CVEs classified under CWE-242, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2024-52324 — CVSS 9.8 (critical): Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x uses an inherently dangerous function which could allow an attacker to…
CVE-2026-6477 — CVSS 8.8 (high): Use of inherently dangerous function PQfn(..., result_is_int=0, ...) in PostgreSQL libpq lo_export(), lo_read(), lo_lseek64(), and…
CVE-2022-36310 — CVSS 8.8 (high): Airspan AirVelocity 1500 software prior to version 15.18.00.2511 had NET-SNMP-EXTEND-MIB enabled on its snmpd service, enabling an attacker…
CVE-2025-1994 — CVSS 7.8 (high): IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a local user to execute arbitrary code on the system due to the use of unsafe use…
CVE-2025-1331 — CVSS 7.8 (high): IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local user to execute arbitrary code on the system due to…
CVE-2021-42543 — CVSS 7.8 (high): The affected application uses specific functions that could be abused through a crafted project file, which could lead to code execution…
CVE-2021-40698 — CVSS 7.4 (high): ColdFusion version 2021 update 1 (and earlier) and versions 2018.10 (and earlier) are impacted by an Use of Inherently Dangerous Function…