CWE-670

Always-Incorrect Control Flow Implementation

Parent: CWE-691 - Insufficient Control Flow Management

The code contains a control flow path that does not reflect the algorithm that the path is intended to implement, leading to incorrect behavior any time this path is navigated.

134 vulnerabilities with CWE-670
CVE-2019-19729 HIGH
BSON ObjectID 1.3.0 - Info Disclosure
CVSS 7.5
CVE-2019-17192 CRITICAL
Signal Private Messenger < 4.47.7 - Denial of Service via Malformed WebRTC RTP Packets
CVSS 9.8
CVE-2019-11412 HIGH
Artifex MuJS 1.0.5 - Denial of Service via Missing ENDTRY Opcode
CVSS 7.5
CVE-2019-9946 HIGH
CNCF CNI 0.7.4 - Privilege Escalation
CVSS 7.5
CVE-2018-19212 MEDIUM
libwebm < 1.0.0.27 - Denial of Service via Webm2Pes Parser Initialization
CVSS 6.5
CVE-2018-19058 MEDIUM
Poppler 0.71.0 - Denial of Service via Missing Stream Check in EmbFile::save2
CVSS 6.5
CVE-2018-16766 HIGH
WebAssembly Virtual Machine < 2018-07-26 - Denial of Service via Crafted File
CVSS 8.8
CVE-2017-0604 HIGH
Android < 7.1.2 - Local Privilege Escalation via Qualcomm Power Driver
CVSS 7.8
CVE-2014-2686 HIGH
Ansible < 1.5.4 - Always-Incorrect Control Flow Implementation
CVSS 7.5
Details
Vulnerabilities 134
Links
MITRE CWE Entry Search this CWE With Exploits