CWE-754

Medium likelihood

Improper Check for Unusual or Exceptional Conditions

Parent: CWE-703 - Improper Check or Handling of Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

588 vulnerabilities with CWE-754
CVE-2022-38234 MEDIUM
XPDF - Denial of Service via Lexer::getObj
CVSS 5.5
CVE-2022-38233 MEDIUM
XPDF - Denial of Service via DCTStream::readMCURow()
CVSS 5.5
CVE-2022-36145 MEDIUM
SWFMill <53d7690 - Memory Corruption
CVSS 5.5
CVE-2022-36141 MEDIUM
SWFMill <53d7690 - Memory Corruption
CVSS 5.5
CVE-2022-36140 MEDIUM
swfmill < 0.3.6 - Denial of Service via SWF::DeclareFunction2::write
CVSS 5.5
CVE-2022-35473 MEDIUM
otfcc v0.10.4 - Segmentation Violation via otfccdump
CVSS 6.5
CVE-2022-35469 MEDIUM
otfcc 0.10.4 - Denial of Service via Segmentation Violation
CVSS 6.5
CVE-2022-22217 MEDIUM
Juniper Junos OS on QFX10K Series < 19.1R3-S9 - Unauthenticated Denial of Service via Malformed MLD Packet Looping
CVSS 6.1
CVE-2022-26078 HIGH
Gallagher Controller 6000 <vCR8.60-8.30 - DoS
CVSS 7.5
CVE-2022-31103 HIGH
lettersanitizer < 1.0.2 - Denial of Service via CSS @keyframes Processing
CVSS 7.5
CVE-2022-31093 HIGH
next-auth < 3.29.5 - Denial of Service via Malformed Callback URL
CVSS 7.5
CVE-2022-20130 CRITICAL
Android -10,11,12,12L - Buffer Overflow
CVSS 9.8
CVE-2022-30738 MEDIUM
Samsung Internet < 17.0.1.69 - Address Bar Spoofing via Loader Script Execution
CVSS 4.3
CVE-2022-23712 HIGH
Elasticsearch 8.0.0-8.2.0 - Unauthenticated Denial of Service via Network Request
CVSS 7.5
CVE-2022-29369 HIGH
Nginx NJS <0.7.2 - Memory Corruption
CVSS 7.5
CVE-2022-29473 MEDIUM
F5 BIG-IP 15.1.x < 15.1.5.1, 14.1.x < 14.1.4.6, 13.1.x < 13.1.5 - Denial of Service via IPSec ALG Profile
CVSS 5.9
CVE-2022-28706 MEDIUM
F5 BIG-IP <16.1.2, 15.1.x <15.1.5.1 - DoS
CVSS 5.9
CVE-2022-26130 MEDIUM
F5 BIG-IP <16.1.2.2, 15.1.5.1, 14.1.4.6, 13.1.5 - DoS
CVSS 5.3
CVE-2022-28793 MEDIUM
Samsung Galaxy S22 Firmware - Improper State Maintenance in StrongBox
CVSS 4.4
CVE-2022-24880 MEDIUM
flask-session-captcha <1.2.1 - Auth Bypass
CVSS 5.3
CVE-2022-20804 MEDIUM
Cisco Unified Communications Manager < 14.0 - DoS via Cisco Discovery Protocol
CVSS 5.3
CVE-2022-22196 MEDIUM
Juniper Networks Junos OS <19.3 - DoS
CVSS 6.5
CVE-2022-22194 HIGH
Juniper Networks Junos OS Evolved <20.4R2-S3-EVO - DoS
CVSS 7.5
CVE-2022-22185 HIGH
Juniper Junos OS on SRX Series < 21.2R2 - Unauthenticated DoS via Fragmented Packet
CVSS 7.5
CVE-2022-25252 HIGH
PTC Axeda Agent and Desktop Server - Denial of Service via Exception Handling Failure
CVSS 7.5
Details
Vulnerabilities 588
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits