CVEbaza.plSłownik CWECWE-480
Common Weakness Enumeration

CWE-480

Use of Incorrect Operator

Kategoria: BaseCVE: 6
Opis

Produkt przypadkowo wykorzystuje nieprawidłowy operator, co zmienia logikę w sposób istotny dla bezpieczeństwa. Błąd ten może prowadzić do nieoczekiwanego zachowania programu i luk bezpieczeństwa.

Description (EN)

The product accidentally uses the wrong operator, which changes the logic in security-relevant ways.

Podatności CVE z CWE-480 (6)
9.4
CVSS
CRITICAL
CVE-2026-43114

Podatność w module netfilter jądra Linux (nft_set_pipapo_avx2) powoduje nieprawidłowe dopasowanie elementu zestawu reguł podczas przetwarzania wielopolowych kluczy z użyciem instrukcji AVX2. Błąd może prowadzić do naruszenia integralności reguł filtrowania sieciowego oraz potencjalnie do obejścia polityki bezpieczeństwa sieci.

pub. 2026-05-06
7.5
CVSS
HIGH
CVE-2026-4748

A regression in the way hashes were calculated caused rules containing the address range syntax (x.x.x.x - y.y.y.y) that only differ in the address range(s) involved to be silently dropped as duplicates. Only the first of such rules is actually loaded into pf. Ranges expressed using the address[/mask-bits] syntax were not affected. Some keywords representing actions taken on a packet-matching rule, such as 'log', 'return tll', or 'dnpipe', may suffer from the same issue. It is unlikely that users have such configurations, as these rules would always be redundant. Affected rules are silently ignored, which can lead to unexpected behaviour including over- and underblocking.

pub. 2026-04-01
6.9
CVSS
MEDIUM
CVE-2025-52985

A Use of Incorrect Operator vulnerability in the Routing Engine firewall of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to bypass security restrictions. When a firewall filter which is applied to the lo0 or re:mgmt interface references a prefix list with 'from prefix-list', and that prefix list contains more than 10 entries, the prefix list doesn't match and packets destined to or from the local device are not filtered. This issue affects firewall filters applied to the re:mgmt interfaces as input and output, but only affects firewall filters applied to the lo0 interface as output. This issue is applicable to IPv4 and IPv6 as a prefix list can contain IPv4 and IPv6 prefixes. This issue affects Junos OS Evolved: * 23.2R2-S3-EVO versions before 23.2R2-S4-EVO, * 23.4R2-S3-EVO versions before 23.4R2-S5-EVO, * 24.2R2-EVO versions before 24.2R2-S1-EVO, * 24.4-EVO versions before 24.4R1-S3-EVO, 24.4R2-EVO. This issue doesn't affect Junos OS Evolved versions before 23.2R1-EVO.

pub. 2025-07-11
6.5
CVSS
MEDIUM
CVE-2022-1947

Use of Incorrect Operator in GitHub repository polonel/trudesk prior to 1.2.3.

pub. 2022-05-31
5.9
CVSS
MEDIUM
CVE-2026-48497

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, in cases where UDP DNS filter is configured with local resolution containing a name with the length of 255 octets or remote resolution for a name of 255 octets long can complete successfully, a query with such name will result in abnormal process termination. The abnormal process termination is triggered by an invalid runtime precondition that the query name is strictly less than 255 octets, contradicting DNS specification rfc1035#section-2.3.4 that the name can be 255 or less octets. This vulnerability is fixed in 1.35.11, 1.36.7, 1.37.3, and 1.38.1.

pub. 2026-06-26
5.8
CVSS
MEDIUM
CVE-2024-35190

Asterisk is an open source private branch exchange and telephony toolkit. After upgrade to 18.23.0, ALL unauthorized SIP requests are identified as PJSIP Endpoint of local asterisk server. This vulnerability is fixed in 18.23.1, 20.8.1, and 21.3.1.

pub. 2024-05-17
Informacje
ID: CWE-480
Typ: Base
Podatności: 6
MITRE CWE ↗
← Słownik CWE