CWE-754

Medium likelihood

Improper Check for Unusual or Exceptional Conditions

Parent: CWE-703 - Improper Check or Handling of Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

588 vulnerabilities with CWE-754
CVE-2022-36794 MEDIUM
Intel Server Platform Services < sps_e3_06.00.03.300.0 - Denial of Service via Local Access
CVSS 6.0
CVE-2022-45854 MEDIUM
Zyxel NWA110AX Firmware < 6.50(ABTG.0)C0 - Denial of Service via Crafted VLAN Frames
CVSS 4.3
CVE-2022-45788 HIGH
EcoStruxure Control Expert & Modicon Controllers - RCE & DoS via Malicious Project File
CVSS 7.5
CVE-2022-43393 HIGH
Zyxel GS1920-24v2 <V4.70(ABMH.8)C0 - Memory Corruption
CVSS 8.2
CVE-2022-37392 MEDIUM
Apache Traffic Server 8.0.0-9.1.2 - Improper Check for Unusual or Exceptional Conditions
CVSS 5.3
CVE-2022-32749 HIGH
Apache Traffic Server 8.0.0-9.1.3 - Denial of Service via Request Handling
CVSS 7.5
CVE-2022-20588 MEDIUM
Android Kernel - Privilege Escalation
CVSS 6.7
CVE-2022-29278 HIGH
NvmExpressDxe <5.1.05.17.23 - Memory Corruption
CVSS 8.2
CVE-2022-20950 MEDIUM
Cisco Firepower Threat Defense - Denial of Service via SIP Traffic Inspection
CVSS 5.8
CVE-2022-26079 MEDIUM
Intel XMM 7560 Modem Firmware < M2_7560_R_01.2146.00 - Privilege Escalation via Improper Conditions Check
CVSS 6.0
CVE-2022-20426 MEDIUM
Android - Denial of Service via Resource Exhaustion
CVSS 5.5
CVE-2022-3616 MEDIUM
cloudflare/octorpki < 1.4.4 - Denial of Service via CA Chain Length Exceeding Max Iterations
CVSS 5.4
CVE-2022-22238 MEDIUM
Juniper Networks Junos OS <19.2R3-S6, <19.3R3-S6, <19.4 - DoS
CVSS 5.3
CVE-2022-22235 MEDIUM
Juniper Networks Junos OS SRX Series - DoS
CVSS 5.9
CVE-2022-22227 MEDIUM
Juniper Networks Junos OS Evolved - DoS
CVSS 5.3
CVE-2022-22218 HIGH
Junos OS on SRX Series Multiple Versions - Unauthenticated DoS via CMPv2 Auto Re-enrollment
CVSS 7.5
CVE-2022-41587 MEDIUM
Uncaptured Exceptions - Info Disclosure
CVSS 5.3
CVE-2022-39288 HIGH
fastify < 4.8.1 - Denial of Service via Malicious Content-Type Header
CVSS 7.5
CVE-2022-20837 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via DNS ALG TCP Packet Inspection
CVSS 8.6
CVE-2022-32590 MEDIUM
Yocto - Use-After-Free in WLAN Status Check
CVSS 6.7
CVE-2022-36046 MEDIUM
Next.js <12.2.3 - Unhandled Rejection
CVSS 5.3
CVE-2022-38152 HIGH
wolfssl < 5.5.0 - Denial of Service via TLS Session Resumption
CVSS 7.5
CVE-2022-27563 HIGH
HCL VersionVault Express - Unauthenticated Denial of Service
CVSS 7.5
CVE-2022-35173 HIGH
Nginx NJS - Denial of Service via Incorrect JUMP Offset in Break Instruction
CVSS 7.5
CVE-2022-38235 MEDIUM
XPDF - Denial of Service via DCTStream::getChar()
CVSS 5.5
Details
Vulnerabilities 588
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits