Vulnerabilities > Incorrect Comparison
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-25 | CVE-2020-13485 | Incorrect Comparison vulnerability in Verbb Knock The Knock Knock plugin before 1.2.8 for Craft CMS allows IP Whitelist bypass via an X-Forwarded-For HTTP header. | 6.4 |
| 2020-05-12 | CVE-2020-11072 | Incorrect Comparison vulnerability in Simpleledger Slp-Validate 1.0.0 In SLP Validate (npm package slp-validate) before version 1.2.1, users could experience false-negative validation outcomes for MINT transaction operations. | 5.0 |
| 2020-05-12 | CVE-2020-11071 | Incorrect Comparison vulnerability in Simpleledger Slpjs SLPJS (npm package slpjs) before version 0.27.2, has a vulnerability where users could experience false-negative validation outcomes for MINT transaction operations. | 5.0 |
| 2020-05-11 | CVE-2020-10027 | Incorrect Comparison vulnerability in Zephyrproject Zephyr 1.14.0/2.1.0 An attacker who has obtained code execution within a user thread is able to elevate privileges to that of the kernel. | 7.2 |
| 2020-05-11 | CVE-2020-10024 | Incorrect Comparison vulnerability in Zephyrproject Zephyr 1.14.2/2.1.0 The arm platform-specific code uses a signed integer comparison when validating system call numbers. | 7.2 |
| 2020-03-30 | CVE-2019-20634 | Incorrect Comparison vulnerability in Proofpoint Email Protection 20190908 An issue was discovered in Proofpoint Email Protection through 2019-09-08. | 3.7 |
| 2020-03-23 | CVE-2020-8864 | Incorrect Comparison vulnerability in Dlink products This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-867, DIR-878, and DIR-882 routers with firmware 1.10B04. | 8.3 |
| 2020-03-16 | CVE-2020-5849 | Incorrect Comparison vulnerability in Unraid 6.8.0 Unraid 6.8.0 allows authentication bypass. | 5.0 |
| 2017-01-27 | CVE-2016-10003 | Incorrect Comparison vulnerability in Squid-Cache Squid Incorrect HTTP Request header comparison in Squid HTTP Proxy 3.5.0.1 through 3.5.22, and 4.0.1 through 4.0.16 results in Collapsed Forwarding feature mistakenly identifying some private responses as being suitable for delivery to multiple clients. | 7.5 |
| 2005-09-06 | CVE-2005-2801 | Incorrect Comparison vulnerability in Linux Kernel 2.6.0 xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the name_index fields when sharing xattr blocks, which could prevent default ACLs from being applied. | 7.5 |