CWE-704: CWE-704

This vulnerability allows a remote attacker who has already compromised Chrome's renderer process to exploit heap corruption through a bad cast in the...

A type confusion vulnerability in QuickJS engine's string addition operation allows attackers to trigger callbacks that modify operand types in memory...

This vulnerability involves an invalid downcast from nsTextNode to SVGElement in Mozilla products, which could lead to undefined behavior including po...

This vulnerability involves an incorrect type conversion from 64-bit to 32-bit integers in Mozilla products, allowing memory corruption that could lea...

CVE-2023-6249 is an incorrect type conversion vulnerability in the Zephyr RTOS esp32_ipm_send function, where a signed integer is improperly converted...

A type confusion vulnerability in the Linux kernel's libceph component allows reading/writing to incorrect memory locations when using the msgr2 proto...

This vulnerability allows attackers to execute arbitrary code or cause denial of service by exploiting memory corruption in IOCTL handling. It affects...

A type confusion vulnerability in Tecnomatix Plant Simulation allows attackers to execute arbitrary code by tricking users into opening malicious IGS ...

This CVE is an alignment vulnerability in ImageMagick's property.c file where misaligned memory access for double and float types can cause undefined ...

CVE-2021-1027 is a type confusion vulnerability in Android's SurfaceFlinger component that allows local privilege escalation. Attackers can execute ar...

An unaligned memory access vulnerability in Contiki-NG's RPL implementations can cause system crashes when processing malformed IPv6 packets with odd ...

This vulnerability allows attackers to cause denial of service in OpenPLC Runtime by sending specially crafted EtherNet/IP requests that trigger inval...

This vulnerability allows arbitrary code execution through incorrect type conversion when processing specially crafted DICOM files in OFFIS DCMTK. Att...

This vulnerability allows attackers to cause a denial-of-service (DoS) condition in Qualcomm devices by sending specially crafted DL NAS TRANSPORT mes...

CVE-2022-25852 is a Denial of Service vulnerability in pg-native and libpq packages where non-array arguments cause casting failures that crash the ap...

This vulnerability in Qualcomm Snapdragon chipsets allows denial of service attacks due to improper hex data decoding in SIB2 OTA messages. When proce...

This vulnerability in the HwNearbyMain module of HarmonyOS allows unauthorized actors to access sensitive information, potentially leading to process ...

This vulnerability in the Net::Netmask Perl module allows attackers to bypass IP-based access controls by using IP addresses with leading zeros. Syste...

A type confusion vulnerability in iccDEV allows malformed ICC color profiles to trigger undefined behavior when loading invalid icImageEncodingType va...

An authenticated MongoDB user can crash the database server by executing a query that targets a collection with an invalid compound wildcard index. Th...

A Linux kernel vulnerability in the perf/dwc_pcie driver causes duplicate pci_dev devices during platform_device_register, leading to memory corruptio...

A Linux kernel readahead vulnerability causes occasional system hangs when used with NFS (Network File System). The issue occurs when the readahead wi...

This CVE describes a base64 decoding inconsistency in Python's base64 module where '+' and '/' characters are always accepted even when using alternat...

CVE-2026-22041 is a type conversion vulnerability in the Logging Redactor Python library that causes type errors when non-string data is processed wit...

A type compatibility issue in Keylime versions 7.12.0 prevents the registrar from reading agent registration data stored by older versions (like 7.11....