Vulnerabilities > Incorrect Comparison

DATE CVE VULNERABILITY TITLE RISK
2020-05-25 CVE-2020-13485 Incorrect Comparison vulnerability in Verbb Knock
The Knock Knock plugin before 1.2.8 for Craft CMS allows IP Whitelist bypass via an X-Forwarded-For HTTP header.
network
low complexity
verbb CWE-697
critical
9.1
2020-05-12 CVE-2020-11072 Incorrect Comparison vulnerability in Simpleledger Slp-Validate 1.0.0
In SLP Validate (npm package slp-validate) before version 1.2.1, users could experience false-negative validation outcomes for MINT transaction operations.
network
low complexity
simpleledger CWE-697
8.6
2020-05-12 CVE-2020-11071 Incorrect Comparison vulnerability in Simpleledger Slpjs
SLPJS (npm package slpjs) before version 0.27.2, has a vulnerability where users could experience false-negative validation outcomes for MINT transaction operations.
network
low complexity
simpleledger CWE-697
8.6
2020-05-11 CVE-2020-10027 Incorrect Comparison vulnerability in Zephyrproject Zephyr 1.14.0/2.1.0
An attacker who has obtained code execution within a user thread is able to elevate privileges to that of the kernel.
local
low complexity
zephyrproject CWE-697
7.8
2020-05-11 CVE-2020-10024 Incorrect Comparison vulnerability in Zephyrproject Zephyr 1.14.2/2.1.0
The arm platform-specific code uses a signed integer comparison when validating system call numbers.
local
low complexity
zephyrproject CWE-697
7.8
2020-03-30 CVE-2019-20634 Incorrect Comparison vulnerability in Proofpoint Email Protection 20190908
An issue was discovered in Proofpoint Email Protection through 2019-09-08.
network
high complexity
proofpoint CWE-697
3.7
2020-03-23 CVE-2020-8864 Incorrect Comparison vulnerability in Dlink products
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-867, DIR-878, and DIR-882 routers with firmware 1.10B04.
low complexity
dlink CWE-697
8.8
2020-03-16 CVE-2020-5849 Incorrect Comparison vulnerability in Unraid 6.8.0
Unraid 6.8.0 allows authentication bypass.
network
low complexity
unraid CWE-697
7.5
2017-01-27 CVE-2016-10003 Incorrect Comparison vulnerability in Squid-Cache Squid
Incorrect HTTP Request header comparison in Squid HTTP Proxy 3.5.0.1 through 3.5.22, and 4.0.1 through 4.0.16 results in Collapsed Forwarding feature mistakenly identifying some private responses as being suitable for delivery to multiple clients.
network
low complexity
squid-cache CWE-697
7.5
2005-09-06 CVE-2005-2801 Incorrect Comparison vulnerability in Linux Kernel 2.6.0
xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the name_index fields when sharing xattr blocks, which could prevent default ACLs from being applied.
network
low complexity
linux CWE-697
7.5