Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-1188

CWE-1188

Initialization of a Resource with an Insecure Default

Parent: CWE-1419 - Incorrect Initialization of Resource

The product initializes or sets a resource with a default that is intended to be changed by the product's installer, administrator, or maintainer, but the default is not secure.

288 vulnerabilities with CWE-1188

CVE-2024-22388 MEDIUM

Encoder Configuration - Info Disclosure

CVE-2024-22207 MEDIUM

Fastify Swagger-UI - Information Disclosure

CVE-2023-48733 MEDIUM

Canonical LXD - Insecure Default UEFI Shell Configuration

CVE-2023-6448 CRITICAL KEV

Unitronics VisiLogic <9.9.00 - Info Disclosure

CVE-2023-27516 HIGH

SoftEther VPN 4.41-9782-beta and 5.01.9674 - Authentication Bypass via CiRpcAccepted()

CVE-2023-45312 HIGH

mtproto/mt_proto_proxy < 0.7.2 - Unauthenticated Remote Code Execution

CVE-2023-5368 MEDIUM

FreeBSD - Uninitialized Data Exposure via msdosfs Truncate Operations

CVE-2023-40708 MEDIUM

SNAP PAC S1 Firmware <R10.3b - Info Disclosure

CVE-2023-3453 HIGH

ETIC Telecom RAS <4.7.0 - DoS

CVE-2023-35689 HIGH

Android - Local Privilege Escalation via Insecure ADB Default in DeviceVersionFragment

CVE-2023-3485 LOW

Temporal Server < 1.20.0 - Namespace Access Control Bypass via Crafted Task Token

CVE-2023-33949 MEDIUM

Liferay Portal <7.3.0 & Liferay DXP <7.2 - Info Disclosure

CVE-2023-31101 MEDIUM

Apache InLong <1.7.0 - Info Disclosure

CVE-2023-1618 HIGH

Mitsubishi Electric MELSEC WS Series - Auth Bypass

CVE-2023-27524 HIGH KEV

Apache Superset Signed Cookie Priv Esc

CVE-2023-28978 MEDIUM

Juniper Networks Junos OS Evolved <20.4R3-S7-EVO, <21.1R3-S4-EVO - ...

CVE-2022-49099 MEDIUM

Linux Kernel 5.17 - Insecure Default Resource Initialization in vmbus_device_register()

CVE-2022-48493 HIGH

Huawei EMUI - Denial of Service via Secure OS Module Configuration Defects

CVE-2022-48492 HIGH

Huawei EMUI - Denial of Service via Secure OS Module Configuration Defects

CVE-2022-48432 MEDIUM

JetBrains IntelliJ IDEA <2023.1 - Info Disclosure

CVE-2022-38745 HIGH

Apache OpenOffice <4.1.14 - Code Injection

CVE-2022-4224 HIGH

CODESYS Control for Beaglebone SL 3.0-4.8.0.0 - Unauthenticated Arbitrary File Read/Write and Denial of Service

CVE-2022-48342 MEDIUM

JetBrains TeamCity <2022.10.2 - Info Disclosure

CVE-2022-47196 MEDIUM

Ghost Foundation Ghost 5.9.4 - Privilege Escalation

CVE-2022-47194 MEDIUM

Ghost Foundation Ghost 5.9.4 - Privilege Escalation

Previous Page 6 of 12 Next

Details

Vulnerabilities 288

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy