Description
The product uses or specifies an encoding when generating output to a downstream component, but the specified encoding is not the same as the encoding that is expected by the downstream component.
CVE vulnerabilities with CWE-838 (16)
9.8
CVSS
CRITICAL
CVE-2025-4052
pub. 2025-05-05
9.8
CVSS
CRITICAL
CVE-2019-18981
pub. 2019-11-15
8.1
CVSS
HIGH
CVE-2020-10996
pub. 2020-04-27
7.8
CVSS
HIGH
CVE-2018-9862
pub. 2018-04-09
7.5
CVSS
HIGH
CVE-2024-11702
pub. 2024-11-26
6.8
CVSS
MEDIUM
CVE-2019-6110
pub. 2019-01-31
6.5
CVSS
MEDIUM
CVE-2023-6512
pub. 2023-12-06
5.3
CVSS
MEDIUM
CVE-2023-5770
pub. 2024-01-09
4.3
CVSS
MEDIUM
CVE-2024-34006
pub. 2024-05-31
4.3
CVSS
MEDIUM
CVE-2023-3735
pub. 2023-08-01
4.3
CVSS
MEDIUM
CVE-2020-7292
pub. 2020-07-15
4.1
CVSS
MEDIUM
CVE-2020-29135
pub. 2020-11-27