Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
type confusion vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-11839
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an malicious user to take control of an affected system, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption ...
Microsoft Edge
1 EDB exploit
1 Article
7.5
CVSSv3
CVE-2016-7200
The Chakra JavaScript scripting engine in Microsoft Edge allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability th...
Microsoft Edge
2 EDB exploits
4 Github repositories
1 Article
8.1
CVSSv3
CVE-2017-0037
Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the Layout::MultiColumnBoxBuilder::HandleColumnBreakOnColumnSpanningElement function in mshtml.dll, which allows remote malicious users to execute arbitrary code via vectors involving a crafte...
Microsoft Edge
Microsoft Internet Explorer 11
3 EDB exploits
1 Github repository
1 Article
7.8
CVSSv3
CVE-2021-46152
A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains a type confusion vulnerability while parsing NEU files. This could allow an malicious user to execute code in the context of the cu...
Siemens Simcenter Femap 2020.2
Siemens Simcenter Femap 2021.1
8.1
CVSSv3
CVE-2023-4068
Type Confusion in V8 in Google Chrome before 115.0.5790.170 allowed a remote malicious user to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)
Google Chrome
7.5
CVSSv3
CVE-2018-0953
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0945, CVE-...
Microsoft Edge -
Microsoft Chakracore
1 EDB exploit
1 Article
NA
CVE-2007-3285
Mozilla Firefox prior to 2.0.0.5, when run on Windows, allows remote malicious users to bypass file type checks and possibly execute programs via a (1) file:/// or (2) resource: URI with a dangerous extension, followed by a NULL byte (%00) and a safer extension, which causes Fire...
Mozilla Firefox 0.10.1
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.3
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.0.11
Mozilla Firefox 1.5.0.6
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.6
Mozilla Firefox 1.5.8
Mozilla Firefox 2.0
Mozilla Firefox 1.0.5
Mozilla Firefox 1.0.6
Mozilla Firefox 1.0.7
Mozilla Firefox 1.0.8
Mozilla Firefox 1.5.1
Mozilla Firefox 1.5.2
Mozilla Firefox 1.5.3
Mozilla Firefox 1.5.4
Mozilla Firefox 0.9
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
8.8
CVSSv3
CVE-2020-6418
Type confusion in V8 in Google Chrome before 80.0.3987.122 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
1 EDB exploit
5 Github repositories
2 Articles
8.8
CVSSv3
CVE-2019-15793
In shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, several locations which shift ids translate user/group ids before performing operations in the lower filesystem were translating them into init_user_ns, whereas they should have...
Linux Linux Kernel 5.0
Linux Linux Kernel 5.3
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
1 EDB exploit
7.5
CVSSv3
CVE-2017-11873
ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an malicious user to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engin...
Microsoft Edge -
Microsoft Chakracore -
1 EDB exploit
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
7
8
9
10
NEXT »