CWE-843

Access of Resource Using Incompatible Type ('Type Confusion')

Parent: CWE-704 - Incorrect Type Conversion or Cast

The product allocates or initializes a resource such as a pointer, object, or variable using one type, but it later accesses that resource using a type that is incompatible with the original type.

788 vulnerabilities with CWE-843
CVE-2024-8638 HIGH
Google Chrome <128.0.6613.137 - RCE
CVSS 8.8
CVE-2024-7652 HIGH
Firefox < 128 and ESR < 115.13 - Type Confusion via Async Generator Handling
CVSS 7.5
CVE-2024-6119 HIGH
OpenSSL 3.0.0-3.0.14, 3.2.0-3.2.2, 3.3.0-3.3.1 - Denial of Service via Invalid Memory Access in Certificate Name Check
CVSS 7.5
CVE-2024-8385 CRITICAL
Firefox < 130.0 and Firefox ESR < 128.2 - Type Confusion via WASM StructFields and ArrayTypes
CVSS 9.8
CVE-2024-8381 CRITICAL
Firefox < 130 and Firefox ESR < 115.15 - Type Confusion via 'with' Environment Property Lookup
CVSS 9.8
CVE-2024-8194 HIGH
Google Chrome <128.0.6613.113 - Heap Corruption
CVSS 8.8
CVE-2024-38207 MEDIUM
Microsoft Edge Chromium < 128.0.2739.42 - Memory Corruption via Type Confusion
CVSS 6.3
CVE-2024-38209 HIGH
Microsoft Edge Chromium < 128.0.2739.42 - Remote Code Execution via Type Confusion
CVSS 7.8
CVE-2024-7971 CRITICAL KEV
Google Chrome < 128.0.6613.84 - Type Confusion in V8 via Crafted HTML Page
CVSS 9.6
CVE-2024-7969 HIGH
Google Chrome < 128.0.6613.84 - Type Confusion in V8 via Crafted HTML Page
CVSS 8.8
CVE-2024-34742 MEDIUM
Android - Local Denial of Service via OwnersData.java Logic Error
CVSS 5.5
CVE-2024-43357 HIGH
ECMA-262 2022-2024 - Type Confusion via Async Generator IteratorResult Then-able Manipulation
CVSS 8.6
CVE-2024-38178 HIGH KEV
Microsoft Windows Scripting Engine - Memory Corruption
CVSS 7.5
CVE-2024-38219 MEDIUM
Microsoft Edge Chromium < 127.0.2651.98 - Remote Code Execution
CVSS 6.5
CVE-2024-38218 HIGH
Microsoft Edge Chromium < 127.0.2651.98 - Memory Corruption
CVSS 8.4
CVE-2024-7550 HIGH
Google Chrome < 127.0.6533.99 - Type Confusion in V8 via Crafted HTML Page
CVSS 8.8
CVE-2024-7520 HIGH
Firefox < 129, Firefox ESR < 128.1, and Thunderbird < 128.1 - Remote Code Execution via WebAssembly Type Confusion
CVSS 8.8
CVE-2024-40803 HIGH
macOS Sonoma- Ventura - Info Disclosure
CVSS 7.5
CVE-2024-40788 MEDIUM
iPadOS < 16.7.9 - Denial of Service via Type Confusion
CVSS 5.5
CVE-2024-37987 HIGH
Windows 10 1507-22H2 and Windows 11 21H2-23H2 - Secure Boot Security Feature Bypass via Type Confusion
CVSS 8.0
CVE-2024-36278 LOW
OpenHarmony <4.0.0 - Memory Corruption
CVSS 3.3
CVE-2024-31071 LOW
OpenHarmony < 4.0 - Type Confusion
CVSS 3.3
CVE-2024-20078 CRITICAL
Android - Local Privilege Escalation via Type Confusion in venc
CVSS 9.8
CVE-2024-6100 HIGH
Google Chrome < 126.0.6478.114 - Remote Code Execution via V8 Type Confusion
CVSS 8.8
CVE-2024-32922 HIGH
Android - Local Privilege Escalation to TEE via GPU Power Management Logic Error
CVSS 7.4
Details
Vulnerabilities 788
Links
MITRE CWE Entry Search this CWE With Exploits