CWE-354

Medium likelihood

Improper Validation of Integrity Check Value

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The product does not validate or incorrectly validates the integrity check values or "checksums" of a message. This may prevent it from detecting if the data has been modified or corrupted in transmission.

143 vulnerabilities with CWE-354
CVE-2026-28402 HIGH
nimiq/core-rs-albatross <1.2.2 - Auth Bypass
CVSS 7.1
CVE-2026-26275 HIGH
httpsig-hyper <0.0.23 - Auth Bypass
CVSS 7.5
CVE-2026-25934 MEDIUM
go-git <5.16.5 - Info Disclosure
CVSS 4.3
CVE-2025-11543 CRITICAL
Sharp Display Solutions - Code Injection
CVSS 9.8
CVE-2025-33193 MEDIUM
NVIDIA DGX Spark GB10 - Info Disclosure
CVSS 5.7
CVE-2025-4616
Palo Alto Networks Prisma Browser - Privilege Escalation
CVE-2025-55155 MEDIUM
MantisBT <2.27.1 - Info Disclosure
CVSS 5.4
CVE-2024-7402
Netskope Client - Privilege Escalation
CVE-2025-54887 CRITICAL
jwe <1.1.0 - Confidentiality Disclosure
CVSS 9.1
CVE-2025-7096 HIGH
Comodo Internet Security Premium 12.3.4.8162 - Info Disclosure
CVSS 8.1
CVE-2024-46992 HIGH
Electron <30.0.5-31.0.0-beta.1 - ASAR Integrity Bypass
CVSS 7.8
CVE-2025-39203 MEDIUM
Hitachienergy Microscada X Sys600 < 10.7 - Denial of Service
CVSS 6.5
CVE-2025-4418 MEDIUM
AVEVA PI Connector for CygNet <1.6.14 - Privilege Escalation
CVSS 4.4
CVE-2025-3479 MEDIUM
Forminator Forms - Custom Form Builder <1.42.0 - RCE
CVSS 5.3
CVE-2025-3247 MEDIUM
Contact Form 7 <6.0.5 - Order Replay
CVSS 5.3
CVE-2025-24148 MEDIUM
macOS <13.7.5-15.4-14.7.5 - Code Injection
CVSS 5.5
CVE-2024-47573 MEDIUM
FortiNDR <7.4.2-7.0.6 - Privilege Escalation
CVSS 6.5
CVE-2024-47935 MEDIUM
TXOne Networks StellarProtect <3.2 - Privilege Escalation
CVSS 6.7
CVE-2025-25183 LOW
vLLM - Info Disclosure
CVSS 2.6
CVE-2023-50738 MEDIUM
Lexmark - Privilege Escalation
CVSS 4.3
CVE-2020-9210 MEDIUM
Huawei - Info Disclosure
CVSS 6.8
CVE-2024-56169 MEDIUM
Fort <2.0.0 - Info Disclosure
CVSS 5.3
CVE-2024-51141 HIGH
TOTOLINK Bluetooth Wireless Adapter A600UB - RCE
CVSS 7.8
CVE-2024-52550 HIGH
Jenkins Pipeline: Groovy Plugin <3990.vd281dd77a_388 - Privilege Es...
CVSS 8.0
CVE-2024-49406 MEDIUM
Blockchain Keystore <1.3.16 - Privilege Escalation
CVSS 6.7
Details
Vulnerabilities 143
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits