CVEs classified under CWE-657, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2026-39888 — CVSS 9.9 (critical): PraisonAI is a multi-agent teams system. Prior to 1.5.115, execute_code() in praisonaiagents.tools.python_tools defaults to…
CVE-2023-29320 — CVSS 7.8 (high): Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are affected by an Violation of Secure Design…
CVE-2019-0061 — CVSS 7.8 (high): The management daemon (MGD) is responsible for all configuration and management operations in Junos OS. The Junos CLI communicates with MGD…
CVE-2023-52714 — CVSS 7.5 (high): Vulnerability of defects introduced in the design process in the hwnff module. Impact: Successful exploitation of this vulnerability may…
CVE-2021-28583 — CVSS 7.5 (high): Magento versions 2.4.2 (and earlier), 2.4.1-p1 (and earlier) and 2.3.6-p1 (and earlier) are affected by a Violation of Secure Design…
CVE-2022-28244 — CVSS 6.3 (medium): Acrobat Reader DC versions 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205 (and earlier) is affected by a violation…
CVE-2021-36061 — CVSS 5.4 (medium): Adobe Connect version 11.2.2 (and earlier) is affected by a secure design principles violation vulnerability via the 'pbMode' parameter. An…
CVE-2022-30683 — CVSS 5.3 (medium): Adobe Experience Manager versions 6.5.13.0 (and earlier) is affected by a Violation of Secure Design Principles vulnerability that could…
CVE-2019-15611 — CVSS 4.9 (medium): Violation of Secure Design Principles in the iOS App 2.23.0 causes the app to leak its login and token to other Nextcloud services when…
CVE-2025-54255 — CVSS 4.0 (medium): Acrobat Reader versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier are affected by a Violation of Secure Design Principles…
CVE-2021-44714 — CVSS 2.5 (low): Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204 (and earlier) are affected by a Violation…