| HTTP Response Splitting | |
| Excessive Platform Resource Consumption within a Loop | |
| Improper Access Control | |
| Server-Side Request Forgery (SSRF) | |
| Improper Output Neutralization for Logs | |
| Improper Authentication | |
| Improper Input Validation | |
| Reachable Assertion | |
| Memory Leak | |
| Information Exposure | |
| Incorrect Default Permissions | |
| Incorrect Default Permissions | |
| Improper Input Validation | |
| Use After Free | |
| Detection of Error Condition Without Action | |
| Resource Exhaustion | |
| Improper Validation of Certificate with Host Mismatch | |
| Missing Release of Resource after Effective Lifetime | |
| Improper Certificate Validation | |
| Misinterpretation of Input | |
| Inclusion of Functionality from Untrusted Control Sphere | |
| Improper Encoding or Escaping of Output | |
| Server-Side Request Forgery (SSRF) | |
| Out-of-Bounds | |
| Out-of-bounds Read | |
| Incorrect Calculation of Buffer Size | |
| Allocation of Resources Without Limits or Throttling | |
| Use After Free | |
| Use After Free | |
| HTTP Request Smuggling | |
| Out-of-bounds Write | |
| Improper Input Validation | |
| Inclusion of Functionality from Untrusted Control Sphere | |
| NULL Pointer Dereference | |
| Improper Encoding or Escaping of Output | |
| NULL Pointer Dereference | |
| Improper Encoding or Escaping of Output | |
| Improper Input Validation | |
| Improper Encoding or Escaping of Output | |
| Detection of Error Condition Without Action | |
| Improper Validation of Certificate with Host Mismatch | |
| Missing Release of Resource after Effective Lifetime | |
| Improper Certificate Validation | |
| Misinterpretation of Input | |
| Resource Exhaustion | |
| Cross-site Scripting (XSS) | |
| Missing Required Cryptographic Step | |
| Missing Encryption of Sensitive Data | |
| Information Exposure | |
| Out-of-bounds Read | |
| Expected Behavior Violation | |
| Use After Free | |
| Improper Certificate Validation | |
| Directory Traversal | |
| Out-of-Bounds | |
| Improper Input Validation | |
| Buffer Overflow | |
| Improper Certificate Validation | |
| Special Element Injection | |
| Directory Traversal | |
| HTTP Response Splitting | |
| HTTP Response Splitting | |
| Cleartext Transmission of Sensitive Information | |
| Cleartext Transmission of Sensitive Information | |
| Allocation of Resources Without Limits or Throttling | |
| Integer Overflow or Wraparound | |
| Integer Overflow or Wraparound | |
| Incorrect Type Conversion or Cast | |
| Use After Free | |
| Double Free | |
| Information Exposure | |
| Resource Leak | |
| CVE-2022-48279 | |
| HTTP Response Splitting | |
| HTTP Request Smuggling | |
| Out-of-bounds Read | |
| Cleartext Transmission of Sensitive Information | |
| Use After Free | |
| Cleartext Transmission of Sensitive Information | |
| Double Free | |
| Expected Behavior Violation | |
| Improper Validation of Syntactic Correctness of Input | |
| Improper Enforcement of Message Integrity During Transmission in a Communication Channel | |
| Allocation of Resources Without Limits or Throttling | |
| Improper Preservation of Permissions | |
| Arbitrary Command Injection | |
| Insufficient Verification of Data Authenticity | |
| Allocation of Resources Without Limits or Throttling | |
| Integer Overflow or Wraparound | |
| Integer Overflow or Wraparound | |
| HTTP Request Smuggling | |
| Loop with Unreachable Exit Condition ('Infinite Loop') | |
| Arbitrary Command Injection | |
| Integer Overflow or Wraparound | |
| HTTP Request Smuggling | |
| Integer Overflow or Wraparound | |
| Loop with Unreachable Exit Condition ('Infinite Loop') | |
| Use After Free | |
| NULL Pointer Dereference | |
| NULL Pointer Dereference | |
| Authentication Bypass | |
| Use After Free | |
| Information Exposure | |
| NULL Pointer Dereference | |
| Incorrect Calculation of Buffer Size | |
| Improper Input Validation | |
| Incorrect Calculation | |
| Resource Exhaustion | |
| Improper Input Validation | |
| NULL Pointer Dereference | |
| Information Exposure | |
| Server-Side Request Forgery (SSRF) | |
| Out-of-bounds Write | |
| Out-of-bounds Read | |
| NULL Pointer Dereference | |
| Out-of-bounds Read | |
| NULL Pointer Dereference | |
| Improper Input Validation | |
| Information Exposure | |
| Unchecked Error Condition | |
| Incorrect Calculation | |
| Integer Overflow or Wraparound | |
| Resource Exhaustion | |
| Out-of-Bounds | |
| Insufficient Session Expiration | |
| Out-of-bounds Read | |
| Improper Certificate Validation | |
| Use After Free | |
| Missing Initialization of a Variable | |
| Out-of-bounds Read | |
| Improper Authentication | |
| NULL Pointer Dereference | |
| Improper Certificate Validation | |
| NULL Pointer Dereference | |
| Improper Input Validation | |
| Improper Input Validation | |
| Improper Authentication | |
| Use of a Broken or Risky Cryptographic Algorithm | |
| Open Redirect | |
| Resource Exhaustion | |
| HTTP Request Smuggling | |
| Use After Free | |
| Use After Free | |
| Buffer Overflow | |
| Resource Exhaustion | |
| Integer Overflow or Wraparound | |
| Resource Exhaustion | |
| Integer Overflow or Wraparound | |
| Resource Exhaustion | |
| Out-of-bounds Read | |
| Memory Leak | |
| Covert Timing Channel | |
| Unchecked Error Condition | |
| Integer Overflow or Wraparound | |
| Out-of-bounds Write | |
| Improper Input Validation | |
| Improper Authentication | |
| Allocation of Resources Without Limits or Throttling | |
| Use After Free | |
| Information Exposure | |
| Loop with Unreachable Exit Condition ('Infinite Loop') | |
| Resource Exhaustion | |
| NULL Pointer Dereference | |
| NULL Pointer Dereference | |
| Out-of-bounds Write | |
| Use After Free | |
| Use After Free | |
| Missing Initialization of a Variable | |
| Uncontrolled Recursion | |
| Information Exposure | |
| Heap-based Buffer Overflow | |
| Missing Release of Resource after Effective Lifetime | |
| Open Redirect | |
| Improper Access Control | |
| Path Equivalence | |
| Resource Exhaustion | |
| Information Exposure | |
| Integer Overflow or Wraparound | |
| Client-Side Enforcement of Server-Side Security | |
| Heap-based Buffer Overflow | |
| Resource Exhaustion | |
| Out-of-bounds Read | |
| Resource Exhaustion | |
| Resource Exhaustion | |
| Resource Exhaustion | |
| Authentication Bypass by Primary Weakness | |
| Out-of-bounds Read | |
| Cross-site Scripting (XSS) | |
| Covert Timing Channel | |
| Uncontrolled Recursion | |
| Information Exposure | |
| Covert Timing Channel | |
| Missing Required Cryptographic Step | |
| Out-of-bounds Write | |
| Out-of-bounds Write | |
| Execution with Unnecessary Privileges | |
| Improper Input Validation | |
| Covert Timing Channel | |
| Integer Overflow or Wraparound | |
| Out-of-Bounds | |
| NULL Pointer Dereference | |
| NULL Pointer Dereference | |
| Information Exposure | |
| HTTP Response Splitting | |
| Out-of-Bounds | |
| Integer Overflow or Wraparound | |
| Out-of-bounds Read | |
| Improper Authentication | |
| Information Exposure | |
| Out-of-Bounds | |
