versiones 2017.011.30138 y anteriores, versiones 2015.006.30495 y anteriores, y versiones 2015.006.30493 y anteriores, tienen una vulnerabilidad de tipo confusión. ... The issue results from the lack of proper validation of user-supplied data, which can result in a type confusion condition. • http://www.securityfocus.com/bid/108315 https://helpx.adobe.com/security/products/acrobat/apsb19-18.html https://www.zerodayinitiative.com/advisories/ZDI-19-504 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 1CVE-2019-8591 – Apple macOS < 10.14.5 / iOS < 12.3 XNU - Wild-read due to bad cast in stf_ioctl
https://notcve.org/view.php?id=CVE-2019-8591
A type confusion issue was addressed with improved memory handling. ... Un problema de confusión de tipos fue abordado mejorando el manejo de la memoria. • https://www.exploit-db.com/exploits/46891 https://support.apple.com/HT210118 https://support.apple.com/HT210119 https://support.apple.com/HT210120 https://support.apple.com/HT210122 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 8.8EPSS: 1%CPEs: 7EXPL: 0CVE-2019-8597 – Apple Safari RenderInline Type Confusion Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2019-8597
The issue results from the lack of proper validation of user-supplied data, which can result in a type confusion condition. • https://support.apple.com/HT210118 https://support.apple.com/HT210119 https://support.apple.com/HT210120 https://support.apple.com/HT210123 https://support.apple.com/HT210124 https://support.apple.com/HT210125 https://support.apple.com/HT210212 https://access.redhat.com/security/cve/CVE-2019-8597 https://bugzilla.redhat.com/show_bug.cgi?id=1876894 • CWE-787: Out-of-bounds Write CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •