CVEs classified under CWE-783, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (16)
CVE-2026-25233 — CVSS 9.1 (critical): PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, logic bug in the roadmap role check…
CVE-2024-20314 — CVSS 8.6 (high): A vulnerability in the IPv4 Software-Defined Access (SD-Access) fabric edge node feature of Cisco IOS XE Software could allow an…
CVE-2026-7270 — CVSS 7.8 (high): An operator precedence bug in the kernel results in a scenario where a buffer overflow causes attacker-controlled data to overwrite…
CVE-2024-34726 — CVSS 7.8 (high): In PVRSRV_MMap of pvr_bridge_k.c, there is a possible arbitrary code execution due to a logic error in the code. This could lead to local…
CVE-2024-34723 — CVSS 7.8 (high): In onTransact of ParcelableListBinder.java , there is a possible way to steal mAllowlistToken to launch an app from background due to a…
CVE-2024-34720 — CVSS 7.8 (high): In com_android_internal_os_ZygoteCommandBuffer_nativeForkRepeatedly of com_android_internal_os_ZygoteCommandBuffer.cpp, there is a possible…
CVE-2024-31335 — CVSS 7.8 (high): In DevmemIntChangeSparse2 of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code. This could…
CVE-2024-31326 — CVSS 7.8 (high): In multiple locations, there is a possible way in which policy migration code will never be executed due to a logic error in the code. This…
CVE-2022-20477 — CVSS 7.8 (high): In shouldHideNotification of KeyguardNotificationVisibilityProvider.kt, there is a possible way to show hidden notifications due to a logic…
CVE-2024-31331 — CVSS 7.3 (high): In setMimeGroup of PackageManagerService.java, there is a possible way to hide the service from Settings due to a logic error in the code…
CVE-2026-0209: Under certain administrative conditions, FlashArray Purity may apply snapshot retention policies earlier or later than configured.
CVE-2025-24210 — CVSS 5.5 (medium): A logic error was addressed with improved error handling. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia…
CVE-2024-49736 — CVSS 5.5 (medium): In onClick of MainClear.java, there is a possible way to trigger factory reset without explicit user consent due to a logic error in the…
CVE-2017-13322 — CVSS 5.5 (medium): In endCallForSubscriber of PhoneInterfaceManager.java, there is a possible way to prevent access to emergency services due to a logic error…
CVE-2024-27886 — CVSS 5.5 (medium): A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.4, macOS Ventura 13.7. An unprivileged app…
CVE-2025-27512: Zincati is an auto-update agent for Fedora CoreOS hosts. Zincati ships a polkit rule which allows the `zincati` system user to use the…