CVEbaza.plSłownik CWECWE-670
Common Weakness Enumeration

CWE-670

Always-Incorrect Control Flow Implementation

Kategoria: ClassCVE: 165
Opis

Kod zawiera ścieżkę przepływu sterowania, która nie odzwierciedla algorytmu, który miała implementować, prowadząc do nieprawidłowego zachowania za każdym razem, gdy ta ścieżka jest wykonywana. Skutkuje to błędnymi wynikami programu.

Description (EN)

The code contains a control flow path that does not reflect the algorithm that the path is intended to implement, leading to incorrect behavior any time this path is navigated.

Podatności CVE z CWE-670 (165)
9.8
CVSS
CRITICAL
CVE-2025-43359

Błąd logiki zarządzania stanem w systemach Apple powoduje, że gniazdo UDP serwera, które powinno być powiązane wyłącznie z lokalnym interfejsem sieciowym, może stać się dostępne na wszystkich interfejsach. Stanowi to poważne zagrożenie dla bezpieczeństwa sieciowego, ponieważ usługi lokalnie izolowane mogą zostać nieoczekiwanie wyeksponowane na zewnętrzne połączenia.

pub. 2025-09-15
9.8
CVSS
CRITICAL
CVE-2022-25745

Memory corruption in modem due to improper input validation while handling the incoming CoAP message

pub. 2023-04-13
9.8
CVSS
CRITICAL
CVE-2020-1914

A logic vulnerability when handling the SaveGeneratorLong instruction in Facebook Hermes prior to commit b2021df620824627f5a8c96615edbd1eb7fdddfc allows attackers to potentially read out of bounds or theoretically execute arbitrary code via crafted JavaScript. Note that this is only exploitable if the application using Hermes permits evaluation of untrusted JavaScript. Hence, most React Native applications are not affected.

pub. 2020-10-08
9.8
CVSS
CRITICAL
CVE-2020-17466

Turcom TRCwifiZone through 2020-08-10 allows authentication bypass by visiting manage/control.php and ignoring 302 Redirect responses.

pub. 2020-08-11
9.8
CVSS
CRITICAL
CVE-2019-17192

The WebRTC component in the Signal Private Messenger application through 4.47.7 for Android processes videoconferencing RTP packets before a callee chooses to answer a call, which might make it easier for remote attackers to cause a denial of service or possibly have unspecified other impact via malformed packets. NOTE: the vendor plans to continue this behavior for performance reasons unless a WebRTC design change occurs

pub. 2019-10-05
9.3
CVSS
CRITICAL
CVE-2025-24800

Krytyczna podatność w bibliotece ismp-grandpa wchodzącej w skład projektu Hyperbridge pozwala złośliwemu proverowi przekonać weryfikator o finalności dowolnych nagłówków bloków. Może to prowadzić do kradzieży środków lub kompromitacji aplikacji cross-chain.

pub. 2025-01-28
9.1
CVSS
CRITICAL
CVE-2026-55276

Always-Incorrect Control Flow Implementation vulnerability in Apache Tomcat meant that special roles and empty authorisation constraints were not included when the effective web.xml was logged. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.22, from 10.1.0-M1 through 10.1.55, from 9.0.0.M1 through 9.0.118, from 8.5.0 through 8.5.100. Other versions that have reached end of support may also be affected. Users are recommended to upgrade to version 11.0.23, 10.1.56 or 9.0.119 which fixes the issue.

pub. 2026-06-29
9.1
CVSS
CRITICAL
CVE-2025-29312

Podatność w systemie sterowania siecią ONOS v2.7.0 umożliwia atakującemu wywołanie nieoczekiwanego zachowania urządzenia podłączonego do starszego przełącznika (legacy switch) poprzez zmianę typu łącza z pośredniego (indirect) na bezpośredni (direct). Ocena CVSS 9.1 wskazuje na krytyczny wpływ na integralność i dostępność sieci.

pub. 2025-03-24
9.0
CVSS
CRITICAL
CVE-2024-32971

Podatność w Apollo Router powoduje, że przy włączonej funkcji rozproszonego cache'owania planów zapytań (distributed query plan caching) może dojść do wykonania nieprawidłowej wersji operacji GraphQL. Skutkuje to potencjalnym ujawnieniem nieodpowiednich danych lub wykonaniem niezamierzonych mutacji na serwerach podgrafów.

pub. 2024-05-02
8.8
CVSS
HIGH
CVE-2023-31211

Insufficient authentication flow in Checkmk before 2.2.0p18, 2.1.0p38 and 2.0.0p39 allows attacker to use locked credentials

pub. 2024-01-12
8.8
CVSS
HIGH
CVE-2023-20558

Insufficient control flow management in AmdCpmOemSmm may allow a privileged attacker to tamper with the SMM handler potentially leading to an escalation of privileges.

pub. 2023-04-02
8.8
CVSS
HIGH
CVE-2018-16766

In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service (application crash) or possibly have unspecified other impact because Errors::unreachable() is reached.

pub. 2018-09-10
8.7
CVSS
HIGH
CVE-2026-33011

Nest is a framework for building scalable Node.js server-side applications. In versions 11.1.15 and below, a NestJS application using @nestjs/platform-fastify GET middleware can be bypassed because Fastify automatically redirects HEAD requests to the corresponding GET handlers (if they exist). As a result: middleware will be completely skipped, the HTTP response won't include a body (since the response is truncated when redirecting a HEAD request to a GET handler), and the actual handler will still be executed. This issue is fixed in version 11.1.16.

pub. 2026-03-20
8.7
CVSS
HIGH
CVE-2026-1874

Always-Incorrect Control Flow Implementation vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5-ENET/IP Ethernet Module FX5-ENET/IP versions 1.106 and prior and Mitsubishi Electric Corporation MELSEC iQ-F Series FX5-EIP EtherNet/IP Module FX5-EIP versions 1.000 and prior allows a remote attacker to cause a denial-of-service (DoS) condition on the products by continuously sending UDP packets to the products. A system reset of the product is required for recovery.

pub. 2026-03-03
8.7
CVSS
HIGH
CVE-2021-41153

The evm crate is a pure Rust implementation of Ethereum Virtual Machine. In `evm` crate `< 0.31.0`, `JUMPI` opcode's condition is checked after the destination validity check. However, according to Geth and OpenEthereum, the condition check should happen before the destination validity check. This is a **high** severity security advisory if you use `evm` crate for Ethereum mainnet. In this case, you should update your library dependency immediately to on or after `0.31.0`. This is a **low** severity security advisory if you use `evm` crate in Frontier or in a standalone blockchain, because there's no security exploit possible with this advisory. It is **not** recommended to update to on or after `0.31.0` until all the normal chain upgrade preparations have been done. If you use Frontier or other `pallet-evm` based Substrate blockchain, please ensure to update your `spec_version` before updating this. For other blockchains, please make sure to follow a hard-fork process before you update this.

pub. 2021-10-18
8.6
CVSS
HIGH
CVE-2024-20480

A vulnerability in the DHCP Snooping feature of Cisco IOS XE Software on Software-Defined Access (SD-Access) fabric edge nodes could allow an unauthenticated, remote attacker to cause high CPU utilization on an affected device, resulting in a denial of service (DoS) condition that requires a manual reload to recover. This vulnerability is due to improper handling of IPv4 DHCP packets. An attacker could exploit this vulnerability by sending certain IPv4 DHCP packets to an affected device. A successful exploit could allow the attacker to cause the device to exhaust CPU resources and stop processing traffic, resulting in a DoS condition that requires a manual reload to recover.

pub. 2024-09-25
8.6
CVSS
HIGH
CVE-2022-2993

There is an error in the condition of the last if-statement in the function smp_check_keys. It was rejecting current keys if all requirements were unmet.

pub. 2022-12-09
8.3
CVSS
HIGH
CVE-2024-5659

Rockwell Automation was made aware of a vulnerability that causes all affected controllers on the same network to result in a major nonrecoverable fault(MNRF/Assert). This vulnerability could be exploited by sending abnormal packets to the mDNS port. If exploited, the availability of the device would be compromised.

pub. 2024-06-14
8.2
CVSS
HIGH
CVE-2025-49091

KDE Konsole before 25.04.2 allows remote code execution in a certain scenario. It supports loading URLs from the scheme handlers such as a ssh:// or telnet:// or rlogin:// URL. This can be executed regardless of whether the ssh, telnet, or rlogin binary is available. In this mode, there is a code path where if that binary is not available, Konsole falls back to using /bin/bash for the given arguments (i.e., the URL) provided. This allows an attacker to execute arbitrary code.

pub. 2025-06-11
8.2
CVSS
HIGH
CVE-2024-52811

The ngtcp2 project is an effort to implement IETF QUIC protocol in C. In affected versions acks are not validated before being written to the qlog leading to a buffer overflow. In `ngtcp2_conn::conn_recv_pkt` for an ACK, there was new logic that got added to skip `conn_recv_ack` if an ack has already been processed in the payload. However, this causes us to also skip `ngtcp2_pkt_validate_ack`. The ack which was skipped still got written to qlog. The bug occurs in `ngtcp2_qlog::write_ack_frame`. It is now possible to reach this code with an invalid ack, suppose `largest_ack=0` and `first_ack_range=15`. Subtracting `largest_ack - first_ack_range` will lead to an integer underflow which is 20 chars long. However, the ngtcp2 qlog code assumes the number written is a signed integer and only accounts for 19 characters of overhead (see `NGTCP2_QLOG_ACK_FRAME_RANGE_OVERHEAD`). Therefore, we overwrite the buffer causing a heap overflow. This is high priority and could potentially impact many users if they enable qlog. qlog is disabled by default. Due to its overhead, it is most likely used for debugging purpose, but the actual use is unknown. ngtcp2 v1.9.1 fixes the bug and users are advised to upgrade. Users unable to upgrade should not turn on qlog.

pub. 2024-11-25
Pokazano 20 z 165 podatności
Informacje
ID: CWE-670
Typ: Class
Podatności: 165
MITRE CWE ↗
← Słownik CWE
CWE-670 — Zawsze Błędna Implementacja Przepływu Sterowania | Słownik CWE | CVEbaza.pl