CWE-704

Incorrect Type Conversion or Cast

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not correctly convert an object, resource, or structure from one type to a different type.

268 vulnerabilities with CWE-704
CVE-2017-14824 HIGH
Foxit Reader 8.3.1.21155 - Remote Code Execution via XFAScriptObject Insert Method
CVSS 8.8
CVE-2017-14823 HIGH
Foxit Reader 8.3.1.21155 - Remote Code Execution via XFA Signature Object Type Confusion
CVSS 8.8
CVE-2017-5717 HIGH
Intel Graphics Driver - Privilege Escalation
CVSS 7.8
CVE-2017-16379 HIGH
Adobe Acrobat/Reader <2017.012.20098 - Buffer Overflow
CVSS 8.8
CVE-2017-16367 HIGH
Adobe Acrobat and Reader <2017.012.20098 - Memory Corruption
CVSS 8.8
CVE-2017-8159 HIGH
Huawei Agassi & Kobe Smartphones Remote Code Execution via Type Confusion
CVSS 7.8
CVE-2017-5115 HIGH
Google Chrome <61.0.3163.79 - Object Corruption
CVSS 8.8
CVE-2017-3106 HIGH
Adobe Flash Player <26.0.0.137 - RCE
CVSS 8.8
CVE-2017-11257 HIGH
Adobe Acrobat Reader <2017.009.20058 - RCE
CVSS 8.8
CVE-2017-11221 HIGH
Adobe Acrobat Reader <2017.009.20058 - RCE
CVSS 8.8
CVE-2017-9183 CRITICAL
AutoTrace 0.31.1 - Integer Overflow in input-bmp.c
CVSS 9.8
CVE-2017-9042 HIGH
GNU Binutils - Denial of Service via Crafted ELF File
CVSS 7.8
CVE-2017-0607 HIGH
Android Kernel 3.18 - Privilege Escalation
CVSS 7.0
CVE-2017-2962 HIGH
Adobe Acrobat Reader <15.020.20042, <15.006.30244, <11.0.18 - RCE
CVSS 7.8
CVE-2016-7398 CRITICAL
PHP <3.1.0beta2, <2.6.0beta2 - Code Injection
CVSS 9.8
CVE-2016-7979 CRITICAL
Ghostscript < 9.20 - Remote Code Execution via .initialize_dsc_parser Type Confusion
CVSS 9.8
CVE-2016-8602 HIGH
Ghostscript <9.21 - DoS/Code Injection
CVSS 7.8
CVE-2016-7655 HIGH
iPhone OS < 10.2 and macOS < 10.12.2 - Local Privilege Escalation via CoreMedia External Displays Type Confusion
CVSS 7.8
CVE-2016-7617 HIGH
macOS < 10.12.2 - Remote Code Execution or Denial of Service via Bluetooth Type Confusion
CVSS 7.8
CVE-2016-7156 MEDIUM
QEMU < 2.7.1 - Denial of Service via Incorrect Cast in pvscsi_convert_sglist
CVSS 4.4
CVE-2016-7865 HIGH
Adobe Flash Player <23.0.0.205 & <11.2.202.643 - RCE
CVSS 8.8
CVE-2016-7861 HIGH
Adobe Flash Player <23.0.0.205 & <11.2.202.643 - RCE
CVSS 8.8
CVE-2016-7860 HIGH
Adobe Flash Player <23.0.0.205 & <11.2.202.643 - RCE
CVSS 8.8
CVE-2016-4710 HIGH
Apple OS X <10.12 - Privilege Escalation
CVSS 7.8
CVE-2016-4709 HIGH
Apple OS X <10.12 - Privilege Escalation
CVSS 7.8
Details
Vulnerabilities 268
Links
MITRE CWE Entry Search this CWE With Exploits