Vulnerabilities > Incorrect Type Conversion or Cast
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-05-12 | CVE-2017-0607 | Incorrect Type Conversion or Cast vulnerability in Linux Kernel 3.18 An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.6 |
| 2017-04-27 | CVE-2017-8291 | Incorrect Type Conversion or Cast vulnerability in Artifex Ghostscript Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via .rsdparams type confusion with a "/OutputFile (%pipe%" substring in a crafted .eps document that is an input to the gs program, as exploited in the wild in April 2017. | 7.8 |
| 2017-04-14 | CVE-2016-8602 | Incorrect Type Conversion or Cast vulnerability in Artifex Ghostscript The .sethalftone5 function in psi/zht2.c in Ghostscript before 9.21 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Postscript document that calls .sethalftone5 with an empty operand stack. | 7.8 |
| 2017-02-26 | CVE-2017-0037 | Incorrect Type Conversion or Cast vulnerability in Microsoft Edge and Internet Explorer Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the Layout::MultiColumnBoxBuilder::HandleColumnBreakOnColumnSpanningElement function in mshtml.dll, which allows remote attackers to execute arbitrary code via vectors involving a crafted Cascading Style Sheets (CSS) token sequence and crafted JavaScript code that operates on a TH element. | 7.6 |
| 2017-02-20 | CVE-2016-7655 | Incorrect Type Conversion or Cast vulnerability in Apple Iphone OS and mac OS X An issue was discovered in certain Apple products. | 6.8 |
| 2017-02-20 | CVE-2016-7617 | Incorrect Type Conversion or Cast vulnerability in Apple mac OS X An issue was discovered in certain Apple products. | 9.3 |
| 2017-01-11 | CVE-2017-2962 | Incorrect Type Conversion or Cast vulnerability in Adobe products Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable type confusion vulnerability in the XSLT engine related to localization functionality. | 9.3 |
| 2016-12-10 | CVE-2016-7156 | Incorrect Type Conversion or Cast vulnerability in multiple products The pvscsi_convert_sglist function in hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) by leveraging an incorrect cast. | 4.4 |
| 2016-11-08 | CVE-2016-7865 | Incorrect Type Conversion or Cast vulnerability in multiple products Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable type confusion vulnerability. | 9.3 |
| 2016-11-08 | CVE-2016-7861 | Incorrect Type Conversion or Cast vulnerability in multiple products Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable type confusion vulnerability. | 9.3 |