CWE-130 (长度参数不一致性处理不恰当) — Vulnerability Class 68

68 vulnerabilities classified as CWE-130 (长度参数不一致性处理不恰当). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-5265	Ovn: ovn: heap over-read in icmp error response generation - security issue — Fast Datapath for RHEL 7	6.5	Medium	2026-04-24
CVE-2026-5367	Ovn: ovn: information disclosure via crafted dhcpv6 packets — Fast Datapath for RHEL 7	8.6	High	2026-04-24
CVE-2026-41035	Rsync 安全漏洞 — rsync	7.4	High	2026-04-16
CVE-2026-33555	HAProxy 安全漏洞 — HAProxy	4.0	Medium	2026-04-13
CVE-2026-40199	Net::CIDR::Lite versions before 0.23 for Perl mishandles IPv4 mapped IPv6 addresses, which may allow IP ACL bypass — Net::CIDR::Lite	7.5	-	2026-04-10
CVE-2026-34831	Rack: Content-Length mismatch in Rack::Files error responses — rack	4.8	Medium	2026-04-02
CVE-2026-25572	Siemens SICAM SIAPP SDK 安全漏洞 — SICAM SIAPP SDK	5.1	Medium	2026-03-10
CVE-2026-25571	Siemens SICAM SIAPP SDK 安全漏洞 — SICAM SIAPP SDK	5.1	Medium	2026-03-10
CVE-2025-48022	Yokogawa Electric Vnet/IP Interface 安全漏洞 — Vnet/IP Interface Package	7.5^AI	High^AI	2026-02-13
CVE-2025-14847	Zlib compressed protocol header length confusion may allow memory read — MongoDB Server	7.5	High	2025-12-19
CVE-2025-8531	Mitsubishi Electric MELSEC-Q Series 安全漏洞 — MELSEC-Q Series Q03UDVCPU	6.8	Medium	2025-09-19
CVE-2025-10458	Bluetooth: le_conn_rsp does not sanitize CID, MTU, MPS values — Zephyr	7.6	High	2025-09-19
CVE-2025-5514	Denial-of-Service(DoS) Vulnerability in Web server function on MELSEC iQ-F Series CPU module — MELSEC iQ-F Series FX5U-32MT/ES	5.3	Medium	2025-08-25
CVE-2025-54646	Huawei HarmonyOS和Huawei EMUI 安全漏洞 — HarmonyOS	5.1	Medium	2025-08-06
CVE-2023-53157	Rosenpass 安全漏洞 — rosenpass	5.3	Medium	2025-07-27
CVE-2025-52949	Junos OS and Junos OS Evolved: In an EVPN environment, receipt of specifically malformed BGP update causes RPD crash — Junos OS	6.5	Medium	2025-07-11
CVE-2025-53604	web-push crate 安全漏洞 — web-push	4.0	Medium	2025-07-05
CVE-2025-23247	NVIDIA CUDA toolkit 安全漏洞 — NVIDIA CUDA Toolkit	4.4	Medium	2025-05-27
CVE-2025-29784	NamelessMC Has Lack of Length Validation for s Parameter in GET Requests — Nameless	7.5	High	2025-04-18
CVE-2025-29931	Siemens TeleControl Server Basic 安全漏洞 — TeleControl Server Basic	3.7	Low	2025-04-17
CVE-2025-30659	Junos OS: SRX Series: A device configured for vector routing crashes when receiving malformed traffic — Junos OS	7.5	High	2025-04-09
CVE-2025-32366	ConnMan 安全漏洞 — ConnMan	4.8	Medium	2025-04-05
CVE-2024-53856	rPGP Panics on Malformed Untrusted Input — rpgp	7.5	High	2024-12-05
CVE-2024-47293	Huawei HarmonyOS 安全漏洞 — HarmonyOS	4.7	Medium	2024-09-27
CVE-2024-20416	Cisco RV340 和 Cisco RV345 安全漏洞 — Cisco Small Business RV Series Router Firmware	6.5	Medium	2024-07-17
CVE-2024-38010	Secure Boot Security Feature Bypass Vulnerability — Windows 10 Version 1809	8.0	High	2024-07-09
CVE-2024-38011	Secure Boot Security Feature Bypass Vulnerability — Windows 10 Version 1809	8.0	High	2024-07-09
CVE-2024-37989	Secure Boot Security Feature Bypass Vulnerability — Windows 10 Version 1809	8.0	High	2024-07-09
CVE-2024-37988	Secure Boot Security Feature Bypass Vulnerability — Windows 10 Version 1809	8.0	High	2024-07-09
CVE-2023-52547	Huawei PC Manager 安全漏洞 — CurieM-WFG9B	7.8	High	2024-05-28

Vulnerabilities classified as CWE-130 (长度参数不一致性处理不恰当) represent 68 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-130 (长度参数不一致性处理不恰当) — Vulnerability Class 68