Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-754

CWE-754

Medium likelihood

Improper Check for Unusual or Exceptional Conditions

Parent: CWE-703 - Improper Check or Handling of Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

588 vulnerabilities with CWE-754

CVE-2024-38355 HIGH

Socket.IO < 2.5.1 and 3.0.0-4.6.2 - Denial of Service via Crafted Packet

CVE-2024-38461 HIGH

iRODS < 4.3.2 - Denial of Service via Invalid Directory Path Handling

CVE-2024-34694 HIGH

LNbits < 0.12.6 - Payment Timeout Handling Leading to Fund Loss

CVE-2024-5469 LOW

GitLab 16.10.0-16.10.5 and 16.11.0-16.11.2 - Denial of Service via Crafted gRPC Requests

CVE-2024-36128 HIGH

Directus < 10.11.2 - Denial of Service via Random String Generation Utility

CVE-2024-4611 HIGH

AppPresser < 4.4.0 - Unauthenticated Authentication Bypass via Missing OpenSSL Exception Handling

CVE-2024-35785 HIGH

Linux Kernel - Denial of Service via OP-TEE Device Registration Error Handling

CVE-2024-21809 MEDIUM

Intel Quartus Prime < 23.1 - Authenticated Privilege Escalation via Local Access

CVE-2024-4367 HIGH

Firefox < 126 and ESR < 115.11 - Arbitrary JavaScript Execution in PDF.js via Missing Type Check

CVE-2024-34360 HIGH

go-spacemesh < 1.5.2-hotfix1 and api < 1.37.1 - Improper ATX Chain Validation

CVE-2024-32867 MEDIUM

Suricata 6.0.0-6.0.18 - Rule and Policy Mis-detection via Fragmentation Anomaly Handling

CVE-2024-3729 CRITICAL

Frontend Admin by DynamiApps <= 3.19.4 - Privilege Escalation & Auth Bypass via Encryption Handling

CVE-2024-4182 MEDIUM

Mattermost 8.1.0-8.1.11, 9.4.0-9.4.4, 9.5.0-9.5.2 - Authenticated Denial of Service via Malformed Custom Status JSON

CVE-2024-30402 MEDIUM

Juniper Junos OS and Junos OS Evolved - Unauthenticated Denial of Service via l2ald Crash

CVE-2024-30397 HIGH

Juniper Junos Multiple Versions - Unauthenticated DoS in PKI Daemon

CVE-2024-30384 MEDIUM

Juniper Junos OS < 20.4R3-S10; 21.2 < 21.2R3-S7; 21.4 < 21.4R3-S6 - Authenticated Denial of Service via CLI Command

CVE-2024-30409 MEDIUM

Juniper Junos OS and Junos OS Evolved 22.1-22.1R1 - Authenticated Denial of Service via Telemetry Processing

CVE-2024-1713 HIGH

plv8 3.2.1 - Privilege Escalation via Deferred Trigger Execution

CVE-2024-20037 MEDIUM

Android - Local Privilege Escalation via Incorrect Bounds Check in pq

CVE-2024-1622 HIGH

Routinator < 0.13.2 - Denial of Service via RTR Connection Reset

CVE-2024-1556 MEDIUM

Firefox < 123.0 - Invalid Memory Access via Built-in Profiler NULL Check

CVE-2024-25739 MEDIUM

Linux Kernel < 6.7.4 - Denial of Service via Zero-Byte Allocation in UBI Volume Table

CVE-2024-23650 MEDIUM

BuildKit < 0.12.5 - Denial of Service via Crafted Frontend Request

CVE-2024-24567 MEDIUM

vyperlang/vyper < 0.3.10 - Incorrect Value Handling in raw_call Builtin

CVE-2024-0675 MEDIUM

Lamassu Bitcoin ATM Douro <7.1 - Privilege Escalation

Previous Page 11 of 24 Next

Details

Vulnerabilities 588

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy