CWE-703

Improper Check or Handling of Exceptional Conditions

The product does not properly anticipate or handle exceptional conditions that rarely occur during normal operation of the product.

148 vulnerabilities with CWE-703
CVE-2023-22413 HIGH
Juniper Junos < 19.4 - Unauthenticated Denial of Service via IPsec Library Exception Handling
CVSS 7.5
CVE-2022-34472 MEDIUM
Firefox <102, Thunderbird <91.11 - Info Disclosure
CVSS 4.3
CVE-2022-39911 MEDIUM
Samsung Pass <4.0.06.1 - Info Disclosure
CVSS 4.8
CVE-2022-41777 HIGH
nadesiko3 < 3.3.74 - Denial of Service via Invalid decodeURIComponent Input
CVSS 7.5
CVE-2022-20924 HIGH
Cisco Adaptive Security Appliance Software - Authenticated Denial of Service via SNMP Request
CVSS 7.7
CVE-2022-22224 MEDIUM
Juniper Networks Junos OS/Junos OS Evolved - DoS
CVSS 6.5
CVE-2022-41589 HIGH
Huawei EMUI - Denial of Service via DFX Unwind Stack Module
CVSS 7.5
CVE-2022-31152 MEDIUM
Synapse < 1.62.0 - Event Authorization Rule Bypass via Exceptional Condition Handling
CVSS 6.4
CVE-2022-23004 MEDIUM
Western Digital Sweet B - Denial of Service via P-256 Curve Point Multiplication
CVSS 5.3
CVE-2022-23003 MEDIUM
Western Digital Sweet B - Incorrect Calculation in NIST P-256 Curve Operations
CVSS 5.3
CVE-2022-23002 MEDIUM
Western Digital Sweet B - Denial of Service via P-256 Elliptic Curve Point Compression/Decompression
CVSS 5.3
CVE-2022-30738 MEDIUM
Samsung Internet < 17.0.1.69 - Address Bar Spoofing via Loader Script Execution
CVSS 4.3
CVE-2022-27841 MEDIUM
Samsung Pass < 3.7.07.5 - Unauthenticated Screen Exposure via Improper Exception Handling
CVSS 4.3
CVE-2022-25252 HIGH
PTC Axeda Agent and Desktop Server - Denial of Service via Exception Handling Failure
CVSS 7.5
CVE-2022-0016 HIGH
Palo Alto Networks GlobalProtect 5.2 < 5.2.9 - Local Privilege Escalation via Connect Before Logon
CVSS 7.4
CVE-2022-22290 MEDIUM
Samsung Internet <16.0.6.23 - Open Redirect
CVSS 6.5
CVE-2022-22265 MEDIUM KEV
NPU driver <SMR Jan-2022 Release 1 - Memory Corruption
CVSS 5.0
CVE-2021-3329 CRITICAL
Zephyrproject Zephyr Project Zephyr - Bluetooth Stack Crash via HCI Host Initialization
CVSS 9.6
CVE-2021-42205 MEDIUM
ELAN Miniport <24.21.51.2 - Use After Free
CVSS 4.7
CVE-2021-3433 MEDIUM
Zephyr >= v2.5.0 - Improper Check or Handling of Exceptional Condit...
CVSS 4.0
CVE-2021-23859 CRITICAL
Bosch Video Management System < 9.0 - Unauthenticated Denial of Service via HTTP Request
CVSS 9.1
CVE-2021-25525 LOW
Samsung Pay < 4.0.65 - Unauthenticated NFC Access via Exception Handling Issue
CVSS 2.0
CVE-2021-25516 MEDIUM
Exynos <SMR Dec-2021 Release 1 - Info Disclosure
CVSS 6.4
CVE-2021-23261 MEDIUM
Craftercms Crafter CMS 3.1.0 through 3.1.13 - Denial of Service via Configuration Override
CVSS 4.5
CVE-2021-0286 HIGH
Juniper Networks Junos OS Evolved - DoS
CVSS 7.5
Details
Vulnerabilities 148
Links
MITRE CWE Entry Search this CWE With Exploits