CVEs classified under CWE-708, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2026-40196 — CVSS 8.1 (high): HomeBox is a home inventory and organization system. Versions prior to 0.25.0 contain a vulnerability where the defaultGroup ID remained…
CVE-2023-29122 — CVSS 6.7 (medium): Under certain conditions, access to service libraries is granted to account they should not have access to.
CVE-2023-20044 — CVSS 6.7 (medium): A vulnerability in Cisco CX Cloud Agent of could allow an authenticated, local attacker to elevate their privileges. This vulnerability is…
CVE-2024-41773 — CVSS 6.5 (medium): IBM Global Configuration Management 7.0.2 and 7.0.3 could allow an authenticated user to archive a global baseline due to improper access…
CVE-2024-45417 — CVSS 6.0 (medium): Uncontrolled resource consumption in the installer for some Zoom apps for macOS before version 6.1.5 may allow a privileged user to conduct…
CVE-2021-26248 — CVSS 5.5 (medium): Philips MRI 1.5T and MRI 3T Version 5.3 through 5.8.1 does not restrict or incorrectly restricts access to a resource from an unauthorized…
CVE-2026-32691 — CVSS 5.3 (medium): A race condition in the secrets management subsystem of Juju versions 3.0.0 through 3.6.18 allows an authenticated unit agent to claim…
CVE-2023-4008 — CVSS 5.3 (medium): An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.9 before 16.0.8, all versions starting from 16.1…
CVE-2024-45426 — CVSS 4.9 (medium): Incorrect ownership assignment in some Zoom Workplace Apps may allow a privileged user to conduct an information disclosure via network…
CVE-2025-14262 — CVSS 4.3 (medium): A wrong permission check in KNIME Business Hub before version 1.17.0 allowed an authenticated user to save jobs of other users as if there…
CVE-2025-5069 — CVSS 3.5 (low): An issue has been discovered in GitLab CE/EE affecting all versions from 17.10 before 18.2.7, 18.3 before 18.3.3, and 18.4 before 18.4.1…
CVE-2025-5467 — CVSS 3.3 (low): It was discovered that process_crash() in data/apport in Canonical's Apport crash reporting tool may create crash files with incorrect…
CVE-2024-9633 — CVSS 3.1 (low): An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.3 before 17.4.2, all versions starting from 17.5…