Vulnerabilities > Always-Incorrect Control Flow Implementation
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-11-12 | CVE-2022-45196 | Always-Incorrect Control Flow Implementation vulnerability in Hyperledger Fabric 2.3 Hyperledger Fabric 2.3 allows attackers to cause a denial of service (orderer crash) by repeatedly sending a crafted channel tx with the same Channel name. | 7.5 |
2022-10-25 | CVE-2022-39354 | Always-Incorrect Control Flow Implementation vulnerability in EVM Project EVM SputnikVM, also called evm, is a Rust implementation of Ethereum Virtual Machine. | 7.5 |
2022-06-09 | CVE-2022-29255 | Always-Incorrect Control Flow Implementation vulnerability in Vyperlang Vyper Vyper is a Pythonic Smart Contract Language for the ethereum virtual machine. | 7.5 |
2022-03-16 | CVE-2021-45852 | Always-Incorrect Control Flow Implementation vulnerability in Projectworlds Hospital Management System in PHP 1.0 An issue was discovered in Projectworlds Hospital Management System v1.0. | 5.3 |
2022-01-19 | CVE-2022-21679 | Always-Incorrect Control Flow Implementation vulnerability in Istio 1.12.0/1.12.1 Istio is an open platform to connect, manage, and secure microservices. | 9.8 |
2021-12-23 | CVE-2021-38019 | Always-Incorrect Control Flow Implementation vulnerability in multiple products Insufficient policy enforcement in CORS in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | 6.5 |
2021-11-17 | CVE-2021-43979 | Always-Incorrect Control Flow Implementation vulnerability in Openpolicyagent Gatekeeper Styra Open Policy Agent (OPA) Gatekeeper through 3.7.0 mishandles concurrency, sometimes resulting in incorrect access control. | 5.3 |
2021-10-18 | CVE-2021-41153 | Always-Incorrect Control Flow Implementation vulnerability in EVM Project EVM The evm crate is a pure Rust implementation of Ethereum Virtual Machine. | 9.8 |
2021-09-23 | CVE-2021-34767 | Always-Incorrect Control Flow Implementation vulnerability in Cisco IOS XE A vulnerability in IPv6 traffic processing of Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, adjacent attacker to cause a Layer 2 (L2) loop in a configured VLAN, resulting in a denial of service (DoS) condition for that VLAN. | 7.4 |
2021-08-05 | CVE-2021-37604 | Always-Incorrect Control Flow Implementation vulnerability in Microchip Miwi 6.5 In version 6.5 of Microchip MiWi software and all previous versions including legacy products, there is a possibility of frame counters being validated/updated prior to the message authentication. | 7.5 |