Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-697

CWE-697

Incorrect Comparison

The product compares two entities in a security-relevant context, but the comparison is incorrect.

150 vulnerabilities with CWE-697

CVE-2021-44971 CRITICAL

Tenda AC15 and AC5 Firmware - Authentication Bypass

CVE-2021-34865 HIGH

NETGEAR Multiple Router Models Firmware - Unauthenticated Authentication Bypass

CVE-2021-40562 MEDIUM

Gpac < 1.0.1 - Denial of Service via naludmx_enqueue_or_dispatch Function

CVE-2021-44078 HIGH

Unicorn Engine < 2.0.0-rc5 - Sandbox Escape via Faulty GVA/GPA Comparison

CVE-2021-41500 HIGH

cvxopt <= 1.2.6 - Denial of Service via Fake Capsule Object in cholmod APIs

CVE-2021-34141 MEDIUM

NumPy < 1.22.0 - Incorrect String Comparison in numpy.core

CVE-2021-39917 MEDIUM

GitLab 12.9-14.3.5, 14.4-14.4.3, 14.5-14.5.1 - Denial of Service via Quick Actions Regex Backtracking

CVE-2021-23146 HIGH

Gallagher Controller <8.40.1888 - Auth Bypass

CVE-2021-3833 CRITICAL

Integria IMS - Authentication Bypass via MD5 Hash Loose Comparison

CVE-2021-3828 HIGH

nltk - Inefficient Regular Expression Complexity

CVE-2021-39514 MEDIUM

libjpeg < 2020021 - Denial of Service via Floating Point Exception in ACLosslessScan::ParseMCU()

CVE-2021-1904 MEDIUM

Qualcomm APQ8009 and related firmwares - Information Disclosure via PID Reuse Comparison

CVE-2021-32779 HIGH

Envoy 1.16.0-1.16.4 - Privilege Escalation via URI Fragment Mishandling

CVE-2021-37550 HIGH

JetBrains YouTrack <2021.2.16363 - Info Disclosure

CVE-2021-0295 MEDIUM

Juniper Junos OS on QFX10K Series - Denial of Service via DVMRP Packet Forwarding Loop

CVE-2021-27293 HIGH

RestSharp < 106.11.8-alpha.0.13 - DoS

CVE-2021-35973 CRITICAL

NETGEAR WAC104 <1.0.4.15 - Auth Bypass

CVE-2021-35970 HIGH

Coral Talk 4.0.0-4.12.0 - Unauthenticated Sensitive Information Exposure via GraphQL Permission Check Bypass

CVE-2021-23999 HIGH

Firefox ESR <78.10, Thunderbird <78.10, Firefox <88 - Info Disclosure

CVE-2021-20219 MEDIUM

Linux Kernel < 4.18 - Denial of Service via n_tty_receive_char_special

CVE-2021-3116 HIGH

before_upstream_connection <2.3.1 - Info Disclosure

CVE-2020-23478 HIGH

Leo Editor < 6.3 - Regular Expression Denial of Service in Dart Importer

CVE-2020-1920 HIGH

React Native 0.59.0-0.64.0 - Regular Expression Denial of Service in validateBaseUrl

CVE-2020-22784 HIGH

Etherpad UeberDB < 0.4.4 - Auth Bypass

CVE-2020-25580 MEDIUM

FreeBSD Authentication Bypass via login.access Rule Processing Regression

Previous Page 5 of 6 Next

Details

Vulnerabilities 150

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy