Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-617

CWE-617

Reachable Assertion

Parent: CWE-705 - Incorrect Control Flow Scoping

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

748 vulnerabilities with CWE-617

CVE-2026-31398 HIGH

mm/rmap: fix incorrect pte restoration for lazyfree folios

CVE-2026-30867 MEDIUM

CocoaMQTT: Denial of Service via Reachable Assertion in `PUBLISH` Packet Parsing

CVE-2026-34219 MEDIUM

libp2p-gossipsub: Gossipsub PRUNE Backoff Heartbeat Instant Overflow

CVE-2026-33977 MEDIUM

FreeRDP: DoS via WINPR_ASSERT in IMA ADPCM audio decoder (dsp.c:331)

CVE-2026-33952 MEDIUM

FreeRDP: DoS via WINPR_ASSERT in rts_read_auth_verifier_no_checks

CVE-2026-4046 HIGH

iconv crash due to assertion failure with untrusted input

CVE-2026-5170 MEDIUM

Users could trigger a crash of mongod primaries during promotion to sharded

CVE-2026-3119 MEDIUM

Authenticated query containing a TKEY record may cause named to terminate unexpectedly

CVE-2026-23356 MEDIUM

drbd: fix "LOGIC BUG" in drbd_al_begin_io_nonblock()

CVE-2026-3608 HIGH

ISC Kea - Stack Overflow Denial of Service

CVE-2026-23555 HIGH

Xenstored DoS by unprivileged domain

CVE-2026-27135 HIGH

nghttp2 Denial of service: Assertion failure due to the missing state validation

CVE-2026-23238 MEDIUM

Linux Kernel 2.6.12.1-5.10.251 - Reachable Assertion via romfs sb_set_blocksize Failure

CVE-2026-27809 CRITICAL

psd-tools < 1.12.2 - Denial of Service via Malformed RLE-Compressed Image Data

CVE-2026-27015 MEDIUM

FreeRDP < 3.23.0 - Denial of Service via Smartcard Read Size Alignment Bounds Check

CVE-2026-2523 MEDIUM

open5gs < 2.7.6 - Reachable Assertion in SMF GN Handler

CVE-2026-25610 MEDIUM

MongoDB 7.0.0-7.0.28 - Authenticated Denial of Service via $geoNear Pipeline with Invalid Index Hints

CVE-2026-23067 MEDIUM

Linux Kernel 6.16-6.18.8 - Reachable Assertion via IOVA Address Overflow in IOMMU Unmap Path

CVE-2026-20422 MEDIUM

MediaTek Modem - Input Validation Denial of Service

CVE-2026-20405 MEDIUM

MediaTek Modem - Bounds Check Denial of Service

CVE-2026-20401 HIGH

MediaTek NR15 and MT Series - Remote Denial of Service via Rogue Base Station

CVE-2026-1738 MEDIUM

open5gs < 2.7.6 - Reachable Assertion in SGWC Tunnel Addition

CVE-2026-1737 MEDIUM

open5gs < 2.7.6 - Reachable Assertion in CreateBearerRequest Handler

CVE-2026-1736 MEDIUM

Open5GS <2.7.6 - Reachable Assertion

CVE-2026-24826 CRITICAL

cadaver turso3d - Memory Safety and Divide-by-Zero Flaws

Previous Page 3 of 30 Next

Details

Vulnerabilities 748

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy