CWE-248

Uncaught Exception

Parent: CWE-705 - Incorrect Control Flow Scoping

An exception is thrown from a function, but it is not caught.

206 vulnerabilities with CWE-248
CVE-2024-58111 HIGH
HarmonyOS - Denial of Service in ArkUI SVG Parsing Module
CVSS 7.5
CVE-2024-8249 HIGH
mintplex-labs/anything-llm <6dc3642 - DoS
CVSS 7.5
CVE-2024-8020 HIGH
lightning-ai/pytorch-lightning <2.3.2 - DoS
CVSS 7.5
CVE-2024-11173 MEDIUM
librechat < 0.7.6 - Denial of Service via Malformed API Input
CVSS 6.5
CVE-2024-11172 HIGH
librechat < 0.7.6 - Unauthenticated Denial of Service via Unhandled Exception in checkBan Middleware
CVSS 7.5
CVE-2024-13417 MEDIUM
2N OS < 2.46 - Denial of Service via RFID Reader Payload
CVSS 4.6
CVE-2024-56946 MEDIUM
Technitium DNS Server <= v13.2.2 - DoS
CVSS 5.3
CVE-2024-54106 HIGH
HarmonyOS - Denial of Service via Image Decoding Null Pointer Dereference
CVSS 7.1
CVE-2024-11738 MEDIUM
rustls 0.23.13 - Denial of Service via Fragmented TLS ClientHello Message
CVSS 5.3
CVE-2024-20137 HIGH
MediaTek MT6890, MT7622, MT7915, MT7916, MT7981, MT7986 - Remote Denial of Service via WLAN Driver Exception Handling
CVSS 7.5
CVE-2024-29076 MEDIUM
Intel(R) CST software < 8.7.10803 - Authenticated Denial of Service via Uncaught Exception
CVSS 5.5
CVE-2024-51750 MEDIUM
Element Web < 1.11.85 - Denial of Service via Invalid Federation Messages
CVSS 5.0
CVE-2024-51518 MEDIUM
Huawei HarmonyOS - Availability Impact via Unverified Message Types
CVSS 5.3
CVE-2024-33848 MEDIUM
Intel RAID Web Console - Denial of Service via Uncaught Exception
CVSS 6.5
CVE-2024-43367 HIGH
boa_engine 0.16-0.18 - Denial of Service via AsyncGenerator State Transition
CVSS 7.5
CVE-2024-43357 HIGH
ECMA-262 2022-2024 - Type Confusion via Async Generator IteratorResult Then-able Manipulation
CVSS 8.6
CVE-2024-42037 CRITICAL
Huawei EMUI and HarmonyOS - Uncaught Exception in Graphics Module
CVSS 9.3
CVE-2024-38525 HIGH
dd-trace-cpp <0.2.2 - Memory Corruption
CVSS 7.5
CVE-2024-31217 MEDIUM
Strapi < 4.22.0 - Denial of Service via Media Upload Process
CVSS 5.3
CVE-2024-34363 HIGH
Envoy 1.28.0-1.28.3 - Denial of Service via Incomplete UTF-8 String Serialization
CVSS 7.5
CVE-2024-31904 MEDIUM
IBM App Connect Enterprise 11.0.0.1-11.0.0.25 & 12.0.1.0-12.0.12.0 DoS via Uncaught Exception
CVSS 6.5
CVE-2024-32995 MEDIUM
HarmonyOS - Denial of Service in AMS Module
CVSS 6.2
CVE-2024-3052 HIGH
Z/IP Gateway SDK < 7.14.00 - Denial of Service via Malformed S2 Nonce Get Command
CVSS 7.5
CVE-2024-3051 HIGH
Malformed Device Reset Locally - DoS
CVSS 7.5
CVE-2024-20049 MEDIUM
Yocto - Local Information Disclosure via Uncaught Exception in flashc
CVSS 4.4
Details
Vulnerabilities 206
Links
MITRE CWE Entry Search this CWE With Exploits