Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-358

CWE-358

Improperly Implemented Security Check for Standard

Parent: CWE-573 - Improper Following of Specification by Caller

The product does not implement or incorrectly implements one or more security-relevant checks as specified by the design of a standardized algorithm, protocol, or technique.

122 vulnerabilities with CWE-358

CVE-2017-2604 MEDIUM

Jenkins <2.44 - Privilege Escalation

CVE-2017-2612 MEDIUM

Jenkins <2.44, 2.32.2 - Privilege Escalation

CVE-2017-2611 MEDIUM

Jenkins <2.44, 2.32.2 - Privilege Escalation

CVE-2017-15706 MEDIUM

Apache Tomcat 7.0.79-9.0.1 - Info Disclosure

CVE-2017-15107 HIGH

dnsmasq <= 2.78 - DNSSEC Validation Bypass via Wildcard NSEC Record

CVE-2017-15105 MEDIUM

Unbound < 1.6.8 - Improperly Implemented Security Check for Standard

CVE-2017-15091 HIGH

PowerDNS Authoritative 3.0-3.4.11 and 4.0-4.0.4 - Authenticated Unauthorized State Change via API

CVE-2017-15665 HIGH

Flexense DiskBoss Enterprise 8.5.12 - Denial of Service via Crafted SERVER_GET_INFO Packet

CVE-2017-15664 HIGH

Flexense Syncbreeze - Denial of Service

CVE-2017-15663 HIGH

Flexense Disk Pulse Enterprise 10.1.18 - Denial of Service via Crafted SERVER_GET_INFO Packet

CVE-2017-15662 HIGH

Flexense VX Search Enterprise 10.1.12 - Denial of Service via Crafted SERVER_GET_INFO Packet

CVE-2017-8152 MEDIUM

Huawei Honor 5S <TAG-TL00C01B173 - Privilege Escalation

CVE-2017-12303 MEDIUM

Cisco AsyncOS Software - Auth Bypass

CVE-2017-6032 MEDIUM

Schneider Electric Modicon - Info Disclosure

CVE-2017-7177 HIGH

Suricata < 3.2 - IPv4 Fragment Evasion via Missing Protocol Check

CVE-2016-10834 HIGH

cPanel 11.50.0.4-11.50.5.2 - Account Suspension Bypass via FTP

CVE-2016-10825 HIGH

cPanel 11.50.0.4-11.50.5.2 - Security Policy Bypass via Fake Static Documents

CVE-2016-8635 MEDIUM

Mozilla Network Security Services 3.21-3.21.4 - Private Key Recovery via Small Subgroup Confinement Attack

CVE-2016-8614 MEDIUM

Ansible <2.2.0 - OpenPGP Key Injection

CVE-2016-10229 CRITICAL

Linux Kernel < 4.5 - Remote Code Execution via UDP MSG_PEEK Checksum Calculation

CVE-2016-3017 HIGH

IBM Security Access Manager for Web - Info Disclosure

CVE-2014-4843 MEDIUM

IBM Curam SPM <6.0.5.5 - Info Disclosure

Previous Page 5 of 5

Details

Vulnerabilities 122

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy