CWE-693

Protection Mechanism Failure

The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.

554 vulnerabilities with CWE-693
CVE-2022-26696 HIGH
macOS Monterey <12.4 - Info Disclosure
CVSS 8.8
CVE-2022-39957 HIGH
OWASP ModSecurity Core Rule Set - Auth Bypass
CVSS 7.3
CVE-2022-36085 HIGH
Open Policy Agent 0.40.0-0.43.0 - Unsafe Builtin Bypass via 'with' Keyword
CVSS 7.4
CVE-2022-35978 HIGH
Minetest < 5.6.0 - Unauthenticated Protection Mechanism Failure via Global Setting
CVSS 7.7
CVE-2022-33631 HIGH
Microsoft Excel - Privilege Escalation
CVSS 7.3
CVE-2022-31479 CRITICAL
HID Mercury Intelligent Controllers <1.302-1.296 - Code Injection
CVSS 9.6
CVE-2022-26774 HIGH
iTunes <12.12.4 - Privilege Escalation
CVSS 7.8
CVE-2022-20805 MEDIUM
Cisco Umbrella Secure Web Gateway - Authenticated SSL Decryption Bypass via TLS SNI Extension
CVSS 4.1
CVE-2022-20738 MEDIUM
Cisco Umbrella Secure Web Gateway - Unauthenticated File Inspection Bypass via Crafted Payload
CVSS 5.8
CVE-2022-21283 MEDIUM
Oracle GraalVM 20.3.4, 21.3.0 & Java SE 11.0.13, 17.0.1 - Partial DoS via Multiple Protocols
CVSS 5.3
CVE-2022-22152 HIGH
Juniper Networks Contrail Service Orchestration - Info Disclosure
CVSS 7.7
CVE-2021-1494 MEDIUM
Cisco Firepower Threat Defense Software - Unauthenticated File Policy Bypass via HTTP Header Handling
CVSS 5.8
CVE-2021-31982 HIGH
Microsoft Edge Chromium < 91.0.864.37 - Security Feature Bypass
CVSS 8.8
CVE-2021-26355 MEDIUM
AMD EPYC 7003 Firmware < milanpi-sp3_1.0.0.7 - Denial of Service via SMU Message Port Register Access
CVSS 5.5
CVE-2021-31608 MEDIUM
Proofpoint Enterprise Protection <18.8.0 - Auth Bypass
CVSS 4.3
CVE-2021-33081 HIGH
Intel SSD Firmware - Information Disclosure via Protection Mechanism Failure
CVSS 7.9
CVE-2021-33079 MEDIUM
Intel SSD Firmware - Information Disclosure via Protection Mechanism Failure
CVSS 4.1
CVE-2021-32960 HIGH
Rockwellautomation Factorytalk Services Platform < 6.11.00 - Incorrect Authorization
CVSS 8.5
CVE-2021-27497 MEDIUM
Philips Vue PACS <12.2 - Info Disclosure
CVSS 6.5
CVE-2021-36310 MEDIUM
Dell Networking OS10 10.4.3.x 10.5.0.x 10.5.1.x 10.5.2.x - Authenticated Denial of Service via API Service
CVSS 4.9
CVE-2021-35556 MEDIUM
Java SE and GraalVM - Partial Denial of Service in Swing
CVSS 5.3
CVE-2021-31386 MEDIUM
Juniper Networks Junos OS <12.3R12-S20, <15.1R7-S11, <18.3R3-S6, <1...
CVSS 5.3
CVE-2021-31362 MEDIUM
Junos OS Multiple Versions - Unauthenticated DoS via Spoofed IS-IS Hello PDU
CVSS 6.5
CVE-2021-1616 MEDIUM
Cisco IOS XE < 17.6.1 - Unauthenticated NAT ALG Bypass via H.323 Traffic
CVSS 4.7
CVE-2021-32835 CRITICAL
Eclipse Keti - Post-Authentication Remote Code Execution via Sandbox Escape
CVSS 9.9
Details
Vulnerabilities 554
Links
MITRE CWE Entry Search this CWE With Exploits