Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-358

CWE-358

Improperly Implemented Security Check for Standard

Parent: CWE-573 - Improper Following of Specification by Caller

The product does not implement or incorrectly implements one or more security-relevant checks as specified by the design of a standardized algorithm, protocol, or technique.

122 vulnerabilities with CWE-358

CVE-2025-58308 HIGH

HarmonyOS - Improperly Implemented Security Check in Call Module

CVE-2025-62585 HIGH

Whale < 4.33.325.17 - Content Security Policy Bypass via Dual-Tab Scheme

CVE-2025-62583 CRITICAL

Whale Browser < 4.33.325.17 - Iframe Sandbox Escape in Dual-Tab Environment

CVE-2025-25255 MEDIUM

Fortinet FortiOS <7.6.3 - Auth Bypass

CVE-2025-31969 MEDIUM

HCL Unica < 25.1.0 - Content Security Policy Misconfiguration

CVE-2025-59147 HIGH

Suricata <7.0.11 & 8.0.0 - Detection Bypass

CVE-2025-10457 MEDIUM

Zephyr < 4.1.0 - Improperly Implemented Security Check for BLE Connection Response

CVE-2025-43262 MEDIUM

macOS < 26.0 - Unprotected USB Access via Restricted Mode Bypass

CVE-2025-32086 HIGH

Intel Xeon 6 - Privilege Escalation

CVE-2025-8204 LOW

Comodo Dragon <134.0.6998.179 - Info Disclosure

CVE-2025-49011 LOW

SpiceDB < 1.44.2 - Improperly Implemented Security Check for Standard

CVE-2025-3069 HIGH

Google Chrome < 135.0.7049.52 - Privilege Escalation via Extensions

CVE-2025-21267 MEDIUM

Microsoft Edge Chromium < 133.0.3065.51 - Spoofing via Improperly Implemented Security Check

CVE-2024-55599 MEDIUM

FortiOS 6.4-7.6.0, 7.4<=7.4.7 and FortiProxy 7.0-7.6.1, 7.4<=7.4.8 - Unauthenticated DNS Filter Bypass via Apple Devices

CVE-2024-12056 LOW

OAuth Client - Privilege Escalation

CVE-2024-33510 MEDIUM

FortiOS <7.4.3, <7.2.8, <7.0.16 - Injection

CVE-2024-40650 HIGH

Android - Missing Authorization Leading to Factory Reset Protection Bypass

CVE-2024-36511 LOW

FortiADC WAF <7.4.4 - Info Disclosure

CVE-2024-7965 HIGH KEV

Google Chrome < 128.0.6613.84 - Remote Code Execution via V8 Heap Corruption

CVE-2024-41907 MEDIUM

SINEC Traffic Analyzer <V2.0 - Info Disclosure

CVE-2024-7003 MEDIUM

Google Chrome < 127.0.6533.72 - UI Spoofing via FedCM Inappropriate Implementation

CVE-2024-6995 MEDIUM

Chrome < 127.0.6533.72 - URL Spoofing via Fullscreen UI Gestures

CVE-2024-5500 MEDIUM

Google Chrome <1.3.36.351 - Auth Bypass

CVE-2024-6772 HIGH

Google Chrome <126.0.6478.182 - Memory Corruption

CVE-2024-6101 HIGH

Google Chrome < 126.0.6478.114 - Out of Bounds Memory Access in V8

Previous Page 2 of 5 Next

Details

Vulnerabilities 122

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy