CVEs classified under CWE-650, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2024-28787 — CVSS 8.7 (high): IBM Security Verify Access 10.0.0 through 10.0.7 and IBM Application Gateway 20.01 through 24.03 could allow a remote attacker to obtain…
CVE-2025-21120 — CVSS 8.3 (high): Dell Avamar, versions prior to 19.10 SP1 with patch 338904, contains a Trusting HTTP Permission Methods on the Server-Side vulnerability in…
CVE-2024-45098 — CVSS 6.8 (medium): IBM Aspera Faspex 5.0.0 through 5.0.9 could allow a user to bypass intended access restrictions and conduct resource modification.
CVE-2026-42543 — CVSS 4.3 (medium): IRIS is a web collaborative platform that helps incident responders share technical details during investigations. Versions prior to 2.4.28…
CVE-2024-45282 — CVSS 4.3 (medium): Fields which are in 'read only' state in Bank Statement Draft in Manage Bank Statements application, could be modified by MERGE method. The…
CVE-2024-56339 — CVSS 3.7 (low): IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 could allow a remote attacker to…