CVSS: 7.8EPSS: 0%CPEs: 31EXPL: 0CVE-2023-21675 – Windows Kernel Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-21675
Windows Kernel Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios del kernel de Windows Microsoft Windows suffers from a kernel memory corruption due to an insufficient handling of predefined keys in registry virtualization. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21675 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.8EPSS: 0%CPEs: 90EXPL: 0CVE-2022-25721 – Incorrect Type Conversion in Video driver
https://notcve.org/view.php?id=CVE-2022-25721
Memory corruption in video driver due to type confusion error during video playback Corrupción de la memoria en el controlador de video debido a un error de confusión de tipos durante la reproducción de video • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2022-4378 – kernel: stack overflow in do_proc_dointvec and proc_skip_spaces
https://notcve.org/view.php?id=CVE-2022-4378
A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes certain kernel parameters and variables. This flaw allows a local user to crash or potentially escalate their privileges on the system. • id=2152548 https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-avoid-integer-type-confusion-in-get_proc_long.patch https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-6.0/proc-proc_skip_spaces-shouldn-t-think-it-is-working-on-c-strings.patch https://seclists.org/oss-sec/2022/q4/178 https://access.redhat.com/security/cve/CVE-2022-4378 • CWE-131: Incorrect Calculation of Buffer Size CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2022-42841
https://notcve.org/view.php?id=CVE-2022-42841
A type confusion issue was addressed with improved checks. ... Se solucionó un problema de confusión de tipos con comprobaciones mejoradas. • http://seclists.org/fulldisclosure/2022/Dec/23 http://seclists.org/fulldisclosure/2022/Dec/24 http://seclists.org/fulldisclosure/2022/Dec/25 https://support.apple.com/en-us/HT213532 https://support.apple.com/en-us/HT213533 https://support.apple.com/en-us/HT213534 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2022-42856 – Apple iOS Type Confusion Vulnerability
https://notcve.org/view.php?id=CVE-2022-42856
A type confusion issue was addressed with improved state handling. ... A vulnerability was found in webkitgtk, where a type confusion issue was addressed with improved memory handling. ... Apple iOS contains a type confusion vulnerability when processing maliciously crafted web content leading to code execution. • http://seclists.org/fulldisclosure/2022/Dec/21 http://seclists.org/fulldisclosure/2022/Dec/22 http://seclists.org/fulldisclosure/2022/Dec/23 http://seclists.org/fulldisclosure/2022/Dec/26 http://seclists.org/fulldisclosure/2022/Dec/28 http://www.openwall.com/lists/oss-security/2022/12/26/1 https://security.gentoo.org/glsa/202305-32 https://support.apple.com/en-us/HT213516 https://support.apple.com/en-us/HT213531 https://support.apple.com/en-us/HT213532 https:&#x • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •