CWE-670
Always-Incorrect Control Flow Implementation
The code contains a control flow path that does not reflect the algorithm that the path is intended to implement, leading to incorrect behavior any time this path is navigated.
114 vulnerabilities with CWE-670
CVE-2026-1874
MELSEC iQ-F FX5-ENET/IP <=1.106 - DoS
CVE-2026-26267
HIGH
soroban-sdk <22.0.10/23.5.2/25.1.1 - Code Injection
CVSS 7.5
CVE-2025-33199
LOW
NVIDIA DGX Spark GB10 - Memory Corruption
CVSS 3.2
CVE-2025-32942
HIGH
SSH Tectia Server <6.6.6 - Info Disclosure
CVSS 7.2
CVE-2025-43359
CRITICAL
tvOS 26 - Info Disclosure
CVSS 9.8
CVE-2025-38291
MEDIUM
Linux Kernel - Info Disclosure
CVSS 5.5
CVE-2025-49091
HIGH
KDE Konsole <25.04.2 - RCE
CVSS 8.2
CVE-2025-32996
MEDIUM
http-proxy-middleware <2.0.8, <3.0.4 - Info Disclosure
CVSS 4.0
CVE-2025-2886
MEDIUM
Tough <0.20.0 - Info Disclosure
CVSS 4.5
CVE-2025-29312
CRITICAL
onos <2.7.0 - Info Disclosure
CVSS 9.1
CVE-2022-49393
MEDIUM
Linux Kernel - Buffer Overflow
CVSS 5.5
CVE-2025-24800
ismp-grandpa <15.0.1 - RCE
CVE-2025-21607
HIGH
Vyper - Code Injection
CVSS 7.5
CVE-2024-53271
HIGH
Envoy <1.31.5-1.32.3 - DoS
CVSS 7.1
CVE-2024-53270
HIGH
Envoy - Use After Free
CVSS 7.5
CVE-2024-53269
MEDIUM
Envoy <1.32.2-1.30.8 - DoS
CVSS 4.5
CVE-2024-53134
MEDIUM
Linux Kernel - Buffer Overflow
CVSS 5.5
CVE-2024-52811
HIGH
Ngtcp2 - Buffer Overflow
CVSS 8.2
CVE-2024-8811
HIGH
WinZip - Info Disclosure
CVSS 7.8
CVE-2024-30133
MEDIUM
HCL Traveler for Microsoft Outlook - Control Flow Vulnerability
CVSS 5.3
CVE-2024-47745
HIGH
Linux kernel - Privilege Escalation
CVSS 7.8
CVE-2024-38365
HIGH
btcd <0.24 - Consensus Failure
CVSS 7.4
CVE-2024-25622
LOW
h2o - Info Disclosure
CVSS 3.1
CVE-2024-47168
MEDIUM
Gradio - Info Disclosure
CVSS 4.3
CVE-2024-47763
MEDIUM
Wasmtime - Runtime Crash
CVSS 5.5
Details
Vulnerabilities
114