CWE-843

Access of Resource Using Incompatible Type ('Type Confusion')

Parent: CWE-704 - Incorrect Type Conversion or Cast

The product allocates or initializes a resource such as a pointer, object, or variable using one type, but it later accesses that resource using a type that is incompatible with the original type.

788 vulnerabilities with CWE-843
CVE-2025-21082 LOW
OpenHarmony < 5.0.3 - Type Confusion
CVSS 3.3
CVE-2025-20063 LOW
OpenHarmony <5.0.3 - Memory Corruption
CVSS 3.3
CVE-2025-48756 LOW
scsir crate 0.2.0 - Buffer Overflow
CVSS 2.9
CVE-2025-30397 HIGH KEV
Microsoft Windows Scripting Engine - Remote Code Execution via Type Confusion
CVSS 7.5
CVE-2025-30383 HIGH
Microsoft Office Excel - Code Injection
CVSS 7.8
CVE-2025-30375 HIGH
Microsoft Office Excel - Code Injection
CVSS 7.8
CVE-2025-30310 HIGH
Dreamweaver < 21.5 - Type Confusion leading to Arbitrary Code Execution
CVSS 7.8
CVE-2025-31206 MEDIUM
Safari < 18.5 - Type Confusion via Malicious Web Content
CVSS 4.3
CVE-2025-30445 MEDIUM
iPadOS < 17.7.6 - Denial of Service via Type Confusion
CVSS 6.5
CVE-2025-24271 MEDIUM
iPadOS < 17.7.6 - Unauthenticated AirPlay Command Execution via Network Access
CVSS 5.4
CVE-2025-2197 MEDIUM
honor/baidu < 8.1.1.3 - Type Confusion Denial of Service
CVSS 4.3
CVE-2025-32948 HIGH
PeerTube < 7.1.1 - Denial of Service and Blind SSRF via ActivityPub Create Activity
CVSS 7.5
CVE-2025-29791 HIGH
Microsoft 365 Apps and Office - Remote Code Execution via Type Confusion
CVSS 7.8
CVE-2025-32352 MEDIUM
ZendTo < 5.04-7 - Authentication Bypass via MD5 Hash Type Confusion
CVSS 4.8
CVE-2025-25000 HIGH
Microsoft Edge (Chromium-based) - RCE
CVSS 8.8
CVE-2025-24213 HIGH
Safari < 18.5 - Type Confusion leading to Memory Corruption
CVSS 7.8
CVE-2025-29806 MEDIUM
Microsoft Edge Chromium < 129.0.2792.52 - Remote Code Execution via Type Confusion
CVSS 6.5
CVE-2025-2022 HIGH
Ashlar-Vellum Cobalt - Remote Code Execution via VS File Parsing Type Confusion
CVSS 7.8
CVE-2025-2018 HIGH
Ashlar-Vellum Cobalt - Remote Code Execution via VS File Parsing Type Confusion
CVSS 7.8
CVE-2025-2016 HIGH
Ashlar-Vellum Cobalt - Remote Code Execution via VC6 File Parsing Type Confusion
CVSS 7.8
CVE-2025-2015 HIGH
Ashlar-Vellum Cobalt - Remote Code Execution via VS File Parsing Type Confusion
CVSS 7.8
CVE-2025-2135 HIGH
Google Chrome <134.0.6998.88 - Heap Corruption
CVSS 8.8
CVE-2025-1920 HIGH
Google Chrome <134.0.6998.88 - Heap Corruption
CVSS 8.8
CVE-2025-21408 HIGH
Microsoft Edge Chromium < 133.0.3065.51 - Remote Code Execution via Type Confusion
CVSS 8.8
CVE-2025-21342 HIGH
Microsoft Edge Chromium < 133.0.3065.51 - Remote Code Execution via Type Confusion
CVSS 8.8
Details
Vulnerabilities 788
Links
MITRE CWE Entry Search this CWE With Exploits