CWE-241
29 CVEs classified under CWE-241. Browse by severity and year.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-40116 | High | 8.6 | 2021-10-27 | Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service (DoS)… |
CVE-2022-29181 | High | 8.2 | 2022-05-20 | Nokogiri is an open source XML and HTML library for Ruby. Nokogiri prior to version 1.13.6 does not type-check all inputs into the XML and HTML4 SAX parsers, a… |
CVE-2025-63548 | High | 7.5 | 2026-05-01 | An issue in Eprosima Micro-XREC-DDS Agent v.3.0.1 allows a remote attacker to cause a denial of service via a packet specially crafted to bear a non-valid valu… |
CVE-2023-30591 | High | 7.5 | 2023-09-29 | Denial-of-service in NodeBB <= v2.8.10 allows unauthenticated attackers to trigger a crash, when invoking `eventName.startsWith()` or `eventName.toString()`, w… |
CVE-2021-39131 | High | 7.5 | 2021-08-17 | ced detects character encoding using Google’s compact_enc_det library. In ced v0.1.0, passing data types other than `Buffer` causes the Node.js process to cras… |
CVE-2021-0242 | Medium | 6.5 | 2021-04-22 | A vulnerability due to the improper handling of direct memory access (DMA) buffers on EX4300 switches on Juniper Networks Junos OS allows an attacker sending s… |
CVE-2022-22219 | Medium | 5.9 | 2022-10-18 | Due to the Improper Handling of an Unexpected Data Type in the processing of EVPN routes on Juniper Networks Junos OS and Junos OS Evolved, an attacker in dire… |
CVE-2023-28961 | Medium | 5.8 | 2023-04-17 | An Improper Handling of Unexpected Data Type vulnerability in IPv6 firewall filter processing of Juniper Networks Junos OS on the ACX Series devices will preve… |
CVE-2025-66550 | Medium | 5.7 | 2025-12-05 | Nextcloud Calendar is a calendar app for Nextcloud. Prior to 4.7.17 and 5.2.4, when a malicious user creates a calendar event with a crafted attachment that li… |
CVE-2022-22193 | Medium | 5.5 | 2022-04-14 | An Improper Handling of Unexpected Data Type vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a loca… |
CVE-2024-9423 | Medium | 5.3 | 2024-10-02 | Certain HP LaserJet printers may potentially experience a denial of service when a user sends a raw JPEG file to the printer. The printer displays a “JPEG Unsu… |
CVE-2024-25966 | Medium | 5.3 | 2024-05-14 | Dell PowerScale OneFS versions 8.2.x through 9.7.0.2 contains an improper handling of unexpected data type vulnerability. A remote unauthenticated attacker cou… |
CVE-2023-5215 | Medium | 5.3 | 2023-09-28 | A flaw was found in libnbd. A server can reply with a block size larger than 2^63 (the NBD spec states the size is a 64-bit unsigned value). This issue could l… |
CVE-2024-21935 | Medium | 5.0 | 2025-09-23 | Improper input validation in Satellite Management Controller (SMC) may allow an attacker with privileges to manipulate Redfish® API commands to remove files fr… |
CVE-2024-21927 | Medium | 5.0 | 2025-09-23 | Improper input validation in Satellite Management Controller (SMC) may allow an attacker with privileges to use certain special characters in manipulated Redfi… |
CVE-2021-0243 | Medium | 4.7 | 2021-04-22 | Improper Handling of Unexpected Data in the firewall policer of Juniper Networks Junos OS on EX4300 switches allows matching traffic to exceed set policer limi… |
CVE-2024-37316 | Medium | 4.6 | 2024-06-14 | Nextcloud Calendar is a calendar app for Nextcloud. Authenticated users could create an event with manipulated attachment data leading to a bad redirect for pa… |
CVE-2022-20730 | Medium | 4.0 | 2022-05-03 | A vulnerability in the Security Intelligence feed feature of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to b… |
CVE-2021-32696 | Low | 3.7 | 2021-06-18 | The npm package "striptags" is an implementation of PHP's strip_tags in Typescript. In striptags before version 3.2.0, a type-confusion vulnerability can cause… |
CVE-2021-32655 | Low | 3.5 | 2021-06-01 | Nextcloud Server is a Nextcloud package that handles data storage. In versions prior to 19.0.11, 20.0.10, and 21.0.2, an attacker is able to convert a Files Dr… |