Vulnerabilities > Always-Incorrect Control Flow Implementation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-21 | CVE-2021-43839 | Always-Incorrect Control Flow Implementation vulnerability in Crypto Cronos, Ethermint and Evmos Cronos is a commercial implementation of a blockchain. | 7.5 |
| 2021-11-17 | CVE-2021-43979 | Always-Incorrect Control Flow Implementation vulnerability in Openpolicyagent Gatekeeper Styra Open Policy Agent (OPA) Gatekeeper through 3.7.0 mishandles concurrency, sometimes resulting in incorrect access control. | 5.3 |
| 2021-10-18 | CVE-2021-41153 | Always-Incorrect Control Flow Implementation vulnerability in EVM Project EVM The evm crate is a pure Rust implementation of Ethereum Virtual Machine. | 9.8 |
| 2021-09-23 | CVE-2021-34767 | Always-Incorrect Control Flow Implementation vulnerability in Cisco IOS XE A vulnerability in IPv6 traffic processing of Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, adjacent attacker to cause a Layer 2 (L2) loop in a configured VLAN, resulting in a denial of service (DoS) condition for that VLAN. | 7.4 |
| 2021-08-05 | CVE-2021-37604 | Always-Incorrect Control Flow Implementation vulnerability in Microchip Miwi 6.5 In version 6.5 of Microchip MiWi software and all previous versions including legacy products, there is a possibility of frame counters being validated/updated prior to the message authentication. | 7.5 |
| 2021-08-05 | CVE-2021-37605 | Always-Incorrect Control Flow Implementation vulnerability in Microchip Miwi 6.5 In version 6.5 Microchip MiWi software and all previous versions including legacy products, the stack is validating only two out of four Message Integrity Check (MIC) bytes. | 7.5 |
| 2021-06-21 | CVE-2021-0517 | Always-Incorrect Control Flow Implementation vulnerability in Google Android 11.0 In updateCapabilities of ConnectivityService.java, there is a possible incorrect network state determination due to a logic error in the code. | 7.5 |
| 2021-06-14 | CVE-2021-32684 | Always-Incorrect Control Flow Implementation vulnerability in Scandipwa Magento-Scripts 1.5.1/1.5.2 magento-scripts contains scripts and configuration used by Create Magento App, a zero-configuration tool-chain which allows one to deploy Magento 2. | 5.5 |
| 2021-03-11 | CVE-2020-36277 | Always-Incorrect Control Flow Implementation vulnerability in multiple products Leptonica before 1.80.0 allows a denial of service (application crash) via an incorrect left shift in pixConvert2To8 in pixconv.c. | 7.5 |
| 2021-01-13 | CVE-2021-1236 | Always-Incorrect Control Flow Implementation vulnerability in multiple products Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. | 5.3 |