CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-16745
https://notcve.org/view.php?id=CVE-2017-16745
A Type Confusion issue was discovered in Delta Electronics Delta Industrial Automation Screen Editor, Version 2.00.23.00 or prior. An access of resource using incompatible type ('type confusion') vulnerability may allow an attacker to execute remote code when processing specially crafted .dpb files. Se ha descubierto una vulnerabilidad de confusión de tipos en Delta Industrial Automation Screen Editor de Delta Electronics en las versiones 2.00.23.00 y anteriores. Un acceso de recurso que utiliza una vulnerabilidad de tipo incompatible (confusión de tipos) podría permitir que un atacante ejecute código remotamente cuando se procesan archivos .dpb especialmente manipulados. • http://www.securityfocus.com/bid/102426 https://ics-cert.us-cert.gov/advisories/ICSA-18-004-01 • CWE-704: Incorrect Type Conversion or Cast CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 9.3EPSS: 1%CPEs: 13EXPL: 0CVE-2018-4920 – flash-plugin: Type Confusion - remote code execution vulnerability (APSB18-05)
https://notcve.org/view.php?id=CVE-2018-4920
Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type confusion vulnerability. ... Adobe Flash Player, en versiones 28.0.0.161 y anteriores, tiene una vulnerabilidad explotable de confusión de tipos. • http://www.securityfocus.com/bid/103383 http://www.securitytracker.com/id/1040509 https://access.redhat.com/errata/RHSA-2018:0520 https://helpx.adobe.com/security/products/flash-player/apsb18-05.html https://access.redhat.com/security/cve/CVE-2018-4920 https://bugzilla.redhat.com/show_bug.cgi?id=1555030 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-8076
https://notcve.org/view.php?id=CVE-2018-8076
ZenMate 1.5.4 for macOS suffers from a type confusion vulnerability within the com.zenmate.chron-xpc LaunchDaemon component. ... This could potentially result in an XPC object of the wrong type being passed as the first argument to the xpc_connection_create_from_endpoint function if controlled by an attacker. ... ZenMate 1.5.4 para macOS sufre de una vulnerabilidad de confusión de tipos en el componente LaunchDaemon com.zenmate.chron-xpc. • https://github.com/VerSprite/research/blob/master/advisories/VS-2018-016.md • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-5804
https://notcve.org/view.php?id=CVE-2018-5804
A type confusion error within the "identify()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.8 can be exploited to trigger a division by zero. Un error de confusión de tipos en la función "identify()" (internal/dcraw_common.cpp) en LibRaw, en versiones anteriores a la 0.18.8, puede explotarse para desencadenar una división entre cero. • https://github.com/LibRaw/LibRaw/blob/master/Changelog.txt https://github.com/LibRaw/LibRaw/commit/9f26ce37f5be86ea11bfc6831366558650b1f6ff https://secuniaresearch.flexerasoftware.com/advisories/81000 https://secuniaresearch.flexerasoftware.com/secunia_research/2018-3 • CWE-369: Divide By Zero CWE-704: Incorrect Type Conversion or Cast •
CVSS: 8.8EPSS: 53%CPEs: 5EXPL: 1CVE-2018-6064 – Xiaomi Mi6 V8 CollectValuesOrEntriesImpl Type Confusion Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-6064
Type Confusion in the implementation of __defineGetter__ in V8 in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Confusión de tipos en la implementación de __defineGetter__ en V8 en Google Chrome en versiones anteriores a la 65.0.3325.146 permitía que un atacante remoto pudiese explotar una corrupción de memoria dinámica (heap) mediante una página HTML manipulada. ... By performing actions in JavaScript, an attacker can trigger a type confusion condition. ... Chrome V8 suffers from a type confusion vulnerability in ElementsAccessorBase::CollectValuesOrEntriesImpl. • https://www.exploit-db.com/exploits/44394 http://www.securityfocus.com/bid/103297 https://access.redhat.com/errata/RHSA-2018:0484 https://chromereleases.googleblog.com/2018/03/stable-channel-update-for-desktop.html https://crbug.com/798644 https://www.debian.org/security/2018/dsa-4182 https://www.zerodayinitiative.com/advisories/ZDI-19-368 https://access.redhat.com/security/cve/CVE-2018-6064 https://bugzilla.redhat.com/show_bug.cgi?id=1552481 • CWE-704: Incorrect Type Conversion or Cast •