Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-912

CWE-912

Hidden Functionality

Parent: CWE-684 - Incorrect Provision of Specified Functionality

The product contains functionality that is not documented, not part of the specification, and not accessible through an interface or command sequence that is obvious to the product's users or administrators.

78 vulnerabilities with CWE-912

CVE-2023-40158 HIGH

CBC - Command Injection

CVE-2023-25183 HIGH

Snap One OvrC Pro <7.2 - Command Injection

CVE-2023-24108 CRITICAL

MvcTools 6d48cd6830fc1df1d8c9d61caa1805fd6a1b7737 - RCE

CVE-2023-22316 MEDIUM

PIX-RT100 <2.1.2_EQ101 - Info Disclosure

CVE-2022-38452 HIGH

Netgear Orbi Router RBR750 4.6.8.5 - Command Injection

CVE-2022-36429 HIGH

Netgear Orbi Satellite RBS750 4.6.8.5 - Command Injection

CVE-2022-3843 CRITICAL

WAGO Unmanaged Switch - Info Disclosure

CVE-2022-47767 CRITICAL

Solar-Log Gateway <5.1.1 - RCE

CVE-2022-46997 CRITICAL

Passhunt < commit 54eb987d30ead2b8ebbf1f0b880aa14249323867 - RCE

CVE-2022-46996 CRITICAL

vSphere_selfuse < commit - RCE

CVE-2022-3203 CRITICAL

ORing IAP-420+ FW 2.0m - RCE

CVE-2022-1741 MEDIUM

Dominion Voting Systems ImageCast X - Privilege Escalation

CVE-2021-36403 MEDIUM

CVE-2021-4229 MEDIUM

ua-parser-js <1.0.0 - RCE

CVE-2021-24867 CRITICAL

AccessPress Themes - Backdoor

CVE-2021-43987 CRITICAL

mySCADA myPRO <8.20.0 - Info Disclosure

CVE-2021-25371 MEDIUM KEV

DSP driver <SMR Mar-2021 Release 1 - Code Injection

CVE-2020-28593 HIGH

Cosori Smart Air Fryer CS158-AF 1.1.0 - RCE

CVE-2020-3352 MEDIUM

Cisco Firepower Threat Defense (FTD) Software - Privilege Escalation

CVE-2020-12504 CRITICAL

Pepperl+Fuchs P+F Comtrol - Improper Authorization

CVE-2020-16204 CRITICAL

N-Tron 702-W/702M12-W - Command Injection

CVE-2020-14487 CRITICAL

OpenClinic GA <5.09.02 - Command Injection

CVE-2018-17919 MEDIUM

XMeye P2P Cloud Server - Info Disclosure

CVE-2017-20084 MEDIUM

JUNG Smart Visu Server <1.0.900 - Backdoor

CVE-2017-20083 MEDIUM

JUNG Smart Visu Server <1.0.900 - Backdoor

Previous Page 3 of 4 Next

Details

Vulnerabilities 78

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy