Page 110 of 906 results (0.037 seconds)

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2018-7815 – Schneider Electric GUIcon GD1 File Parsing Type Confusion Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2018-7815

A Type Confusion (CWE-843) vulnerability exists in Eurotherm by Schneider Electric GUIcon V2.0 (Gold Build 683.0) on c3core.dll which could cause remote code to be executed when parsing a GD1 file Existe una vulnerabilidad de confusión de tipos (CWE-843) en Eurotherm, de Schneider Electric GUIcon V2.0 (Gold Build 683.0), en c3core.dll, lo que podría provocar que se ejecute código remoto al analizar un archivo GD1. ... The issue results from the lack of proper validation of user-supplied data, which can result in a type confusion condition. • http://www.securityfocus.com/bid/106218 https://www.schneider-electric.com/ww/en/download/document/SEVD-2018-338-01 • CWE-704: Incorrect Type Conversion or Cast •

CVSS: 7.6EPSS: 17%CPEs: 9EXPL: 0

CVE-2018-8618 – Microsoft Chakra JavaScript Array Type Confusion Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2018-8618

By performing actions in JavaScript, an attacker can trigger a type confusion condition. • http://www.securityfocus.com/bid/106113 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8618 • CWE-787: Out-of-bounds Write •

CVSS: 8.8EPSS: 96%CPEs: 10EXPL: 1

CVE-2018-8617 – Microsoft Chakra Array Type Confusion Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2018-8617

By performing actions in JavaScript, an attacker can trigger a type confusion condition. ... Microsoft Edge suffers from a Chakra related type confusion vulnerability in InlineArrayPush. • https://www.exploit-db.com/exploits/46202 http://www.securityfocus.com/bid/106112 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8617 • CWE-787: Out-of-bounds Write •

CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0

CVE-2018-9568 – kernel: Memory corruption due to incorrect socket cloning

https://notcve.org/view.php?id=CVE-2018-9568

In sk_clone_lock of sock.c, there is a possible memory corruption due to type confusion. ... En sk_clone_lock en sock.c, hay una posible corrupción de memoria debido a una confusión de tipos. ... A possible memory corruption due to a type confusion was found in the Linux kernel in the sk_clone_lock() function in the net/core/sock.c. • https://access.redhat.com/errata/RHSA-2019:0512 https://access.redhat.com/errata/RHSA-2019:0514 https://access.redhat.com/errata/RHSA-2019:2696 https://access.redhat.com/errata/RHSA-2019:2730 https://access.redhat.com/errata/RHSA-2019:2736 https://access.redhat.com/errata/RHSA-2019:3967 https://access.redhat.com/errata/RHSA-2019:4056 https://access.redhat.com/errata/RHSA-2019:4159 https://access.redhat.com/errata/RHSA-2019:4164 https://access.redhat.com/errata/RHSA • CWE-122: Heap-based Buffer Overflow CWE-704: Incorrect Type Conversion or Cast •

CVSS: 7.8EPSS: 1%CPEs: 15EXPL: 1

CVE-2018-19476 – ghostscript: access bypass in psi/zicc.c (700169)

https://notcve.org/view.php?id=CVE-2018-19476

psi/zicc.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because of a setcolorspace type confusion. psi/zicc.c en Artifex Ghostscript en versiones anteriores a la 9.26 permite a los atacantes remotos omitir las restricciones de acceso planeadas debido a una confusión del tipo setcolorspace. • http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=67d760ab775dae4efe803b5944b0439aa3c0b04a http://git.ghostscript.com/?p=ghostpdl.git%3Bh=434753adbe8be5534bfb9b7d91746023e8073d16 http://www.securityfocus.com/bid/106154 https://access.redhat.com/errata/RHBA-2019:0327 https://access.redhat.com/errata/RHSA-2019:0229 https://bugs.ghostscript.com/show_bug.cgi?id=700169 https://lists.debian.org/debian-lts-announce/2018/11/msg00036.html https://semmle.com/news/semmle-discovers-severe-vulnerability-ghostscript&# • CWE-704: Incorrect Type Conversion or Cast CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •