CVEs classified under CWE-187, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2024-41110 — CVSS 9.9 (critical): Moby is an open-source project created by Docker for software containerization. A security vulnerability has been detected in certain…
CVE-2022-31802 — CVSS 9.8 (critical): In CODESYS Gateway Server V2 for versions prior to V2.3.9.38 only a part of the the specified password is been compared to the real CODESYS…
CVE-2026-34785 — CVSS 7.5 (high): Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Static determines whether a request should…
CVE-2026-44837 — CVSS 5.9 (medium): view_component is a framework for building reusable, testable, and encapsulated view components in Ruby on Rails. From 3.0.0 to 4.9.0, the…
CVE-2026-45692 — CVSS 5.4 (medium): Caddy is an extensible server platform that uses TLS by default. From 2.4.0 until 2.11.3, the authorization layer and the /config traversal…
CVE-2026-14687 — CVSS 5.3 (medium): A vulnerability was determined in 666ghj BettaFish up to 1.2.1. Impacted is the function _deduplicate_results of the file…
CVE-2025-23384 — CVSS 3.7 (low): A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2.1), RUGGEDCOM RM1224 LTE(4G)…