CWE-602

Medium likelihood

Client-Side Enforcement of Server-Side Security

Parent: CWE-693 - Protection Mechanism Failure

The product is composed of a server that relies on the client to implement a mechanism that is intended to protect the server.

104 vulnerabilities with CWE-602
CVE-2025-32808 HIGH
W. W. Norton InQuizitive <2025-04-08 - Info Disclosure
CVSS 7.7
CVE-2025-32359 MEDIUM
Zammad 6.4.x <6.4.2 - Info Disclosure
CVSS 4.8
CVE-2025-25497 HIGH
Netsweeper Server <8.2.6 - Privilege Escalation
CVSS 8.1
CVE-2025-27681 CRITICAL
Vasion Print <1.0.735-20.0.1330 - Info Disclosure
CVSS 9.8
CVE-2024-41751 MEDIUM
IBM SmartCloud Analytics - Log Analysis <1.3.8.2 - Auth Bypass
CVSS 5.5
CVE-2024-41750 MEDIUM
IBM SmartCloud Analytics - Log Analysis <1.3.8.2 - Auth Bypass
CVSS 5.5
CVE-2024-52960 MEDIUM
Fortinet FortiSandbox <4.2.7 - Command Injection
CVSS 4.3
CVE-2024-49824 MEDIUM
IBM Robotic Process Automation <23.0.18 - Privilege Escalation
CVSS 6.5
CVE-2024-12603 CRITICAL
com.transsion.applock - Auth Bypass
CVSS 9.8
CVE-2024-9844 HIGH
Ivanti Connect Secure <22.7R2.4 - Auth Bypass
CVSS 7.1
CVE-2024-52008 HIGH
Fides - Auth Bypass
CVSS 8.8
CVE-2024-6831 MEDIUM
Axis Camera Station Pro - Info Disclosure
CVSS 4.4
CVE-2024-23666 HIGH
Fortinet FortiAnalyzer-BigData <7.4.1 - Info Disclosure
CVSS 7.5
CVE-2024-20476 MEDIUM
Cisco ISE - Auth Bypass
CVSS 4.3
CVE-2024-43188 MEDIUM
IBM Business Automation Workflow - Privilege Escalation
CVSS 4.9
CVE-2024-44106 HIGH
Ivanti Workspace Control <2025.2 - Privilege Escalation
CVSS 8.8
CVE-2024-42340 HIGH
CyberArk - XSS
CVSS 8.3
CVE-2024-6620 LOW
Honeywell PC42t-PC42d - XSS
CVSS 3.5
CVE-2024-39870 MEDIUM
SINEMA Remote Connect Server <V3.2 SP1 - Privilege Escalation
CVSS 6.3
CVE-2024-32685 MEDIUM
Wpmet Wp Ultimate Review <2.2.5 - CSRF
CVSS 5.3
CVE-2024-32521 MEDIUM
Highfivery LLC Zero Spam <5.5.6 - Info Disclosure
CVSS 5.3
CVE-2024-32512 MEDIUM
weForms <1.6.20 - Info Disclosure
CVSS 5.3
CVE-2024-31491 HIGH
Fortinet FortiSandbox <4.4.4 - RCE
CVSS 8.8
CVE-2024-28029 HIGH
Privilege Escalation - Auth Bypass
CVSS 8.8
CVE-2024-0701 MEDIUM
UserPro <5.1.6 - Auth Bypass
CVSS 5.3
Details
Vulnerabilities 104
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits