CWE-697
Incorrect Comparison
The product compares two entities in a security-relevant context, but the comparison is incorrect.
140 vulnerabilities with CWE-697
CVE-2026-26275
HIGH
httpsig-hyper <0.0.23 - Auth Bypass
CVSS 7.5
CVE-2026-21691
MEDIUM
iccDEV <2.3.1.2 - Type Confusion
CVSS 5.4
CVE-2025-20343
HIGH
Cisco ISE - DoS
CVSS 8.6
CVE-2025-12192
MEDIUM
The Events Calendar <6.15.9 - Info Disclosure
CVSS 5.3
CVE-2025-47416
libsymproc - RCE
CVE-2025-9401
LOW
HuangDou UTCMS 9 - Info Disclosure
CVSS 3.7
CVE-2025-54336
CRITICAL
Plesk Obsidian 18.0.70 - Info Disclosure
CVSS 9.8
CVE-2025-27909
MEDIUM
IBM Concert < 2.0.0 - Permissive CORS Policy
CVSS 5.4
CVE-2025-48952
CRITICAL
NetAlertX <25.6.7 - Auth Bypass
CVSS 9.4
CVE-2025-4515
MEDIUM
Pribai Privategpt < 0.6.2 - Permissive CORS Policy
CVSS 4.3
CVE-2025-3102
HIGH
SureTriggers - All-in-One Automation Platform < 1.0.78 - Authentication Bypass
CVSS 8.1
CVE-2024-5528
LOW
GitLab CE/EE <16.11.6, <17.0.4, <17.1.2 - SSRF
CVSS 3.5
CVE-2024-53861
LOW
pyjwt <2.10.0 - RCE
CVSS 2.2
CVE-2024-9681
MEDIUM
curl - Info Disclosure
CVSS 6.5
CVE-2024-39534
MEDIUM
Juniper Networks Junos OS Evolved - Info Disclosure
CVSS 5.4
CVE-2024-6641
MEDIUM
WP Hardening - Security Feature Bypass
CVSS 5.3
CVE-2024-41657
HIGH
Casbin Casdoor - Permissive CORS Policy
CVSS 8.1
CVE-2024-41958
MEDIUM
mailcow: dockerized - Auth Bypass
CVSS 6.6
CVE-2024-32862
MEDIUM
Johnsoncontrols Exacqvision Web Service - Permissive CORS Policy
CVSS 6.8
CVE-2024-24621
CRITICAL
Softaculous Webuzo - Auth Bypass
CVSS 9.8
CVE-2024-5217
CRITICALKEV
ServiceNow - RCE
CVSS 9.8
CVE-2024-39742
HIGH
IBM MQ Operator - Auth Bypass
CVSS 8.1
CVE-2024-38522
MEDIUM
Hush Line <0.1.0 - Auth Bypass
CVSS 6.3
CVE-2024-4032
HIGH
ipaddress - Info Disclosure
CVSS 7.5
CVE-2021-47370
MEDIUM
Linux kernel - Info Disclosure
CVSS 5.5
Details
Vulnerabilities
140