CVSS: 8.0EPSS: 0%CPEs: 14EXPL: 0CVE-2024-37987 – Secure Boot Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-37987
Secure Boot Security Feature Bypass Vulnerability Vulnerabilidad de omisión de la función de seguridad de arranque seguro • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-37987 • CWE-122: Heap-based Buffer Overflow CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.0EPSS: 0%CPEs: -EXPL: 0CVE-2023-32737
https://notcve.org/view.php?id=CVE-2023-32737
This could allow an attacker to cause a type confusion and execute arbitrary code within the affected application. This is the same issue that exists for .NET BinaryFormatter https://docs.microsoft.com/en-us/visualstudio/code-quality/ca2300. ... Esto podría permitir que un atacante cause confusión de tipos y ejecute código arbitrario dentro de la aplicación afectada. • https://cert-portal.siemens.com/productcert/html/ssa-313039.html • CWE-502: Deserialization of Untrusted Data •
CVSS: 7.0EPSS: 0%CPEs: 6EXPL: 0CVE-2023-32735
https://notcve.org/view.php?id=CVE-2023-32735
This could allow an attacker to cause a type confusion and execute arbitrary code within the affected application. This is the same issue that exists for .NET BinaryFormatter https://docs.microsoft.com/en-us/visualstudio/code-quality/ca2300. ... Esto podría permitir que un atacante cause confusión de tipos y ejecute código arbitrario dentro de la aplicación afectada. • https://cert-portal.siemens.com/productcert/html/ssa-779936.html • CWE-502: Deserialization of Untrusted Data •
CVSS: 8.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-45147
https://notcve.org/view.php?id=CVE-2022-45147
This could allow an attacker to cause a type confusion and execute arbitrary code within the affected application. This is the same issue that exists for .NET BinaryFormatter https://docs.microsoft.com/en-us/visualstudio/code-quality/ca2300. ... Esto podría permitir que un atacante cause confusión de tipos y ejecute código arbitrario dentro de la aplicación afectada. • https://cert-portal.siemens.com/productcert/html/ssa-825651.html • CWE-502: Deserialization of Untrusted Data •
CVSS: 3.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-36278 – Arkcompiler Ets Runtime has a type confusion vulnerability
https://notcve.org/view.php?id=CVE-2024-36278
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause apps crash through type confusion. En OpenHarmony v4.0.0 y versiones anteriores permiten que un atacante local provoque que las aplicaciones fallen debido a confusión de tipos. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-07.md • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •