CWE-358
Improperly Implemented Security Check for Standard
The product does not implement or incorrectly implements one or more security-relevant checks as specified by the design of a standardized algorithm, protocol, or technique.
111 vulnerabilities with CWE-358
CVE-2025-3069
HIGH
Google Chrome < 135.0.7049.52 - Privilege Escalation
CVSS 8.8
CVE-2025-21267
MEDIUM
Microsoft Edge < - SSRF
CVSS 4.4
CVE-2024-55599
MEDIUM
FortiOS <7.6.0 - Auth Bypass
CVSS 5.3
CVE-2024-12056
LOW
OAuth Client - Privilege Escalation
CVE-2024-33510
MEDIUM
FortiOS <7.4.3, <7.2.8, <7.0.16 - Injection
CVSS 4.3
CVE-2024-40650
HIGH
styles.xml - Privilege Escalation
CVSS 7.8
CVE-2024-36511
LOW
FortiADC WAF <7.4.4 - Info Disclosure
CVSS 3.7
CVE-2024-7965
HIGH
KEV
Google Chrome < 128.0.6613.84 - Out-of-Bounds Write
CVSS 8.8
CVE-2024-41907
MEDIUM
SINEC Traffic Analyzer <V2.0 - Info Disclosure
CVSS 4.2
CVE-2024-7003
MEDIUM
Google Chrome <127.0.6533.72 - XSS
CVSS 4.3
CVE-2024-6995
MEDIUM
Google Chrome <127.0.6533.72 - XSS
CVSS 4.7
CVE-2024-5500
MEDIUM
Google Chrome <1.3.36.351 - Auth Bypass
CVSS 6.5
CVE-2024-6772
HIGH
Google Chrome <126.0.6478.182 - Memory Corruption
CVSS 8.8
CVE-2024-6101
HIGH
Google Chrome < 126.0.6478.114 - Out-of-Bounds Access
CVSS 8.8
CVE-2024-27842
HIGH
macOS Sonoma <14.5 - Privilege Escalation
CVSS 7.8
CVE-2024-2617
HIGH
RTU500 - Auth Bypass
CVSS 7.2
CVE-2024-3845
MEDIUM
Google Chrome <124.0.6367.60 - CSRF
CVSS 4.3
CVE-2024-3844
MEDIUM
Google Chrome <124.0.6367.60 - XSS
CVSS 4.3
CVE-2024-3838
MEDIUM
Google Chrome <124.0.6367.60 - XSS
CVSS 5.5
CVE-2024-25545
HIGH
Weave Weave Desktop <7.78.10 - RCE
CVSS 7.8
CVE-2024-23592
MEDIUM
Lenovo Synaptics - Auth Bypass
CVSS 6.3
CVE-2024-2174
HIGH
Google Chrome <122.0.6261.111 - Heap Corruption
CVSS 8.8
CVE-2023-2585
LOW
Keycloak - Auth Bypass
CVSS 3.5
CVE-2023-40445
HIGH
Apple Ipados < 17.1 - Denial of Service
CVSS 7.5
CVE-2023-4501
CRITICAL
OpenText (Micro Focus) Visual COBOL <9.0 - Auth Bypass
CVSS 9.8
Details
Vulnerabilities
111