CWE-130
Improper Handling of Length Parameter Inconsistency
The product parses a formatted message or structure, but it does not handle or incorrectly handles a length field that is inconsistent with the actual length of the associated data.
86 vulnerabilities with CWE-130
CVE-2023-50248
MEDIUM
CKAN <2.9.10-2.10.3 - Memory Corruption
CVSS 4.5
CVE-2023-40167
MEDIUM
Jetty <9.4.52-12.0.1 - Info Disclosure
CVSS 5.3
CVE-2023-33192
HIGH
ntpd-rs - DoS
CVSS 7.5
CVE-2023-28964
HIGH
Juniper Networks Junos OS/Junos OS Evolved - DoS
CVSS 7.5
CVE-2022-36788
HIGH
Libslic3r - Out-of-Bounds Write
CVSS 8.1
CVE-2022-20690
MEDIUM
Cisco ATA 190 Series - Memory Corruption
CVSS 5.3
CVE-2022-20689
MEDIUM
Cisco ATA 190 Series - Memory Corruption
CVSS 5.3
CVE-2022-20686
MEDIUM
Cisco ATA 190 - RCE
CVSS 5.3
CVE-2022-41586
HIGH
Communication Framework - Info Disclosure
CVSS 7.5
CVE-2022-20870
HIGH
Cisco Ios XE - Denial of Service
CVSS 8.6
CVE-2022-3290
HIGH
GitHub ikus060/rdiffweb <2.4.8 - Info Disclosure
CVSS 7.5
CVE-2022-3272
HIGH
GitHub ikus060/rdiffweb <2.4.8 - Info Disclosure
CVSS 7.5
CVE-2022-2714
CRITICAL
GitHub francoisjacquet/rosariosis <10.0 - Info Disclosure
CVSS 9.8
CVE-2022-1543
HIGH
erudika/scoold <1.49.4 - Memory Corruption
CVSS 8.8
CVE-2022-0677
HIGH
Bitdefender Update Server <3.4.0.276 - DoS
CVSS 7.5
CVE-2022-0618
HIGH
Swift-nio-http2 - DoS
CVSS 7.5
CVE-2022-24666
HIGH
swift-nio-http2 <1.19.1 - DoS
CVSS 7.5
CVE-2021-27862
MEDIUM
Layer 2 - Info Disclosure
CVSS 4.7
CVE-2021-27861
MEDIUM
Layer 2 - Info Disclosure
CVSS 4.7
CVE-2021-38445
HIGH
OCI OpenDDS <3.18.1 - RCE
CVSS 7.0
CVE-2021-43666
HIGH
mbed TLS <3.0.0 - DoS
CVSS 7.5
CVE-2021-20610
HIGH
Mitsubishi Electric MELSEC iQ-R - Length Parameter Inconsistency
CVSS 7.5
CVE-2021-26329
MEDIUM
AMD Epyc 7601 Firmware - Integer Overflow
CVSS 5.5
CVE-2021-3454
MEDIUM
Zephyr < 2.6.0 - Reachable Assertion
CVSS 4.3
CVE-2021-36374
MEDIUM
Apache Ant <1.9.16, 1.10.11 - Memory Corruption
CVSS 5.5
Details
Vulnerabilities
86