Skip to main content

CWE-194

Unexpected Sign Extension

4 CVEs Avg CVSS 7.5 MITRE
0
CRITICAL
3
HIGH
1
MEDIUM
0
LOW
0
POC
0
KEV

Monthly

CVE-2025-13632 MEDIUM PATCH This Month

A security vulnerability in DevTools in Google Chrome (CVSS 5.4). Remediation should follow standard vulnerability management procedures.

Google Information Disclosure Ubuntu Debian Chrome +2
NVD
CVSS 3.1
5.4
EPSS
0.0%
CVE-2022-32138 HIGH This Week

In multiple CODESYS products, a remote attacker may craft a request which may cause an unexpected sign extension, resulting in a denial-of-service condition or memory overwrite. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Plcwinnt Runtime Toolkit
NVD
CVSS 3.1
8.8
EPSS
1.1%
CVE-2021-38434 HIGH This Week

FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in an unexpected sign extension. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Winproladder
NVD
CVSS 3.1
7.8
EPSS
0.9%
CVE-2018-10887 HIGH PATCH This Week

A flaw was found in libgit2 before version 0.27.3. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Libgit2 Debian Linux
NVD GitHub
CVSS 3.1
8.1
EPSS
2.1%
EPSS 0% CVSS 5.4
MEDIUM PATCH This Month

A security vulnerability in DevTools in Google Chrome (CVSS 5.4). Remediation should follow standard vulnerability management procedures.

Google Information Disclosure Ubuntu +4
NVD
EPSS 1% CVSS 8.8
HIGH This Week

In multiple CODESYS products, a remote attacker may craft a request which may cause an unexpected sign extension, resulting in a denial-of-service condition or memory overwrite. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Plcwinnt Runtime Toolkit
NVD
EPSS 1% CVSS 7.8
HIGH This Week

FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in an unexpected sign extension. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Winproladder
NVD
EPSS 2% CVSS 8.1
HIGH PATCH This Week

A flaw was found in libgit2 before version 0.27.3. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Libgit2 Debian Linux
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy