What types of vulnerabilities does fuzzing find?


What types of vulnerabilities does fuzzing help me uncover? Do you have a list somewhere?

Thank you.

Mayhem can identify and generate proof-of-vulnerabilities for some of the most dangerous vulnerabilities: buffer overflows, use-after-free, etc.

For a complete list, we have a datasheet that you can download: Datasheet | Mayhem Supported CWE Types

You can also add your own checks to an application through assertion statements. With assertions added to your codebase, Mayhem can also generate proof-of-vulnerabilities that show how these assertions can be violated.