CVEbaza.plCWE DictionaryCWE-167
Common Weakness Enumeration

CWE-167

Improper Handling of Additional Special Element

Category: BaseCVE: 5
Description

The product receives input from an upstream component, but it does not handle or incorrectly handles when an additional unexpected special element is provided.

CVE vulnerabilities with CWE-167 (5)
8.7
CVSS
HIGH
CVE-2025-30656

An Improper Handling of Additional Special Element vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on MX Series with MS-MPC, MS-MIC and SPC3, and SRX Series, allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). If the SIP ALG processes specifically formatted SIP invites, a memory corruption will occur which will lead to a crash of the FPC processing these packets. Although the system will automatically recover with the restart of the FPC, subsequent SIP invites will cause the crash again and lead to a sustained DoS. This issue affects Junos OS on MX Series and SRX Series:  * all versions before 21.2R3-S9, * 21.4 versions before 21.4R3-S10, * 22.2 versions before 22.2R3-S6, * 22.4 versions before 22.4R3-S5, * 23.2 versions before 23.2R2-S3, * 23.4 versions before 23.4R2-S3, * 24.2 versions before 24.2R1-S2, 24.2R2.

pub. 2025-04-09
7.5
CVSS
HIGH
CVE-2023-4809

In pf packet processing with a 'scrub fragment reassemble' rule, a packet containing multiple IPv6 fragment headers would be reassembled, and then immediately processed. That is, a packet with multiple fragment extension headers would not be recognized as the correct ultimate payload. Instead a packet with multiple IPv6 fragment headers would unexpectedly be interpreted as a fragmented packet, rather than as whatever the real payload is. As a result, IPv6 fragments may bypass pf firewall rules written on the assumption all fragments have been reassembled and, as a result, be forwarded or processed by the host.

pub. 2023-09-06
6.1
CVSS
MEDIUM
CVE-2023-0643

Improper Handling of Additional Special Element in GitHub repository squidex/squidex prior to 7.4.0.

pub. 2023-02-02
5.3
CVSS
MEDIUM
CVE-2025-25006

Improper handling of additional special element in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network.

pub. 2025-08-12
4.3
CVSS
MEDIUM
CVE-2023-3580

Improper Handling of Additional Special Element in GitHub repository squidex/squidex prior to 7.4.0.

pub. 2023-07-10
Information
ID: CWE-167
Type: Base
Vulnerabilities: 5
MITRE CWE ↗
← CWE Dictionary