CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2020-2907 – Oracle VirtualBox VBoxSVGA Type Confusion Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-2907
The issue results from the lack of proper validation of user-supplied data, which can result in a type confusion condition. • http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00001.html https://security.gentoo.org/glsa/202101-09 https://www.oracle.com/security-alerts/cpuapr2020.html https://www.zerodayinitiative.com/advisories/ZDI-20-509 https://www.zerodayinitiative.com/advisories/ZDI-20-510 • CWE-20: Improper Input Validation CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 8.8EPSS: 0%CPEs: 8EXPL: 1CVE-2020-6430 – chromium-browser: Type Confusion in V8
https://notcve.org/view.php?id=CVE-2020-6430
Type Confusion in V8 in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Una Confusión de Tipos en V8 en Google Chrome versiones anteriores a 81.0.4044.92, permitió a un atacante remoto explotar potencialmente una corrupción de la pila (heap) por medio de una página HTML diseñada. • http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00024.html http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00031.html https://chromereleases.googleblog.com/2020/04/stable-channel-update-for-desktop_7.html https://crbug.com/1031479 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XWIVVYIQU67QR2LHNGGZBS4FZOW2RQO https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HFVP775RPRDVY5FUCN7ABH5AE74TQFDD https://lists.fedor • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-11603
https://notcve.org/view.php?id=CVE-2020-11603
Type confusion in the MLDAP Trustlet allows arbitrary code execution. ... Una confusión de tipos en el Trustlet MLDAP permite una ejecución de código arbitrario. • https://security.samsungmobile.com/securityUpdate.smsb https://www.tuttoandroid.net/samsung/samsung-patch-sicurezza-aprile-2020-798658 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 9.3EPSS: 2%CPEs: 8EXPL: 0CVE-2020-3897 – Apple Safari Object Transition Cache Type Confusion Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-3897
A type confusion issue was addressed with improved memory handling. ... Se abordó un problema de confusión de tipos con un manejo de la memoria mejorado. ... By performing actions in JavaScript, an attacker can trigger a type confusion condition. • https://support.apple.com/HT211101 https://support.apple.com/HT211102 https://support.apple.com/HT211103 https://support.apple.com/HT211104 https://support.apple.com/HT211105 https://support.apple.com/HT211106 https://support.apple.com/HT211107 https://access.redhat.com/security/cve/CVE-2020-3897 https://bugzilla.redhat.com/show_bug.cgi?id=1876468 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 8.8EPSS: 1%CPEs: 7EXPL: 0CVE-2020-3901 – webkitgtk: Type confusion leading to arbitrary code execution
https://notcve.org/view.php?id=CVE-2020-3901
A type confusion issue was addressed with improved memory handling. ... Se abordó un problema de confusión de tipos con un manejo de la memoria mejorado. • https://support.apple.com/HT211101 https://support.apple.com/HT211102 https://support.apple.com/HT211103 https://support.apple.com/HT211104 https://support.apple.com/HT211105 https://support.apple.com/HT211106 https://support.apple.com/HT211107 https://access.redhat.com/security/cve/CVE-2020-3901 https://bugzilla.redhat.com/show_bug.cgi?id=1876473 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •