CVEs classified under CWE-296, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2025-48057 — CVSS 9.8 (critical): Icinga 2 is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance…
CVE-2026-24066 — CVSS 8.4 (high): Slate Digital Connect 1.37.0 for macOS installs a privileged helper tool, com.slatedigital.connect.privileged.helper.tool, which exposes…
CVE-2025-1146 — CVSS 8.1 (high): CrowdStrike uses industry-standard TLS (transport layer security) to secure communications from the Falcon sensor to the CrowdStrike cloud…
CVE-2026-44852 — CVSS 7.2 (high): An authenticated remote code execution vulnerability exists in the AOS-8 and AOS-10 web-based management interface. A vulnerability in the…
CVE-2026-33779 — CVSS 6.5 (medium): An Improper Following of a Certificate's Chain of Trust vulnerability in J-Web of Juniper Networks Junos OS on SRX Series allows a PITM to…
CVE-2024-43196 — CVSS 4.3 (medium): IBM OpenPages with Watson 8.3 and 9.0 application could allow an authenticated user to manipulate data in the Questionnaires application…