Cross-site Scripting (XSS) | |
Asymmetric Resource Consumption (Amplification) | |
Cross-site Scripting (XSS) | |
Cross-site Scripting (XSS) | |
Inefficient Regular Expression Complexity | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Exposure of System Data to an Unauthorized Control Sphere | |
Buffer Overflow | |
Improperly Implemented Security Check for Standard | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Missing Authorization | |
Out-of-bounds Write | |
Incorrect Type Conversion or Cast | |
Cross-site Scripting (XSS) | |
Missing Required Cryptographic Step | |
Out-of-bounds Write | |
Use of Uninitialized Resource | |
Cleartext Transmission of Sensitive Information | |
Out-of-bounds Read | |
CVE-2024-7518 | |
Improper Privilege Management | |
Use After Free | |
Cross-site Scripting (XSS) | |
CVE-2024-7529 | |
Missing Required Cryptographic Step | |
Use After Free | |
Use After Free | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Missing Required Cryptographic Step | |
Out-of-Bounds | |
Buffer Overflow | |
Out-of-Bounds | |
Improper Preservation of Permissions | |
Use After Free | |
Covert Timing Channel | |
Improper Access Control | |
Use After Free | |
Inclusion of Functionality from Untrusted Control Sphere | |
Buffer Overflow | |
Improper Validation of Specified Type of Input | |
Improper Validation of Syntactic Correctness of Input | |
User Interface (UI) Misrepresentation of Critical Information | |
Improper Cross-boundary Removal of Sensitive Data | |
Inefficient Regular Expression Complexity | |
Improper Check for Unusual or Exceptional Conditions | |
Inclusion of Functionality from Untrusted Control Sphere | |
Use After Free | |
Buffer Overflow | |
Excessive Platform Resource Consumption within a Loop | |
Resource Exhaustion | |
Use After Free | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Product UI does not Warn User of Unsafe Actions | |
Out-of-bounds Read | |
Buffer Overflow | |
Integer Overflow or Wraparound | |
Use After Free | |
Arbitrary Code Injection | |
Directory Traversal | |
Register Interface Allows Software Access to Sensitive Data or Security Settings | |
Buffer Overflow | |
Integer Overflow or Wraparound | |
The UI Performs the Wrong Action | |
Cross-site Scripting (XSS) | |
Use After Free | |
CVE-2024-2616 | |
Information Exposure | |
Arbitrary Code Injection | |
The UI Performs the Wrong Action | |
Improper Restriction of Rendered UI Layers or Frames | |
Out-of-bounds Read | |
Buffer Overflow | |
Incorrect Conversion between Numeric Types | |
Improper Restriction of Rendered UI Layers or Frames | |
The UI Performs the Wrong Action | |
Inadequate Encryption Strength | |
Improper Input Validation | |
Improper Restriction of Rendered UI Layers or Frames | |
Resource Exhaustion | |
Improper Restriction of Rendered UI Layers or Frames | |
Improper Input Validation | |
Unchecked Return Value | |
Improper Restriction of Rendered UI Layers or Frames | |
Out-of-bounds Write | |
Improper Restriction of Rendered UI Layers or Frames | |
Buffer Overflow | |
Information Exposure | |
Use After Free | |
Improper Restriction of Rendered UI Layers or Frames | |
Use of Uninitialized Resource | |
Heap-based Buffer Overflow | |
Improper Input Validation | |
Buffer Overflow | |
Use After Free | |
Heap-based Buffer Overflow | |
Improper Input Validation | |
Race Condition | |
Heap-based Buffer Overflow | |
Use After Free | |
Out-of-bounds Read | |
Directory Traversal | |
Use After Free | |
Improper Restriction of Rendered UI Layers or Frames | |
Improper Restriction of Rendered UI Layers or Frames | |
Buffer Overflow | |
Improper Verification of Cryptographic Signature | |
Buffer Overflow | |
Improper Restriction of Rendered UI Layers or Frames | |
Product UI does not Warn User of Unsafe Actions | |
Multiple Interpretations of UI Input | |
Open Redirect | |
Memory Leak | |
Buffer Overflow | |
Use After Free | |
Out-of-bounds Write | |
Heap-based Buffer Overflow | |
Resource Exhaustion | |
Information Exposure | |
Use After Free | |
Compilation with Insufficient Warnings or Errors | |
Use After Free | |
Use After Free | |
Buffer Overflow | |
Out-of-Bounds | |
Buffer Overflow | |
Incorrect Behavior Order: Early Validation | |
Authentication Bypass | |
Authentication Bypass | |
Reliance on Cookies without Validation and Integrity Checking in a Security Decision | |
Buffer Overflow | |
Improper Handling of Insufficient Permissions or Privileges | |
Race Condition | |
Out-of-bounds Read | |
Improper Input Validation | |
Inclusion of Functionality from Untrusted Control Sphere | |
Buffer Overflow | |
Buffer Overflow | |
Inefficient Regular Expression Complexity | |
Authentication Bypass | |
Use After Free | |
Compilation with Insufficient Warnings or Errors | |
Use After Free | |
Buffer Overflow | |
Arbitrary Code Injection | |
Resource Exhaustion | |
Buffer Overflow | |
The UI Performs the Wrong Action | |
Resource Exhaustion | |
Buffer Overflow | |
Improper Handling of Insufficient Permissions or Privileges | |
User Interface (UI) Misrepresentation of Critical Information | |
Use of Uninitialized Variable | |
Out-of-bounds Read | |
Insufficient Verification of Data Authenticity | |
Resource Exhaustion | |
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
Double Free | |
Incorrect Calculation | |
Direct Request ('Forced Browsing') | |
Failure to Sanitize Special Element | |
Unrestricted Upload of File with Dangerous Type | |
Buffer Overflow | |
Reachable Assertion | |
Out-of-Bounds | |
Out-of-Bounds | |
Inefficient Regular Expression Complexity | |
Inefficient Regular Expression Complexity | |
Inefficient Regular Expression Complexity | |
Inclusion of Functionality from Untrusted Control Sphere | |
Incorrect Type Conversion or Cast | |
Out-of-bounds Read | |
Buffer Overflow | |
Arbitrary Code Injection | |
Improper Input Validation | |
Use After Free | |
Improper Handling of Alternate Encoding | |
Insufficient UI Warning of Dangerous Operations | |
Buffer Overflow | |
Cross-site Scripting (XSS) | |
Use After Free | |
Incorrect Type Conversion or Cast | |
Incorrect Synchronization | |
Out-of-bounds Write | |
Buffer Overflow | |
Improper Restriction of Rendered UI Layers or Frames | |
Buffer Overflow | |
CVE-2023-23602 | |
Inclusion of Functionality from Untrusted Control Sphere | |
Incorrect Regular Expression | |
Arbitrary Command Injection | |
Use of Unmaintained Third Party Components | |
Multiple Interpretations of UI Input | |
Insufficient UI Warning of Dangerous Operations | |
Buffer Overflow | |
Out-of-Bounds | |
Out-of-bounds Read | |
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
Resource Exhaustion | |
Truncation of Security-relevant Information | |
Out-of-Bounds | |
Use After Free | |
Buffer Overflow | |
Use After Free | |
Information Exposure | |
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
Use After Free | |
Buffer Overflow | |
Inclusion of Functionality from Untrusted Control Sphere | |
Improper Restriction of Rendered UI Layers or Frames | |
Information Exposure | |
Improper Restriction of Rendered UI Layers or Frames | |
Information Exposure | |
Improper Restriction of Rendered UI Layers or Frames | |
Sensitive Cookie with Improper SameSite Attribute | |
Improper Restriction of Rendered UI Layers or Frames | |
Use After Free | |
Use After Free | |
Cross-site Scripting (XSS) | |
Incorrect Regular Expression | |
Resource Exhaustion | |
Buffer Overflow | |
Inclusion of Functionality from Untrusted Control Sphere | |
Buffer Overflow | |
Inefficient Regular Expression Complexity | |
Buffer Overflow | |
Use After Free | |
Improper Restriction of Rendered UI Layers or Frames | |
Improper Handling of Inconsistent Structural Elements | |
Improper Restriction of Rendered UI Layers or Frames | |
Reliance on Cookies without Validation and Integrity Checking in a Security Decision | |
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
Buffer Overflow | |
Product UI does not Warn User of Unsafe Actions | |
Improper Restriction of Rendered UI Layers or Frames | |
Buffer Overflow | |
Use After Free | |
Improper Restriction of Rendered UI Layers or Frames | |
Cross-site Scripting (XSS) | |
Buffer Overflow | |
Return of Wrong Status Code | |
Integer Overflow or Wraparound | |
Buffer Overflow | |
Improper Restriction of Rendered UI Layers or Frames | |
Cross-site Scripting (XSS) | |
Use After Free | |
Open Redirect | |
Cross-site Scripting (XSS) | |
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
Inclusion of Functionality from Untrusted Control Sphere | |
Buffer Overflow | |
Allocation of Resources Without Limits or Throttling | |
Use of Uninitialized Variable | |
Buffer Overflow | |
Improper Restriction of Rendered UI Layers or Frames | |
Inclusion of Functionality from Untrusted Control Sphere | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Resource Exhaustion | |
Buffer Overflow | |
Exposure of System Data to an Unauthorized Control Sphere | |
Reliance on Cookies without Validation and Integrity Checking | |
Improper Restriction of Rendered UI Layers or Frames | |
Improper Restriction of Rendered UI Layers or Frames | |
Improper Preservation of Permissions | |
Improper Restriction of Rendered UI Layers or Frames | |
Out-of-bounds Write | |
Out-of-bounds Read | |
Buffer Overflow | |
Use After Free | |
Resource Exhaustion | |
Use After Free | |
Use After Free | |
Time-of-check Time-of-use (TOCTOU) | |
Improper Preservation of Permissions | |
The UI Performs the Wrong Action | |
Use After Free | |
Incorrect Behavior Order: Early Validation | |
Use After Free | |
Use After Free | |
Use After Free | |
Buffer Overflow | |
Buffer Overflow | |
Improper Restriction of Rendered UI Layers or Frames | |
Arbitrary Code Injection | |
Improper Restriction of Rendered UI Layers or Frames | |
Inclusion of Functionality from Untrusted Control Sphere | |
Inclusion of Functionality from Untrusted Control Sphere | |
Inclusion of Functionality from Untrusted Control Sphere | |
Integer Overflow or Wraparound | |
Integer Overflow or Wraparound | |
Integer Overflow or Wraparound | |
Integer Overflow or Wraparound | |
Integer Overflow or Wraparound | |
Integer Overflow or Wraparound | |
Integer Overflow or Wraparound | |
Incorrect Calculation | |
Integer Overflow or Wraparound | |
Inclusion of Functionality from Untrusted Control Sphere | |
Improper Restriction of Rendered UI Layers or Frames | |
Buffer Overflow | |
Buffer Overflow | |
Improper Restriction of Rendered UI Layers or Frames | |
Improper Restriction of Rendered UI Layers or Frames | |
Improper Restriction of Rendered UI Layers or Frames | |
NULL Pointer Dereference | |
Use After Free | |
Buffer Overflow | |
Use After Free | |
Improper Restriction of Rendered UI Layers or Frames | |
Cross-site Scripting (XSS) | |
Loop with Unreachable Exit Condition ('Infinite Loop') | |
Buffer Overflow | |
Unquoted Search Path or Element | |
Improper Restriction of Rendered UI Layers or Frames | |
Information Exposure | |
Improper Restriction of Rendered UI Layers or Frames | |
Use After Free | |
Improper Restriction of Rendered UI Layers or Frames | |
Improper Restriction of Rendered UI Layers or Frames | |
Arbitrary Command Injection | |
Inclusion of Functionality from Untrusted Control Sphere | |
Inappropriate Encoding for Output Context | |
Incorrect Permission Assignment for Critical Resource | |
Improper Restriction of Rendered UI Layers or Frames | |
Improper Restriction of Rendered UI Layers or Frames | |
Use After Free | |
Buffer Overflow | |
Improper Restriction of Rendered UI Layers or Frames | |
Use After Free | |
Buffer Overflow | |
Use After Free | |
Information Exposure | |
Out-of-Bounds | |
Buffer Overflow | |
Cross-site Scripting (XSS) | |
Out-of-Bounds | |
Time-of-check Time-of-use (TOCTOU) | |
Use After Free | |
Use of Uninitialized Resource | |
Use After Free | |
Buffer Overflow | |
Use After Free | |
Use After Free | |
Buffer Overflow | |
Improper Authentication | |
Buffer Overflow | |
Out-of-bounds Read | |
Integer Overflow or Wraparound | |
Buffer Overflow | |
Inclusion of Functionality from Untrusted Control Sphere | |
Buffer Overflow | |
Buffer Overflow | |
Buffer Overflow | |
Improper Access Control | |
Missing Authorization | |
Improper Input Validation | |
Information Exposure | |
Integer Overflow or Wraparound | |
Out-of-bounds Read | |
Improper Access Control | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Inclusion of Functionality from Untrusted Control Sphere | |
Out-of-bounds Write | |
Buffer Overflow | |
Use After Free | |
Inclusion of Functionality from Untrusted Control Sphere | |
Race Condition | |
Out-of-bounds Write | |
Buffer Overflow | |
Files or Directories Accessible to External Parties | |
Inclusion of Functionality from Untrusted Control Sphere | |
Use After Free | |
Authentication Bypass | |
Buffer Overflow | |
Buffer Overflow | |
Use After Free | |
Use After Free | |
Eval Injection | |
Buffer Overflow | |
Use After Free | |
Integer Overflow or Wraparound | |
Out-of-bounds Read | |
Use After Free | |
Use After Free | |
Buffer Overflow | |
Buffer Overflow | |
Integer Overflow or Wraparound | |
Missing Authorization | |
Buffer Overflow | |
CVE-2014-1518 | |
Buffer Overflow | |
Use After Free | |
Improper Cross-boundary Removal of Sensitive Data | |
Cross-site Scripting (XSS) | |
Integer Overflow or Wraparound | |
Use After Free | |
Buffer Overflow | |
Out-of-bounds Read | |
Improper Privilege Management | |
Heap-based Buffer Overflow | |
Out-of-bounds Write | |
Buffer Overflow | |
Buffer Overflow | |
Improper Privilege Management | |
Use After Free | |
Use After Free | |
Use After Free | |
Information Exposure | |
Buffer Overflow | |
Use After Free | |
Integer Overflow or Wraparound | |
Out-of-bounds Read | |
Improper Privilege Management | |
Out-of-bounds Read | |
Buffer Overflow | |
Out-of-bounds Write | |
Use After Free | |
Use After Free | |
Improper Cross-boundary Removal of Sensitive Data | |
Out-of-bounds Read | |
Out-of-Bounds | |
Buffer Overflow | |
Use After Free | |
Use After Free | |
User Interface (UI) Misrepresentation of Critical Information | |
Use After Free | |
Information Exposure | |
Information Exposure | |
Use After Free | |
CVE-2014-1477 | |
Use After Free | |
Out-of-bounds Write | |
Arbitrary Code Injection | |
Cross-site Scripting (XSS) | |
CVE-2013-5609 | |
Use After Free | |
Buffer Overflow | |
Use After Free | |
Use After Free | |
Download of Code Without Integrity Check | |
Buffer Overflow | |
Incorrect Authorization | |
Out-of-bounds Read | |
Use After Free | |
Use After Free | |
CVE-2014-1481 | |
CVE-2014-1479 | |
Out-of-Bounds | |
Use After Free | |
Use After Free | |
Cross-site Scripting (XSS) | |
Use After Free | |
Inclusion of Functionality from Untrusted Control Sphere | |
Use After Free | |
Arbitrary Command Injection | |
Inclusion of Functionality from Untrusted Control Sphere | |
Out-of-bounds Read | |
Incorrect Authorization | |
Use After Free | |
Improper Restriction of Rendered UI Layers or Frames | |
Out-of-bounds Read | |
Use After Free | |
Out-of-bounds Read | |
Out-of-bounds Read | |
Out-of-Bounds | |
Use After Free | |
CVE-2013-5590 | |
Out-of-Bounds | |
Use After Free | |
Use After Free | |
Use After Free | |
Out-of-Bounds | |
Out-of-Bounds | |
Cross-site Scripting (XSS) | |
Access Restriction Bypass | |
CVE-2013-1701 | |
Cross-site Scripting (XSS) | |
Out-of-Bounds | |
Out-of-Bounds | |
Access Restriction Bypass | |
Out-of-Bounds | |
Out-of-Bounds | |
Use After Free | |
Improper Input Validation | |
Access Restriction Bypass | |
Access Restriction Bypass | |
Access Restriction Bypass | |
Out-of-Bounds | |
Improper Input Validation | |
CVE-2013-1682 | |
Cross-site Request Forgery (CSRF) | |
Access Restriction Bypass | |
Access Restriction Bypass | |
Resource Management Errors | |
Use After Free | |
Use After Free | |
Resource Management Errors | |
Heap-based Buffer Overflow | |
Heap-based Buffer Overflow | |
Out-of-bounds Read | |
Out-of-Bounds | |
Use After Free | |
Out-of-bounds Read | |
Use After Free | |
Out-of-bounds Read | |
Missing Initialization of a Variable | |
Resource Management Errors | |
Out-of-bounds Write | |
Improper Cross-boundary Removal of Sensitive Data | |
Improper Validation of Integrity Check Value | |
Inclusion of Functionality from Untrusted Control Sphere | |
Buffer Overflow | |
Improperly Implemented Security Check for Standard | |
Use After Free | |
User Interface (UI) Misrepresentation of Critical Information | |
Use After Free | |
Out-of-bounds Read | |
Reachable Assertion | |
Out-of-Bounds | |
Out-of-Bounds | |
Improper Input Validation | |
Out-of-bounds Read | |
Use After Free | |
Use After Free | |
Access Restriction Bypass | |
Resource Management Errors | |
Use After Free | |
Resource Management Errors | |
Resource Management Errors | |
Missing Initialization of a Variable | |
CVE-2013-0801 | |
Use After Free | |
Out-of-Bounds | |
Use After Free | |
Improper Input Validation | |
Use After Free | |
Out-of-bounds Write | |
Out-of-bounds Write | |
Use After Free | |
Use After Free | |
Use After Free | |
Use After Free | |
Use After Free | |
Use After Free | |
Out-of-Bounds | |
Use After Free | |
Out-of-bounds Read | |
Out-of-Bounds | |
Use After Free | |
Cross-site Scripting (XSS) | |
Cross-site Scripting (XSS) | |
Out-of-Bounds | |
Out-of-Bounds | |
Out-of-Bounds | |
Out-of-bounds Read | |
Out-of-Bounds | |
Improper Validation of Array Index | |
Use After Free | |
Stack-based Buffer Overflow | |
Use After Free | |
Out-of-Bounds | |
Out-of-Bounds | |
Error Handling | |
Use After Free | |
Out-of-bounds Read | |
Out-of-bounds Read | |
Use After Free | |
Improper Certificate Validation | |
Out-of-Bounds | |
Improper Input Validation | |
Integer Overflow or Wraparound | |
CVE-2013-0788 | |
Information Exposure | |
Improper Input Validation | |
CVE-2017-5390 | |
Information Exposure | |
Out-of-Bounds | |
Out-of-Bounds | |
Use After Free | |
DEPRECATED: Use of Uninitialized Resource | |
Use After Free | |
CVE-2017-5386 | |
Improper Input Validation | |
Information Exposure | |
Security Features | |
Out-of-Bounds | |
Out-of-Bounds | |
Use After Free | |
Use After Free | |
Out-of-bounds Write | |
CVE-2013-0796 | |
Information Exposure | |
Access Restriction Bypass | |
Out-of-Bounds | |
Cross-site Scripting (XSS) | |
Use After Free | |
Out-of-Bounds | |
Origin Validation Error | |
Security Features | |
Out-of-Bounds | |
Improper Access Control | |
Use After Free | |
Out-of-Bounds | |
Use After Free | |
Integer Overflow or Wraparound | |
Use After Free | |
Improper Input Validation | |
CVE-2013-0783 | |
Out-of-bounds Read | |
Improper Certificate Validation | |
Use After Free | |
Out-of-bounds Read | |
Cross-site Scripting (XSS) | |
Out-of-Bounds | |
Out-of-Bounds | |
Out-of-Bounds | |
Out-of-Bounds | |
Improper Input Validation | |
Use After Free | |
Use After Free | |
Use After Free | |
Improper Authentication | |
Use After Free | |
Use After Free | |
Use After Free | |
Information Exposure | |
Use After Free | |
CVE-2013-0769 | |
Use After Free | |
Use After Free | |
Use After Free | |
Use After Free | |
Cross-site Scripting (XSS) | |
Use After Free | |
Use After Free | |
Cross-site Scripting (XSS) | |
Access Restriction Bypass | |
Out-of-Bounds | |
Information Exposure | |
CVE-2016-2828 | |
Security Features | |
Use After Free | |
Incorrect Type Conversion or Cast | |
Use After Free | |
Use After Free | |
Out-of-Bounds | |
CVE-2013-0746 | |
Integer Overflow or Wraparound | |
Arbitrary Code Injection | |
Use After Free | |
Information Exposure | |
Use After Free | |
Cross-site Scripting (XSS) | |
Out-of-bounds Write | |
Use After Free | |
Use After Free | |
CVE-2012-5842 | |
Cross-site Scripting (XSS) | |
Use After Free | |
Arbitrary Code Injection | |
Out-of-Bounds | |
Improper Access Control | |
Out-of-Bounds | |
Out-of-Bounds | |
CVE-2016-2821 | |
Use After Free | |
Cross-site Scripting (XSS) | |
Cross-site Scripting (XSS) | |
Cross-site Scripting (XSS) | |
Out-of-bounds Read | |
Out-of-bounds Read | |
Cross-site Scripting (XSS) | |
Cross-site Scripting (XSS) | |
Out-of-Bounds | |
Improper Input Validation | |
Improper Privilege Management | |
Out-of-bounds Read | |
Access Restriction Bypass | |
Out-of-bounds Read | |
Cross-site Scripting (XSS) | |
CVE-2012-3982 | |
Out-of-Bounds | |
Out-of-bounds Read | |
Out-of-Bounds | |
Security Features | |
Out-of-Bounds | |
Out-of-Bounds | |
Use After Free | |
Information Exposure | |
Out-of-Bounds | |
Out-of-Bounds | |
Use After Free | |
Use After Free | |
Out-of-bounds Read | |
Out-of-Bounds | |
Access Restriction Bypass | |
Out-of-Bounds | |
Out-of-Bounds | |
Cross-site Scripting (XSS) | |
Use After Free | |
Use After Free | |
Out-of-Bounds | |
Use After Free | |
Use After Free | |
Arbitrary Code Injection | |
Out-of-bounds Read | |
Out-of-bounds Read | |
Out-of-Bounds | |
Out-of-Bounds | |
Out-of-Bounds | |
Out-of-Bounds | |
Cross-site Scripting (XSS) | |
Improper Data Handling | |
Cross-site Scripting (XSS) | |
Out-of-Bounds | |
Resource Management Errors | |
CVE-2016-1973 | |
CVE-2016-1966 | |
Improper Data Handling | |
Out-of-Bounds | |
CVE-2012-1967 | |
CVE-2016-1961 | |
Use After Free | |
Out-of-Bounds | |
Security Features | |
Access Restriction Bypass | |
Out-of-Bounds | |
Out-of-bounds Write | |
CVE-2016-1964 | |
Resource Management Errors | |
CVE-2012-1964 | |
Use After Free | |
Use After Free | |
Out-of-Bounds | |
Use After Free | |
Use After Free | |
Out-of-Bounds | |
Use After Free | |
Use After Free | |
CVE-2016-1960 | |
Out-of-Bounds | |
Use After Free | |
Out-of-Bounds | |
Out-of-Bounds | |
Use After Free | |
Use After Free | |
Use After Free | |
Use After Free | |
Heap-based Buffer Overflow | |
Out-of-bounds Read | |
NULL Pointer Dereference | |
Out-of-Bounds | |
Resource Management Errors | |
Access Restriction Bypass | |
Cross-site Scripting (XSS) | |
Out-of-Bounds | |
Use After Free | |
CVE-2012-1948 | |
CVE-2012-1950 | |
CVE-2012-1955 | |
Improper Input Validation | |
Open Redirect | |
Resource Management Errors | |
Out-of-Bounds | |
Out-of-Bounds | |
Access Restriction Bypass | |
Out-of-Bounds | |
Use After Free | |
Use After Free | |
Integer Overflow or Wraparound | |
Cross-site Scripting (XSS) | |
Buffer Overflow | |
Use After Free | |
Out-of-Bounds | |
Out-of-Bounds | |
Use After Free | |
Use After Free | |
CVE-2012-1938 | |
CVE-2012-1937 | |
CVE-2011-3101 | |
Buffer Overflow | |
Information Exposure | |
Integer Overflow or Wraparound | |
Numeric Errors | |
Integer Overflow or Wraparound | |
Information Exposure | |
Out-of-Bounds | |
Use After Free | |
Use After Free | |
Cross-site Scripting (XSS) | |
Out-of-Bounds | |
Cross-site Scripting (XSS) | |
Access Restriction Bypass | |
CVE-2012-0467 | |
CVE-2012-0479 | |
Off-by-one Error | |
Cross-site Scripting (XSS) | |
Information Exposure | |
Out-of-Bounds | |
Cross-site Scripting (XSS) | |
Numeric Errors | |
Out-of-Bounds | |
Use After Free | |
Out-of-Bounds | |
Resource Management Errors | |
Resource Management Errors | |
Access Restriction Bypass | |
Cross-site Scripting (XSS) | |
CVE-2012-0462 | |
Cross-site Scripting (XSS) | |
Out-of-Bounds | |
Access Restriction Bypass | |
CVE-2012-0461 | |
Out-of-Bounds | |
Access Restriction Bypass | |
Code | |
Use After Free | |
Code | |
Cross-site Scripting (XSS) | |
Out-of-Bounds | |
Security Features | |
Out-of-Bounds | |
Use After Free | |
Access Restriction Bypass | |
Out-of-Bounds | |
Out-of-Bounds | |
CVE-2012-0442 | |
Execution with Unnecessary Privileges | |
Information Exposure | |
Use After Free | |
Execution with Unnecessary Privileges | |
Buffer Overflow | |
Use After Free | |
Execution with Unnecessary Privileges | |
Integer Overflow or Wraparound | |
Execution with Unnecessary Privileges | |
Integer Overflow or Wraparound | |
Information Exposure | |
Execution with Unnecessary Privileges | |
Improper Access Control | |
Out-of-Bounds | |
Buffer Overflow | |
Out-of-Bounds | |
Incorrect Use of Privileged APIs | |
Improper Following of a Certificate's Chain of Trust | |
Buffer Overflow | |
Information Exposure | |
Use After Free | |
Out-of-Bounds | |
CVE-2020-6514 | |
Out-of-bounds Read | |
Out-of-Bounds | |
Buffer Access with Incorrect Length Value | |
Execution with Unnecessary Privileges | |
Integer Overflow or Wraparound | |
Use After Free | |
Execution with Unnecessary Privileges | |
Cross-site Scripting (XSS) | |
Improper Input Validation | |
Use After Free | |
Execution with Unnecessary Privileges | |
Information Exposure | |
CVE-2015-4488 | |
Information Exposure | |
Information Exposure | |
Use After Free | |
Security Features | |
Heap-based Buffer Overflow | |
Arbitrary Code Injection | |
Access Restriction Bypass | |
Out-of-Bounds | |
Cross-site Scripting (XSS) | |
Out-of-Bounds | |
Code | |
CVE-2011-2995 | |
Use After Free | |
Use After Free | |
Integer Overflow or Wraparound | |
Code | |
Out-of-Bounds | |
Out-of-Bounds | |
Out-of-Bounds | |
Out-of-Bounds | |
Cryptographic Issues | |
Use After Free | |
Out-of-Bounds | |
Code | |
Buffer Overflow | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Files or Directories Accessible to External Parties | |
CVE-2011-2982 | |
Arbitrary Code Injection | |
Arbitrary Code Injection | |
Use After Free | |
Use After Free | |
Out-of-Bounds | |
Buffer Overflow | |
Buffer Overflow | |
Use After Free | |
CVE-2011-2376 | |
Code | |
Out-of-bounds Read | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Code | |
Execution with Unnecessary Privileges | |
Improper Input Validation | |
Resource Management Errors | |
CVE-2011-2364 | |
CVE-2011-2365 | |
Resource Management Errors | |
Configuration | |
Arbitrary Code Injection | |
Information Exposure | |
CVE-2011-2374 | |
CVE-2011-2375 | |
Arbitrary Code Injection | |
Out-of-Bounds | |
Access Restriction Bypass | |
Integer Overflow or Wraparound | |
Resource Management Errors | |
CVE-2011-0081 | |
Out-of-Bounds | |
Access Restriction Bypass | |
Out-of-Bounds | |
Information Exposure | |
CVE-2015-2708 | |
CVE-2011-0070 | |
CVE-2011-0080 | |
CVE-2011-0069 | |
CVE-2011-0075 | |
CVE-2011-0074 | |
Improper Input Validation | |
Integer Overflow or Wraparound | |
Out-of-Bounds | |
Out-of-Bounds | |
Use After Free | |
Improper Input Validation | |
Heap-based Buffer Overflow | |
Improper Input Validation | |
Improper Input Validation | |
Cross-site Request Forgery (CSRF) | |
Out-of-Bounds | |
Integer Overflow or Wraparound | |
Use After Free | |
Use After Free | |
CVE-2011-0078 | |
Directory Traversal | |
CVE-2011-0053 | |
Use After Free | |
Use After Free | |
Cross-site Request Forgery (CSRF) | |
Use After Free | |
Execution with Unnecessary Privileges | |
Improperly Implemented Security Check for Standard | |
CVE-2011-0062 | |
Out-of-Bounds | |
Out-of-Bounds | |
Out-of-Bounds | |
Use After Free | |
Out-of-Bounds | |
CVE-2015-0836 | |
Information Exposure | |
Use After Free | |
Buffer Overflow | |
Use After Free | |
Cross-site Request Forgery (CSRF) | |
Arbitrary Argument Injection | |
Exposed Dangerous Method or Function | |
Buffer Overflow | |
Heap-based Buffer Overflow | |
Improper Input Validation | |
Use After Free | |
CVE-2010-3771 | |
Out-of-bounds Write | |
Out-of-Bounds | |
Numeric Errors | |
CVE-2010-3773 | |
Integer Overflow or Wraparound | |
CVE-2010-3775 | |
Use After Free | |
Out-of-Bounds | |
Access Restriction Bypass | |
Cross-site Scripting (XSS) | |
Use After Free | |
CVE-2014-1577 | |
CVE-2014-1583 | |
CVE-2014-1574 | |
Out-of-Bounds | |
Out-of-Bounds | |
Use After Free | |
Out-of-Bounds | |
Cross-site Scripting (XSS) | |
Improper Input Validation | |
Improper Input Validation | |
Out-of-Bounds | |
Out-of-Bounds | |
Use After Free | |
CVE-2010-3182 | |
CVE-2010-3175 | |
CVE-2010-3176 | |
Arbitrary Code Injection | |
Use After Free | |
Out-of-bounds Write | |
NULL Pointer Dereference | |
Arbitrary Argument Injection | |
Operation on a Resource after Expiration or Release | |
Information Exposure | |
Integer Overflow or Wraparound | |
Information Exposure | |
Null Byte Interaction Error (Poison Null Byte) | |
Improper Preservation of Permissions | |
Use After Free | |
Use After Free | |
Buffer Overflow | |
Use After Free | |
Improper Preservation of Permissions | |
Buffer Overflow | |
Improper Input Validation | |
Out-of-bounds Read | |
Out-of-Bounds | |
Use After Free | |
CVE-2014-1547 | |
CVE-2014-1533 | |
Use After Free | |
Inclusion of Functionality from Untrusted Control Sphere | |
Out-of-bounds Read | |
Buffer Overflow | |
Information Exposure | |
Information Exposure | |
Out-of-bounds Read | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Use After Free | |
Buffer Overflow | |
Buffer Overflow | |
Out-of-bounds Write | |
Out-of-Bounds | |
Buffer Overflow | |
Use After Free | |
Out-of-bounds Write | |
Information Exposure | |
Buffer Overflow | |
Information Exposure | |
Improper Restriction of Rendered UI Layers or Frames | |
Cross-site Scripting (XSS) | |
Buffer Overflow | |
Cross-site Scripting (XSS) | |
Use After Free | |
Out-of-bounds Read | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Buffer Overflow | |
Cross-site Scripting (XSS) | |
Information Exposure | |
Buffer Overflow | |
Buffer Overflow | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Information Exposure | |
Use After Free | |
Information Exposure | |
Buffer Overflow | |
Use After Free | |
Use After Free | |
Improper Input Validation | |
Buffer Overflow | |
Use After Free | |
Improper Neutralization of Special Elements | |
Use After Free | |
User Interface (UI) Misrepresentation of Critical Information | |
User Interface (UI) Misrepresentation of Critical Information | |
Information Exposure | |
Incorrect Default Permissions | |
Out-of-bounds Read | |
User Interface (UI) Misrepresentation of Critical Information | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Integer Overflow or Wraparound | |
Out-of-bounds Read | |
Files or Directories Accessible to External Parties | |
Resource Exhaustion | |
Heap-based Buffer Overflow | |
Use After Free | |
Buffer Overflow | |
Buffer Overflow | |
Heap-based Buffer Overflow | |
Inclusion of Functionality from Untrusted Control Sphere | |
Exposed Dangerous Method or Function | |
Cross-site Scripting (XSS) | |
Buffer Overflow | |
Use After Free | |
Missing Authorization | |
Inclusion of Functionality from Untrusted Control Sphere | |
Cross-site Scripting (XSS) | |
Use After Free | |
Execution with Unnecessary Privileges | |
Buffer Overflow | |
Inclusion of Functionality from Untrusted Control Sphere | |
Reliance on Untrusted Inputs in a Security Decision | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Privilege Context Switching Error | |
Use After Free | |
Buffer Overflow | |
Cross-site Scripting (XSS) | |
Improper Cross-boundary Removal of Sensitive Data | |
Loop with Unreachable Exit Condition ('Infinite Loop') | |
Inclusion of Functionality from Untrusted Control Sphere | |
Inclusion of Functionality from Untrusted Control Sphere | |
Improper Neutralization of Special Elements | |
Resource Exhaustion | |
Inclusion of Functionality from Untrusted Control Sphere | |
Unsynchronized Access to Shared Data in a Multithreaded Context | |
Buffer Overflow | |
Use After Free | |
Use After Free | |
Inclusion of Functionality from Untrusted Control Sphere | |
Buffer Overflow | |
Inclusion of Functionality from Untrusted Control Sphere | |
Use After Free | |
Out-of-bounds Read | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Information Exposure | |
Use After Free | |
Out-of-Bounds | |
Information Exposure | |
Integer Overflow or Wraparound | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Out-of-Bounds | |
Information Exposure | |
Use After Free | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Use After Free | |
Buffer Overflow | |
Access of Resource Using Incompatible Type ('Type Confusion') | |
Integer Overflow or Wraparound | |
Link Following | |
Integer Overflow or Wraparound | |
Improperly Implemented Security Check for Standard | |
Authentication Bypass | |
Integer Overflow or Wraparound | |
Improper Access Control | |
Files or Directories Accessible to External Parties | |
User Interface (UI) Misrepresentation of Critical Information | |
Session Fixation | |
Untrusted Search Path | |
Improperly Implemented Security Check for Standard | |
User Interface (UI) Misrepresentation of Critical Information | |
Deserialization of Untrusted Data | |
Integer Overflow or Wraparound | |
Out-of-bounds Read | |
Inclusion of Functionality from Untrusted Control Sphere | |
Encoding Error | |
Improper Authorization | |
Encoding Error | |
Improper Authorization | |
Improper Cross-boundary Removal of Sensitive Data | |
Improperly Implemented Security Check for Standard | |
Improper Cross-boundary Removal of Sensitive Data | |
Information Exposure | |
Improper Neutralization of Special Elements | |
Cross-site Scripting (XSS) | |
Unsynchronized Access to Shared Data in a Multithreaded Context | |
Information Exposure | |
Improper Certificate Validation | |
Cryptographic Issues | |
Integer Overflow or Wraparound | |
Stack-based Buffer Overflow | |
Improper Input Validation | |
Improper Input Validation | |
Access Restriction Bypass | |
Access Restriction Bypass | |
Cross-site Scripting (XSS) | |
Cross-site Scripting (XSS) | |
CVE-2014-1586 | |
CVE-2014-1585 | |
Out-of-bounds Read | |
Out-of-Bounds | |
Information Exposure | |
Authentication Bypass | |
Improper Input Validation | |
Improper Cross-boundary Removal of Sensitive Data | |
Improper Input Validation | |
Product UI does not Warn User of Unsafe Actions | |
Improper Access Control | |
Access Restriction Bypass | |
Improper Input Validation | |
Cross-site Scripting (XSS) | |
Improper Input Validation | |
Access Restriction Bypass | |
Cross-site Request Forgery (CSRF) | |
Access Restriction Bypass | |
CVE-2005-2395 | |