CVSS: 8.8EPSS: 1%CPEs: 16EXPL: 0CVE-2018-4945 – Adobe Flash Microphone Type Confusion Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-4945
Adobe Flash Player versions 29.0.0.171 and earlier have a Type Confusion vulnerability. ... Adobe Flash Player en versiones 29.0.0.171 y anteriores tiene una vulnerabilidad de confusión de tipos. ... The issue results from the lack of proper validation of user-supplied data, which can result in a type confusion condition. • http://www.securityfocus.com/bid/104413 http://www.securitytracker.com/id/1041058 https://access.redhat.com/errata/RHSA-2018:1827 https://helpx.adobe.com/security/products/flash-player/apsb18-19.html https://security.gentoo.org/glsa/201806-02 https://access.redhat.com/security/cve/CVE-2018-4945 https://bugzilla.redhat.com/show_bug.cgi?id=1588500 • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 8.8EPSS: 1%CPEs: 11EXPL: 1CVE-2018-4233 – Apple Safari CreateThis Type Confusion Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-4233
By performing actions in JavaScript, an attacker can trigger a type confusion condition. • https://www.exploit-db.com/exploits/45998 http://packetstormsecurity.com/files/153148/Safari-Webkit-Proxy-Object-Type-Confusion.html http://www.securitytracker.com/id/1041029 https://security.gentoo.org/glsa/201808-04 https://support.apple.com/HT208848 https://support.apple.com/HT208850 https://support.apple.com/HT208851 https://support.apple.com/HT208852 https://support.apple.com/HT208853 https://support.apple.com/HT208854 https://usn.ubuntu.com/3687-1 https://github.com& • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 10EXPL: 0CVE-2018-4246
https://notcve.org/view.php?id=CVE-2018-4246
It allows remote attackers to execute arbitrary code via a crafted web site that leverages type confusion. ... Permite que los atacantes remotos ejecuten código arbitrario mediante un sitio web manipulado que aprovecha una confusión de tipos. • http://www.securitytracker.com/id/1041029 https://support.apple.com/HT208848 https://support.apple.com/HT208850 https://support.apple.com/HT208851 https://support.apple.com/HT208852 https://support.apple.com/HT208853 https://support.apple.com/HT208854 https://usn.ubuntu.com/3743-1 • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4219
https://notcve.org/view.php?id=CVE-2018-4219
It allows attackers to gain privileges via a crafted app that leverages type confusion. ... Permite que los atacantes obtengan privilegios mediante una app manipulada que aprovecha la confusión de tipos. • http://www.securitytracker.com/id/1041027 https://support.apple.com/HT208849 • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 8.8EPSS: 3%CPEs: 2EXPL: 0CVE-2018-7407
https://notcve.org/view.php?id=CVE-2018-7407
The issue results from the lack of proper validation of user-supplied data, which can result in a type confusion condition. ... El problema deriva de la falta de validación correcta de información proporcionada por el usuario, lo que puede dar como resultado una condición de confusión de tipos. • http://www.securityfocus.com/bid/104300 https://srcincite.io/advisories/src-2018-0018 https://www.foxitsoftware.com/support/security-bulletins.php • CWE-704: Incorrect Type Conversion or Cast •