CVEs classified under CWE-440, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (36)
CVE-2019-6569 — CVSS 9.1 (critical): The monitor barrier of the affected products insufficiently blocks data from being forwarded over the mirror port into the mirrored…
CVE-2024-32971 — CVSS 9.0 (critical): Apollo Router is a configurable, graph router written in Rust to run a federated supergraph that uses Apollo Federation 2. The affected…
CVE-2025-8850 — CVSS 8.8 (high): In danny-avila/librechat version 0.7.9, there is an insecure API design issue in the 2-Factor Authentication (2FA) flow. The system allows…
CVE-2026-8806: Expected Behavior Violation vulnerability in Mitsubishi Electric MELSEC iQ-F Series FX5-ENET/IP Ethernet Module FX5-ENET/IP all versions…
CVE-2018-12550 — CVSS 8.1 (high): When Eclipse Mosquitto version 1.0 to 1.5.5 (inclusive) is configured to use an ACL file, and that ACL file is empty, or contains only…
CVE-2023-4807 — CVSS 7.8 (high): Issue summary: The POLY1305 MAC (message authentication code) implementation contains a bug that might corrupt the internal state of…
CVE-2024-30246 — CVSS 7.6 (high): Tuleap is an Open Source Suite to improve management of software developments and collaboration. A malicious user could exploit this issue…
CVE-2022-3281 — CVSS 7.5 (high): WAGO Series PFC100/PFC200, Series Touch Panel 600, Compact Controller CC100 and Edge Controller in multiple versions are prone to a loss of…
CVE-2023-32731 — CVSS 7.4 (high): When gRPC HTTP2 stack raised a header size exceeded error, it skipped parsing the rest of the HPACK frame. This caused any HPACK table…
CVE-2025-52953 — CVSS 6.5 (medium): An Expected Behavior Violation vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows…
CVE-2025-6211 — CVSS 6.5 (medium): A vulnerability in the DocugamiReader class of the run-llama/llama_index repository, up to version 0.12.28, involves the use of MD5 hashing…
CVE-2023-2088 — CVSS 6.5 (medium): A flaw was found in OpenStack due to an inconsistency between Cinder and Nova. This issue can be triggered intentionally or by accident. A…
CVE-2024-47762 — CVSS 5.8 (medium): Backstage is an open framework for building developer portals. Configuration supplied through APP_CONFIG_* environment variables, for…
CVE-2025-13940 — CVSS 5.5 (medium): An Expected Behavior Violation [CWE-440] vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS boot time…
CVE-2022-3344 — CVSS 5.5 (medium): A flaw was found in the KVM's AMD nested virtualization (SVM). A malicious L1 guest could purposely fail to intercept the shutdown of a…
CVE-2020-10768 — CVSS 5.5 (medium): A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl() function, where it can be used to enable indirect branch speculation…
CVE-2020-10767 — CVSS 5.5 (medium): A flaw was found in the Linux kernel before 5.8-rc1 in the implementation of the Enhanced IBPB (Indirect Branch Prediction Barrier). The…
CVE-2020-10766 — CVSS 5.5 (medium): A logic bug flaw was found in Linux kernel before 5.8-rc1 in the implementation of SSBD. A bug in the logic handling allows an attacker…
CVE-2025-27094 — CVSS 5.4 (medium): Tuleap is an open-source suite designed to improve software development management and collaboration. A malicious user with access to a…
CVE-2026-42534 — CVSS 5.3 (medium): NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability in the jostle logic that could defeat its purpose and degrade…
CVE-2026-41136 — CVSS 5.3 (medium): free5GC AMF provides Access & Mobility Management Function (AMF) for free5GC, an an open-source project for 5th generation (5G) mobile core…
CVE-2026-35040 — CVSS 5.3 (medium): fast-jwt provides fast JSON Web Token (JWT) implementation. Prior to 6.2.1, using certain modifiers on RegExp objects in the allowedAud…
CVE-2025-3044 — CVSS 5.3 (medium): A vulnerability in the ArxivReader class of the run-llama/llama_index repository, versions up to v0.12.22.post1, allows for MD5 hash…
CVE-2024-7246 — CVSS 5.3 (medium): It's possible for a gRPC client communicating with a HTTP/2 proxy to poison the HPACK table between the proxy and the backend such that…
CVE-2023-32732 — CVSS 5.3 (medium): gRPC contains a vulnerability whereby a client can cause a termination of connection between a HTTP2 proxy and a gRPC server: a base64…
CVE-2026-3344 — CVSS 4.9 (medium): A vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS filesystem integrity check and maintain limited…
CVE-2025-40555 — CVSS 4.7 (medium): A vulnerability has been identified in APOGEE PXC+TALON TC Series (BACnet) (All versions). Affected devices start sending unsolicited…
CVE-2026-49316 — CVSS 4.6 (medium): Expected behavior violation in the in-vehicle network of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an…
CVE-2025-27401 — CVSS 4.6 (medium): Tuleap is an Open Source Suite to improve management of software developments and collaboration. In a standard usages of Tuleap, the issue…
CVE-2024-8690 — CVSS 4.4 (medium): A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows…
CVE-2025-32728 — CVSS 4.3 (medium): In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent…
CVE-2024-56202 — CVSS 4.3 (medium): Expected Behavior Violation vulnerability in Apache Traffic Server. This issue affects Apache Traffic Server: from 9.0.0 through 9.2.8…
CVE-2024-38806 — CVSS 3.9 (low): Failure to properly synchronize user's permissions in UAA in Cloud Foundry Foundation v40.17.0 https://github.com/cloudfoundry/cf-deployment…
CVE-2025-46712 — CVSS 3.7 (low): Erlang/OTP is a set of libraries for the Erlang programming language. In versions prior to OTP-27.3.4 (for OTP-27), OTP-26.2.5.12 (for…
CVE-2023-26819 — CVSS 2.9 (low): cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,99999999999999999999999999999999999…