Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-697

CWE-697

Incorrect Comparison

The product compares two entities in a security-relevant context, but the comparison is incorrect.

150 vulnerabilities with CWE-697

CVE-2022-27645 HIGH

NETGEAR R6700v3 Firmware - Unauthenticated Authentication Bypass via readycloud_control.cgi

CVE-2022-47034 CRITICAL

playsms < 1.4.5 - Authentication Bypass via Type Juggling in /auth/fn.php

CVE-2022-34366 MEDIUM

Dell SupportAssist < 3.11.2 Authenticated Information Disclosure via Cross-domain Whitelist

CVE-2022-34888 LOW

Lenovo ThinkAgile VX3331 Firmware < 1.80_afbt20n - Authenticated Internal Service Access via Remote Mount Feature

CVE-2022-23554 MEDIUM

Alpine < 1.10.4 - Authentication Filter Bypass via URI Path Manipulation

CVE-2022-41317 MEDIUM

Squid 4.9-4.17 and 5.0.6-5.6 - Exposure of Sensitive Information via HTTPS Request to Internal Cache Manager URL

CVE-2022-4293 MEDIUM

vim < 9.0.0804 - Floating Point Comparison with Incorrect Operator

CVE-2022-39308 MEDIUM

GoCD 19.2.0-19.10.0 - Timing Attack via Access Token Validation

CVE-2022-35091 MEDIUM

SWFTools - Denial of Service via DCTStream::readMCURow() Floating Point Exception

CVE-2022-35962 HIGH

Zulip Mobile <27.189 - Info Disclosure

CVE-2022-38230 MEDIUM

XPDF - Denial of Service via DCTStream::decodeImage() Floating Point Exception

CVE-2022-36148 MEDIUM

fdkaac < 1.0.3 - Denial of Service via Floating Point Exception in wav_open

CVE-2022-35434 MEDIUM

jpeg-quantsmooth <8879454 - Memory Corruption

CVE-2022-34999 MEDIUM

JPEGDEC <be4843c - Memory Corruption

CVE-2022-38179 MEDIUM

JetBrains Ktor <2.1.0 - Code Injection

CVE-2022-22203 MEDIUM

Juniper Networks Junos OS <19.4R3-S4 - DoS

CVE-2022-26691 MEDIUM

CUPS < 2.4.2 - Privilege Escalation via Incorrect Comparison

CVE-2022-31650 MEDIUM

SoX 14.4.2 - Memory Corruption

CVE-2022-20072 MEDIUM

Search Engine Service - Privilege Escalation

CVE-2022-24787 HIGH

vyper < 0.3.1 - Incorrect Bytestring Comparison

CVE-2022-23027 MEDIUM

F5 BIG-IP 12.1.5.3-12.1.6 - Denial of Service via FastL4 and HTTP/FIX/Hash Persistence Profile Conflict

CVE-2022-22990 HIGH

Western Digital My Cloud OS < 5.19.117 - Authentication Bypass and Remote Code Execution via Access Token Validation

CVE-2021-47370 MEDIUM

Linux Kernel 5.14.7-5.14.9 - Denial of Service via MPTCP Size Goal Comparison

CVE-2021-38364 MEDIUM

ONOS 2.5.1 - Incorrect Flow Rule Comparison via Intent Manipulation

CVE-2021-27786 MEDIUM

HCL OneTest Server - Permissive Cross-domain Security Policy with Untrusted Domains

Previous Page 4 of 6 Next

Details

Vulnerabilities 150

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy