Vulmon Recent Vulnerabilities Trends Blog About Contact

type confusion vulnerabilities and exploits

(subscribe to this query)

668
VMScore
CVE-2016-2337
Type confusion exists in _cancel_eval Ruby's TclTkIp class method. Attacker passing different type of object than String as "retval" argument can cause arbitrary code execution....
Ruby-lang Ruby 2.2.2Ruby-lang Ruby 2.3.0
641
VMScore
CVE-2015-1143
LaunchServices in Apple OS X before 10.10.3 allows local users to gain privileges via a crafted localized string, related to a "type confusion" issue....
Apple Mac Os X
605
VMScore
CVE-2017-16745
A Type Confusion issue was discovered in Delta Electronics Delta Industrial Automation Screen Editor, Version 2.00.23.00 or prior. An access of resource using incompatible type ('type confusion') vulnerability may allow an attacker to execute remote code when...
Deltaww Delta Industrial Automation Screen Editor
668
VMScore
CVE-2016-2336
Type confusion exists in two methods of Ruby's WIN32OLE class, ole_invoke and ole_query_interface. Attacker passing different type of object than this assumed by developers can cause arbitrary code execution....
Ruby-lang Ruby 2.2.2Ruby-lang Ruby 2.3.0
642
VMScore
CVE-2015-5932
The kernel in Apple OS X before 10.11.1 allows local users to gain privileges by leveraging an unspecified "type confusion" during Mach task processing....
Apple Mac Os X
891
VMScore
CVE-2015-4603
The exception::getTraceAsString function in Zend/zend_exceptions.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to execute arbitrary code via an unexpected data type, related to a "type confusion" issue....
Php PhpPhp Php 5.5.0Php Php 5.5.1Php Php 5.5.2Php Php 5.5.3Php Php 5.5.4Php Php 5.5.5Php Php 5.5.6Php Php 5.5.7Php Php 5.5.8Php Php 5.5.9Php Php 5.5.10Php Php 5.5.11Php Php 5.5.12Php Php 5.5.13Php Php 5.5.14Php Php 5.5.15Php Php 5.5.16Php Php 5.5.17Php Php 5.5.18Php Php 5.5.19Php Php 5.5.20Php Php 5.5.21Php Php 5.5.22Php Php 5.5.23Php Php 5.6.0Php Php 5.6.1Php Php 5.6.2Php Php 5.6.3Php Php 5.6.4Php Php 5.6.5Php Php 5.6.6Php Php 5.6.7Redhat Enterprise Linux Desktop 7.0Redhat Enterprise Linux Hpc Node 7.0Redhat Enterprise Linux Hpc Node Eus 7.1Redhat Enterprise Linux Server 7.0Redhat Enterprise Linux Server Eus 7.1Redhat Enterprise Linux Workstation 7.0Redhat Enterprise Linux 6.0Redhat Enterprise Linux 7.0
828
VMScore
CVE-2015-6986
com.apple.driver.AppleVXD393 in the Graphics Driver subsystem in Apple iOS before 9.1 allows attackers to execute arbitrary code via a crafted app that leverages an unspecified "type confusion."...
Apple Iphone Os
445
VMScore
CVE-2017-13888
In iOS before 11.2, a type confusion issue was addressed with improved memory handling....
Apple Iphone Os
890
VMScore
CVE-2015-0356
Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion."...
Adobe Flash PlayerAdobe Flash Player 14.0.0.125Adobe Flash Player 14.0.0.145Adobe Flash Player 14.0.0.176Adobe Flash Player 14.0.0.179Adobe Flash Player 15.0.0.152Adobe Flash Player 15.0.0.167Adobe Flash Player 15.0.0.189Adobe Flash Player 15.0.0.223Adobe Flash Player 15.0.0.239Adobe Flash Player 15.0.0.246Adobe Flash Player 16.0.0.235Adobe Flash Player 16.0.0.257Adobe Flash Player 16.0.0.287Adobe Flash Player 16.0.0.296Adobe Flash Player 17.0.0.134
1000
VMScore
CVE-2015-7648
Adobe Flash Player before 18.0.0.255 and 19.x before 19.0.0.226 on Windows and OS X and before 11.2.202.540 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2015-7647....
Adobe Flash Player
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalationTCPCVE-2020-4865CVE-2021-3297CVE-2018-15473CVE-2021-3317CVE-2021-23240denial of serviceCVE-2020-16107