Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-130

CWE-130

Improper Handling of Length Parameter Inconsistency

Parent: CWE-240 - Improper Handling of Inconsistent Structural Elements

The product parses a formatted message or structure, but it does not handle or incorrectly handles a length field that is inconsistent with the actual length of the associated data.

86 vulnerabilities with CWE-130

Heap overflow in libnv

CVE-2026-3868 HIGH

Moxa EDR-8010 Series < 3.23 - Buffer Overflow

CVE-2026-41898 CRITICAL

rust-openssl 0.9.24-0.10.77 - Buffer Overflow

CVE-2026-5367 HIGH

Ovn: ovn: information disclosure via crafted dhcpv6 packets

CVE-2026-5265 MEDIUM

Ovn: ovn: heap over-read in icmp error response generation - security issue

CVE-2026-41035 HIGH

Samba Rsync < 3.4.1 - Use After Free

CVE-2026-33555 MEDIUM

HAProxy <3.3.6 - Request Smuggling

CVE-2026-40199 MEDIUM

Net::CIDR::Lite versions before 0.23 for Perl mishandles IPv4 mapped IPv6 addresses, which may allow IP ACL bypass

CVE-2026-34831 MEDIUM

Rack: Content-Length mismatch in Rack::Files error responses

CVE-2026-33936 MEDIUM

python-ecdsa: Denial of Service via improper DER length validation in crafted private keys

CVE-2026-25572 MEDIUM

SICAM SIAPP SDK <V2.1.7 - Buffer Overflow

CVE-2026-25571 MEDIUM

SICAM SIAPP SDK <V2.1.7 - Buffer Overflow

CVE-2026-22861 HIGH

Color Iccdev < 2.3.1.2 - Out-of-Bounds Write

CVE-2026-22255 HIGH

iccDEV <2.3.1.2 - Buffer Overflow

CVE-2026-22047 HIGH

Color Iccdev < 2.3.1.2 - Out-of-Bounds Write

CVE-2026-22046 HIGH

iccDEV <2.3.1.2 - Buffer Overflow

CVE-2025-48022 MEDIUM

Yokogawa Electric Corporation - DoS

CVE-2025-14847 HIGH KEV

MongoDB Memory Disclosure (CVE-2025-14847) - Mongobleed

CVE-2025-8531 MEDIUM

Mitsubishi Electric MELSEC-Q Series - Buffer Overflow

CVE-2025-10458 HIGH

Product Name - Info Disclosure

CVE-2025-26432 MEDIUM

Google Android - Denial of Service

CVE-2025-5514 MEDIUM

Mitsubishi Electric MELSEC iQ-F Series - DoS

CVE-2025-54646 MEDIUM

BLE Module - Info Disclosure

CVE-2025-52949 MEDIUM

Juniper Junos < 21.4 - Denial of Service

CVE-2025-53604 MEDIUM

Web-Push <0.10.3 - DoS

Page 1 of 4 Next

Details

Vulnerabilities 86

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy