Vulnerabilities > Access of Resource Using Incompatible Type ('Type Confusion')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-02 | CVE-2022-1786 | Type Confusion vulnerability in multiple products A use-after-free flaw was found in the Linux kernel’s io_uring subsystem in the way a user sets up a ring with IORING_SETUP_IOPOLL with more than one task completing submissions on this ring. | 7.8 |
| 2022-05-11 | CVE-2022-30557 | Type Confusion vulnerability in Foxit PDF Editor and PDF Reader Foxit PDF Reader and PDF Editor before 11.2.2 have a Type Confusion issue that causes a crash because of Unsigned32 mishandling during JavaScript execution. | 7.5 |
| 2022-04-05 | CVE-2022-0457 | Type Confusion vulnerability in Google Chrome Type confusion in V8 in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2022-04-05 | CVE-2022-0795 | Type Confusion vulnerability in Google Chrome Type confusion in Blink Layout in Google Chrome prior to 99.0.4844.51 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2022-03-29 | CVE-2021-46743 | Type Confusion vulnerability in Google Firebase PHP-Jwt In Firebase PHP-JWT before 6.0.0, an algorithm-confusion issue (e.g., RS256 / HS256) exists via the kid (aka Key ID) header, when multiple types of keys are loaded in a key ring. | 9.1 |
| 2022-03-28 | CVE-2021-26600 | Type Confusion vulnerability in Impresscms ImpressCMS before 1.4.3 has plugins/preloads/autologin.php type confusion with resultant Authentication Bypass (!= instead of !==). | 9.8 |
| 2022-03-18 | CVE-2022-22661 | Type Confusion vulnerability in Apple mac OS X and Macos A type confusion issue was addressed with improved state handling. | 7.8 |
| 2022-03-10 | CVE-2021-40061 | Type Confusion vulnerability in Huawei Emui, Harmonyos and Magic UI There is a vulnerability of accessing resources using an incompatible type (type confusion) in the Bastet module. | 7.5 |
| 2022-02-22 | CVE-2022-21656 | Type Confusion vulnerability in Envoyproxy Envoy Envoy is an open source edge and service proxy, designed for cloud-native applications. | 5.9 |
| 2022-02-14 | CVE-2021-46463 | Type Confusion vulnerability in F5 NJS njs through 0.7.1, used in NGINX, was discovered to contain a control flow hijack caused by a Type Confusion vulnerability in njs_promise_perform_then(). | 9.8 |