CVEs classified under CWE-749, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2023-40151 — CVSS 10.0 (critical): When user authentication is not enabled the shell can execute commands with the highest privileges. Red Lion SixTRAK and VersaTRAK Series…
CVE-2026-55454 — CVSS 9.9 (critical): Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 2.1, the bundled Caddy reverse-proxy's admin API —…
CVE-2026-30957 — CVSS 9.9 (critical): OneUptime is a solution for monitoring and managing online services. Prior to 10.0.21, OneUptime Synthetic Monitors allow a low-privileged…
CVE-2026-30921 — CVSS 9.9 (critical): OneUptime is a solution for monitoring and managing online services. Prior to 10.0.20, OneUptime Synthetic Monitors allow low-privileged…
CVE-2019-18342 — CVSS 9.9 (critical): A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The SFTP service (default port 22/tcp) of the…
CVE-2025-59403 — CVSS 9.8 (critical): The Flock Safety Android Collins application (aka com.flocksafety.android.collins) 6.35.31 for Android lacks authentication. It is…
CVE-2023-51583 — CVSS 9.8 (critical): Voltronic Power ViewPower UpsScheduler Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote…
CVE-2023-51582 — CVSS 9.8 (critical): Voltronic Power ViewPower LinuxMonitorConsole Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows…
CVE-2023-51581 — CVSS 9.8 (critical): Voltronic Power ViewPower MacMonitorConsole Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote…
CVE-2023-51575 — CVSS 9.8 (critical): Voltronic Power ViewPower MonitorConsole Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote…
CVE-2023-51574 — CVSS 9.8 (critical): Voltronic Power ViewPower updateManagerPassword Exposed Dangerous Method Authentication Bypass Vulnerability. This vulnerability allows…
CVE-2023-44414 — CVSS 9.8 (critical): D-Link D-View coreservice_action_script Exposed Dangerous Function Remote Code Execution Vulnerability. This vulnerability allows remote…
CVE-2023-40501 — CVSS 9.8 (critical): LG Simple Editor copyContent Exposed Dangerous Function Remote Code Execution Vulnerability. This vulnerability allows remote attackers to…
CVE-2023-40500 — CVSS 9.8 (critical): LG Simple Editor copyContent Exposed Dangerous Function Remote Code Execution Vulnerability. This vulnerability allows remote attackers to…
CVE-2023-51573 — CVSS 9.8 (critical): Voltronic Power ViewPower Pro updateManagerPassword Exposed Dangerous Function Authentication Bypass Vulnerability. This vulnerability…
CVE-2024-27444 — CVSS 9.8 (critical): langchain_experimental (aka LangChain Experimental) in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-44467 fix and…
CVE-2024-25675 — CVSS 9.8 (critical): An issue was discovered in MISP before 2.4.184. A client does not need to use POST to start an export generation process. This is related…
CVE-2023-39226 — CVSS 9.8 (critical): In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an unauthenticated attacker to execute arbitrary…
CVE-2023-40150 — CVSS 9.8 (critical): Softneta MedDream PACS does not perform an authentication check and performs some dangerous functionality, which could result in…
CVE-2022-4136 — CVSS 9.8 (critical): Dangerous method exposed which can lead to RCE in qmpass/leadshop v1.4.15 allows an attacker to control the target host by calling any…
CVE-2021-42128 — CVSS 9.8 (critical): An exposed dangerous function vulnerability exists in Ivanti Avalanche before 6.3.3 using inforail Service allows Privilege Escalation via…
CVE-2020-15623 — CVSS 9.8 (critical): This vulnerability allows remote attackers to write arbitrary files on affected installations of CentOS Web Panel cwp-e17.0.9.8.923…
CVE-2018-10931 — CVSS 9.8 (critical): It was found that cobbler 2.6.x exposed all functions from its CobblerXMLRPCInterface class over XMLRPC. A remote, unauthenticated attacker…
CVE-2026-2275 — CVSS 9.6 (critical): The CrewAI CodeInterpreter tool falls back to SandboxPython when it cannot reach Docker, which can enable RCE through arbitrary C function…
CVE-2026-22208 — CVSS 9.6 (critical): OpenS100 (the reference implementation S-100 viewer) prior to commit 753cf29 contains a remote code execution vulnerability via an…
CVE-2025-64443 — CVSS 9.6 (critical): MCP Gateway allows easy and secure running and deployment of MCP servers. In versions 0.27.0 and earlier, when MCP Gateway runs in sse or…
CVE-2025-53964 — CVSS 9.6 (critical): GoldenDict 1.5.0 and 1.5.1 has an exposed dangerous method that allows reading and modifying files when a user adds a crafted dictionary…
CVE-2014-0758 — CVSS 9.3 (critical): An ActiveX control in GenLaunch.htm in ICONICS GENESIS32 8.0, 8.02, 8.04, and 8.05 allows remote attackers to execute arbitrary programs…
CVE-2025-53827 — CVSS 9.1 (critical): ownCloud Core is the server-side component of the file storage, synchronization, and sharing application ownCloud Classic. In versions…
CVE-2024-13242 — CVSS 9.1 (critical): Exposed Dangerous Method or Function vulnerability in Drupal Swift Mailer allows Resource Location Spoofing.This issue affects Swift…
CVE-2023-5389 — CVSS 9.1 (critical): An attacker could potentially exploit this vulnerability, leading to the ability to modify files on Honeywell Experion ControlEdge…
CVE-2023-50424 — CVSS 9.1 (critical): SAP BTP Security Services Integration Library ([Golang] github.com/sap/cloud-security-client-go) - versions < 0.17.0, allow under certain…
CVE-2023-50423 — CVSS 9.1 (critical): SAP BTP Security Services Integration Library ([Python] sap-xssec) - versions < 4.1.0, allow under certain conditions an escalation of…
CVE-2023-50422 — CVSS 9.1 (critical): SAP BTP Security Services Integration Library ([Java] cloud-security-services-integration-library) - versions below 2.17.0 and versions…
CVE-2023-49583 — CVSS 9.1 (critical): SAP BTP Security Services Integration Library ([Node.js] @sap/xssec - versions < 3.6.0, allow under certain conditions an escalation of…
CVE-2014-5415 — CVSS 9.1 (critical): Beckhoff Embedded PC images before 2014-10-22 and Automation Device Specification (ADS) TwinCAT components might allow remote attackers to…
CVE-2023-38101 — CVSS 8.8 (high): NETGEAR ProSAFE Network Management System SettingConfigController Exposed Dangerous Function Remote Code Execution Vulnerability. This…
CVE-2023-38097 — CVSS 8.8 (high): NETGEAR ProSAFE Network Management System BkreProcessThread Exposed Dangerous Function Remote Code Execution Vulnerability. This…
CVE-2021-34996 — CVSS 8.8 (high): This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although…
CVE-2020-17388 — CVSS 8.8 (high): This vulnerability allows remote attackers to execute arbitrary code on affected installations of Marvell QConvergeConsole 5.5.0.64…
CVE-2019-10918 — CVSS 8.8 (high): A vulnerability has been identified in SIMATIC PCS 7 V8.0 and earlier (All versions), SIMATIC PCS 7 V8.1 (All versions < V8.1 with WinCC…
CVE-2026-47899: The Electron preload script in Logseq exposes an API method that allows the renderer process to invoke IPC handlers without proper path…
CVE-2026-33583 — CVSS 8.7 (high): Exposure of the QKEY (used as input into the ‘OTA-Quantum’ device registration process) and internal system keys via an unauthenticated…
CVE-2026-5173 — CVSS 8.5 (high): GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.9.6 before 18.8.9, 18.9 before 18.9.5, and 18.10 before…
CVE-2024-12651 — CVSS 8.5 (high): Exposed Dangerous Method or Function vulnerability in PTT Inc. HGS Mobile App allows Manipulating User-Controlled Variables. This issue…
CVE-2019-12948 — CVSS 8.3 (high): A vulnerability in the web-based management interface of VVX, Trio, SoundStructure, SoundPoint, and SoundStation phones running Polycom UC…