CWE-843
Type Confusion
MITRENo catalog description on file. The MITRE CWE site has the canonical reference.
Recent CVEs
showing 50 of 52- CVE-2026-11785Medium· 4.3EPSS 0%20 h ago
A flaw was found in 389 Directory Server. A type confusion in the SSO token extended operation handler causes partial stack address information to be disclosed in LDAP responses to authenticated users.
- CVE-2021-30563High· 8.8KEVEPSS 3%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2021-30551High· 8.8KEVEPSS 82%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2024-4947Critical· 9.6KEVEPSS 1%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2024-7971Critical· 9.6KEVEPSS 2%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2025-6554High· 8.1KEVEPSS 2%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2019-0752High· 7.5KEVEXPLOITEPSS 91%22 h ago
Microsoft Internet Explorer Type Confusion Vulnerability
- CVE-2023-32439High· 8.8KEVEPSS 1%22 h ago
Apple Multiple Products WebKit Type Confusion Vulnerability
- CVE-2024-23222High· 8.8KEVEPSS 1%22 h ago
Apple Multiple Products WebKit Type Confusion Vulnerability
- CVE-2022-4262High· 8.8KEVEPSS 9%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2023-4762High· 8.8KEVEPSS 56%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2025-30397High· 7.5KEVEXPLOITEPSS 21%22 h ago
Microsoft Windows Scripting Engine Type Confusion Vulnerability
- CVE-2019-17026High· 8.8KEVEXPLOITEPSS 56%22 h ago
Mozilla Firefox And Thunderbird Type Confusion Vulnerability
- CVE-2020-27932High· 7.8KEVEPSS 16%22 h ago
Apple Multiple Products Type Confusion Vulnerability
- CVE-2020-16009High· 8.8KEVEPSS 84%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2020-6418High· 8.8KEVEXPLOITEPSS 86%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2011-0611High· 8.8KEVEXPLOITEPSS 93%22 h ago
Adobe Flash Player Remote Code Execution Vulnerability
- CVE-2024-5274Critical· 9.6KEVEPSS 7%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2023-23529High· 8.8KEVEPSS 0%22 h ago
Apple Multiple Products WebKit Type Confusion Vulnerability
- CVE-2026-21519High· 7.8KEVEPSS 4%22 h ago
Microsoft Windows Type Confusion Vulnerability
- CVE-2025-13223High· 8.8KEVEPSS 3%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2025-10585Critical· 9.8KEVEPSS 2%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2022-1096High· 8.8KEVEPSS 38%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2017-11292High· 8.8KEVEPSS 34%22 h ago
Adobe Flash Player Type Confusion Vulnerability
- CVE-2024-38178High· 7.5KEVEPSS 30%22 h ago
Microsoft Windows Scripting Engine Memory Corruption Vulnerability
- CVE-2021-30869High· 7.8KEVEPSS 2%22 h ago
Apple iOS, iPadOS, and macOS Type Confusion Vulnerability
- CVE-2022-41033High· 7.8KEVEPSS 2%22 h ago
Microsoft Windows COM+ Event System Service Privilege Escalation Vulnerability
- CVE-2019-8506High· 8.8KEVEXPLOITEPSS 8%22 h ago
Apple Multiple Products Type Confusion Vulnerability
- CVE-2022-3723High· 8.8KEVEPSS 1%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2022-42856High· 8.8KEVEPSS 0%22 h ago
Apple iOS Type Confusion Vulnerability
- CVE-2023-3079High· 8.8KEVEPSS 2%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2023-2033High· 8.8KEVEPSS 23%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2021-1789High· 8.8KEVEPSS 0%22 h ago
Apple Multiple Products Type Confusion Vulnerability
- CVE-2017-5070High· 8.8KEVEPSS 74%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2019-11707High· 8.8KEVEXPLOITEPSS 84%22 h ago
Mozilla Firefox and Thunderbird Type Confusion Vulnerability
- CVE-2022-1364High· 8.8KEVEPSS 18%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2018-8298High· 7.5KEVEXPLOITEPSS 89%22 h ago
ChakraCore Scripting Engine Type Confusion Vulnerability
- CVE-2021-21224High· 8.8KEVEPSS 43%22 h ago
Google Chromium V8 Type Confusion Vulnerability
- CVE-2026-44817High· 7.8EPSS 0%1 d ago
Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2026-45635High· 8.1EPSS 0%1 d ago
Use after free in Universal Plug and Play (upnp.dll) allows an unauthorized attacker to execute code over a network.
- CVE-2026-45641High· 8.4EPSS 0%1 d ago
Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally.
- CVE-2026-45600High· 7.8EPSS 0%2 d ago
Access of resource using incompatible type ('type confusion') in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.
- CVE-2026-11196Medium· 6.5EPSS 0%2 d ago
Type Confusion in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted XML file. (Chromium security severity: Medium)
- CVE-2026-45456High· 8.4EPSS 0%3 d ago
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.
- CVE-2026-11662High· 8.8EPSS 0%3 d ago
Type Confusion in Bindings in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
- CVE-2026-8499Medium· 5.3EPSS 0%4 d ago
The Helpfulcrowd Product Reviews plugin for WordPress is vulnerable to Authorization Bypass via PHP Type Juggling in versions up to, and including, 1.2.9. This is due to the `helpfulcrowd_validate_token()` function using a loose comparison
- CVE-2026-10955High· 8.8EPSS 0%4 d ago
Type Confusion in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
- CVE-2026-11052Critical· 9.6EPSS 0%4 d ago
Type Confusion in GPU in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium
- CVE-2026-11463High· 7.3EPSS 0%4 d ago
A vulnerability was determined in USCiLab Cereal up to 1.3.2. Affected is an unknown function of the component Shared Pointer Handler. Executing a manipulation can lead to type confusion. The attack can be launched remotely. The exploit has
- CVE-2026-11076High· 8.8EPSS 0%7 d ago
Type Confusion in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)
CWE catalog data sourced from MITRE. CVE associations come from NVD weakness mappings; some CVEs carry multiple CWEs.