CWE-704
Incorrect Type Conversion or Cast
Description
The product does not correctly convert an object, resource, or structure from one type to a different type.
Hierarchy (View 1000)
CVEs mapped to this weakness (169)
page 8 of 9| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-25518 | 0.00 | — | 0.00 | Feb 4, 2026 | cert-manager adds certificates and certificate issuers as resource types in Kubernetes clusters, and simplifies the process of obtaining, renewing and using those certificates. In versions from 1.18.0 to before 1.18.5 and from 1.19.0 to before 1.19.3, the cert-manager-controller… | |||
| CVE-2026-22041 | 0.00 | — | 0.00 | Jan 8, 2026 | Logging Redactor is a Python library designed to redact sensitive data in logs based on regex patterns and / or dictionary keys. Prior to version 0.0.6, non-string types are converted into string types, leading to type errors in %d conversions. The problem has been patched in… | |||
| CVE-2025-21088 | 0.00 | — | 0.01 | Jan 15, 2025 | Mattermost versions 10.2.x <= 10.2.0, 9.11.x <= 9.11.5, 10.0.x <= 10.0.3, 10.1.x <= 10.1.3 fail to properly validate the style of proto supplied to an action's style in post.props.attachments, which allows an attacker to crash the frontend via crafted malicious input. | |||
| CVE-2023-38976 | 0.00 | — | 0.02 | Aug 21, 2023 | An issue in weaviate v.1.20.0 allows a remote attacker to cause a denial of service via the handleUnbatchedGraphQLRequest function. | |||
| CVE-2022-41890 | 0.00 | — | 0.00 | Nov 18, 2022 | TensorFlow is an open source platform for machine learning. If `BCast::ToShape` is given input larger than an `int32`, it will crash, despite being supposed to handle up to an `int64`. An example can be seen in `tf.experimental.numpy.outer` by passing in large input to the input… | |||
| CVE-2022-41911 | 0.00 | — | 0.00 | Nov 18, 2022 | TensorFlow is an open source platform for machine learning. When printing a tensor, we get it's data as a `const char*` array (since that's the underlying storage) and then we typecast it to the element type. However, conversions from `char` to `bool` are undefined if the `char`… | |||
| CVE-2022-41828 | 0.00 | — | 0.01 | Sep 29, 2022 | In Amazon AWS Redshift JDBC Driver (aka amazon-redshift-jdbc-driver or redshift-jdbc42) before 2.1.0.8, the Object Factory does not check the class type when instantiating an object from a class name. | |||
| CVE-2022-25852 | — | 0.00 | — | 0.01 | Jun 17, 2022 | All versions of package pg-native; all versions of package libpq are vulnerable to Denial of Service (DoS) when the addons attempt to cast the second argument to an array and fail. This happens for every non-array argument passed. **Note:** pg-native is a mere binding to npm's… | ||
| CVE-2022-1642 | 0.00 | — | 0.01 | Jun 16, 2022 | A program using swift-corelibs-foundation is vulnerable to a denial of service attack caused by a potentially malicious source producing a JSON document containing a type mismatch. This vulnerability is caused by the interaction between a deserialization mechanism offered by the… | |||
| CVE-2021-33318 | — | 0.00 | — | 0.02 | May 16, 2022 | An Input Validation Vulnerability exists in Joel Christner .NET C# packages WatsonWebserver, IpMatcher 1.0.4.1 and below (IpMatcher) and 4.1.3 and below (WatsonWebserver) due to insufficient validation of input IP addresses and netmasks against the internal Matcher list of IP… | ||
| CVE-2021-23566 | — | 0.00 | — | 0.00 | Jan 14, 2022 | The package nanoid from 3.0.0 and before 3.1.31 are vulnerable to Information Exposure via the valueOf() function which allows to reproduce the last id generated. | ||
| CVE-2021-39173 | 0.00 | — | 0.02 | Aug 27, 2021 | Cachet is an open source status page system. Prior to version 2.5.1 authenticated users, regardless of their privileges (User or Admin), can trick Cachet and install the instance again, leading to arbitrary code execution on the server. This issue was addressed in version 2.5.1… | |||
| CVE-2021-38187 | — | 0.00 | — | 0.01 | Aug 8, 2021 | An issue was discovered in the anymap crate through 0.12.1 for Rust. It violates soundness via conversion of a *u8 to a *u64. | ||
| CVE-2019-25004 | — | 0.00 | — | 0.01 | Dec 31, 2020 | An issue was discovered in the flatbuffers crate before 0.6.1 for Rust. Arbitrary bytes can be reinterpreted as a bool, defeating soundness. | ||
| CVE-2020-35864 | — | 0.00 | — | 0.01 | Dec 31, 2020 | An issue was discovered in the flatbuffers crate through 2020-04-11 for Rust. read_scalar (and read_scalar_at) can transmute values without unsafe blocks. | ||
| CVE-2020-35865 | — | 0.00 | — | 0.01 | Dec 31, 2020 | An issue was discovered in the os_str_bytes crate before 2.0.0 for Rust. It has false expectations about char::from_u32_unchecked behavior. | ||
| CVE-2020-35880 | — | 0.00 | — | 0.02 | Dec 31, 2020 | An issue was discovered in the bigint crate through 2020-05-07 for Rust. It allows a soundness violation. | ||
| CVE-2020-25576 | — | 0.00 | — | 0.02 | Sep 14, 2020 | An issue was discovered in the rand_core crate before 0.4.2 for Rust. Casting of byte slices to integer slices mishandles alignment constraints. | ||
| CVE-2019-10355 | 0.00 | — | 0.03 | Jul 31, 2019 | A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the handling of type casts allowed attackers to execute arbitrary code in sandboxed scripts. | |||
| CVE-2013-1802 | 0.00 | — | 0.03 | Apr 9, 2013 | The extlib gem 0.9.15 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cause a denial of service (memory and CPU consumption) by leveraging Action Pack… |
- CVE-2026-25518Feb 4, 2026risk 0.00cvss —epss 0.00
cert-manager adds certificates and certificate issuers as resource types in Kubernetes clusters, and simplifies the process of obtaining, renewing and using those certificates. In versions from 1.18.0 to before 1.18.5 and from 1.19.0 to before 1.19.3, the cert-manager-controller…
- CVE-2026-22041Jan 8, 2026risk 0.00cvss —epss 0.00
Logging Redactor is a Python library designed to redact sensitive data in logs based on regex patterns and / or dictionary keys. Prior to version 0.0.6, non-string types are converted into string types, leading to type errors in %d conversions. The problem has been patched in…
- CVE-2025-21088Jan 15, 2025risk 0.00cvss —epss 0.01
Mattermost versions 10.2.x <= 10.2.0, 9.11.x <= 9.11.5, 10.0.x <= 10.0.3, 10.1.x <= 10.1.3 fail to properly validate the style of proto supplied to an action's style in post.props.attachments, which allows an attacker to crash the frontend via crafted malicious input.
- CVE-2023-38976Aug 21, 2023risk 0.00cvss —epss 0.02
An issue in weaviate v.1.20.0 allows a remote attacker to cause a denial of service via the handleUnbatchedGraphQLRequest function.
- CVE-2022-41890Nov 18, 2022risk 0.00cvss —epss 0.00
TensorFlow is an open source platform for machine learning. If `BCast::ToShape` is given input larger than an `int32`, it will crash, despite being supposed to handle up to an `int64`. An example can be seen in `tf.experimental.numpy.outer` by passing in large input to the input…
- CVE-2022-41911Nov 18, 2022risk 0.00cvss —epss 0.00
TensorFlow is an open source platform for machine learning. When printing a tensor, we get it's data as a `const char*` array (since that's the underlying storage) and then we typecast it to the element type. However, conversions from `char` to `bool` are undefined if the `char`…
- CVE-2022-41828Sep 29, 2022risk 0.00cvss —epss 0.01
In Amazon AWS Redshift JDBC Driver (aka amazon-redshift-jdbc-driver or redshift-jdbc42) before 2.1.0.8, the Object Factory does not check the class type when instantiating an object from a class name.
- CVE-2022-25852Jun 17, 2022risk 0.00cvss —epss 0.01
All versions of package pg-native; all versions of package libpq are vulnerable to Denial of Service (DoS) when the addons attempt to cast the second argument to an array and fail. This happens for every non-array argument passed. **Note:** pg-native is a mere binding to npm's…
- CVE-2022-1642Jun 16, 2022risk 0.00cvss —epss 0.01
A program using swift-corelibs-foundation is vulnerable to a denial of service attack caused by a potentially malicious source producing a JSON document containing a type mismatch. This vulnerability is caused by the interaction between a deserialization mechanism offered by the…
- CVE-2021-33318May 16, 2022risk 0.00cvss —epss 0.02
An Input Validation Vulnerability exists in Joel Christner .NET C# packages WatsonWebserver, IpMatcher 1.0.4.1 and below (IpMatcher) and 4.1.3 and below (WatsonWebserver) due to insufficient validation of input IP addresses and netmasks against the internal Matcher list of IP…
- CVE-2021-23566Jan 14, 2022risk 0.00cvss —epss 0.00
The package nanoid from 3.0.0 and before 3.1.31 are vulnerable to Information Exposure via the valueOf() function which allows to reproduce the last id generated.
- CVE-2021-39173Aug 27, 2021risk 0.00cvss —epss 0.02
Cachet is an open source status page system. Prior to version 2.5.1 authenticated users, regardless of their privileges (User or Admin), can trick Cachet and install the instance again, leading to arbitrary code execution on the server. This issue was addressed in version 2.5.1…
- CVE-2021-38187Aug 8, 2021risk 0.00cvss —epss 0.01
An issue was discovered in the anymap crate through 0.12.1 for Rust. It violates soundness via conversion of a *u8 to a *u64.
- CVE-2019-25004Dec 31, 2020risk 0.00cvss —epss 0.01
An issue was discovered in the flatbuffers crate before 0.6.1 for Rust. Arbitrary bytes can be reinterpreted as a bool, defeating soundness.
- CVE-2020-35864Dec 31, 2020risk 0.00cvss —epss 0.01
An issue was discovered in the flatbuffers crate through 2020-04-11 for Rust. read_scalar (and read_scalar_at) can transmute values without unsafe blocks.
- CVE-2020-35865Dec 31, 2020risk 0.00cvss —epss 0.01
An issue was discovered in the os_str_bytes crate before 2.0.0 for Rust. It has false expectations about char::from_u32_unchecked behavior.
- CVE-2020-35880Dec 31, 2020risk 0.00cvss —epss 0.02
An issue was discovered in the bigint crate through 2020-05-07 for Rust. It allows a soundness violation.
- CVE-2020-25576Sep 14, 2020risk 0.00cvss —epss 0.02
An issue was discovered in the rand_core crate before 0.4.2 for Rust. Casting of byte slices to integer slices mishandles alignment constraints.
- CVE-2019-10355Jul 31, 2019risk 0.00cvss —epss 0.03
A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the handling of type casts allowed attackers to execute arbitrary code in sandboxed scripts.
- CVE-2013-1802Apr 9, 2013risk 0.00cvss —epss 0.03
The extlib gem 0.9.15 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cause a denial of service (memory and CPU consumption) by leveraging Action Pack…