Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-670

CWE-670

Always-Incorrect Control Flow Implementation

Parent: CWE-691 - Insufficient Control Flow Management

The code contains a control flow path that does not reflect the algorithm that the path is intended to implement, leading to incorrect behavior any time this path is navigated.

134 vulnerabilities with CWE-670

CVE-2021-38019 MEDIUM

Google Chrome <96.0.4664.45 - Info Disclosure

CVE-2021-43839 HIGH

Cronos < 0.6.5 - Transaction Fee Theft via Custom MsgEthereumTx

CVE-2021-43979 MEDIUM

Styra Open Policy Agent (OPA) Gatekeeper <3.7.0 - Info Disclosure

CVE-2021-41153 HIGH

evm < 0.31.0 - Always-Incorrect Control Flow Implementation in JUMPI Opcode

CVE-2021-34767 HIGH

Cisco IOS XE Wireless Controller Software - Unauthenticated Denial of Service via IPv6 Traffic Processing

CVE-2021-37605 HIGH

Microchip MiWi <6.5 - Buffer Overflow

CVE-2021-37604 HIGH

Microchip MiWi - Denial of Service via Frame Counter Validation Bypass

CVE-2021-0517 HIGH

Android 11 - Incorrect Network State Determination in ConnectivityService

CVE-2021-32684 MEDIUM

magento-scripts <1.5.3 - Info Disclosure

CVE-2021-0273 MEDIUM

Juniper Junos OS and Junos OS Evolved - Denial of Service via Infinite Loop in Trio Chipset PFE UCODE

CVE-2021-1236 MEDIUM

Cisco IOS XE < 17.4.1 - Unauthenticated Policy Bypass via Snort Detection Algorithm Flaw

CVE-2021-3011 MEDIUM

NXP SmartMX/P5x/A7x - Info Disclosure

CVE-2020-36277 HIGH

leptonica < 1.80.0 - Denial of Service via Incorrect Left Shift in pixConvert2To8

CVE-2020-35477 MEDIUM

MediaWiki <1.35.1 - Info Disclosure

CVE-2020-26506 MEDIUM

Marmind 4.1.141.0 - Authorization Bypass

CVE-2020-1914 CRITICAL

Facebook Hermes < 2020-10-01 - Always-Incorrect Control Flow Implementation in SaveGeneratorLong Instruction

CVE-2020-3596 MEDIUM

Cisco Expressway and TelePresence VCS < 12.6.3 - Unauthenticated Denial of Service via SIP Traffic

CVE-2020-25603 HIGH

Xen < 4.14.0 - Denial of Service via Missing Memory Barriers in Event Channel Access

CVE-2020-25598 MEDIUM

Xen 4.12.0-4.13.9 - Denial of Service via RCU Reference Leak in XENMEM_acquire_resource

CVE-2020-17466 CRITICAL

Turcom TRCwifiZone < 2020-08-10 - Authentication Bypass via 302 Redirect Ignore

CVE-2020-5753 MEDIUM

Signal Private Messenger - Info Disclosure

CVE-2020-3885 MEDIUM

iCloud < 7.18 - Always-Incorrect Control Flow Implementation

CVE-2020-9425 HIGH

rconfig < 3.9.4 - Unauthenticated Sensitive Information Disclosure via settings.php

CVE-2019-19324 HIGH

Xmidt cjwt <1.0.1 - Info Disclosure

CVE-2019-20430 HIGH

Lustre < 2.12.3 - Denial of Service via MDT Body eadatasize Field

Previous Page 5 of 6 Next

Details

Vulnerabilities 134

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy