CWE-923
Improper Restriction of Communication Channel to Intended Endpoints
The product establishes a communication channel to (or from) an endpoint for privileged or protected operations, but it does not properly ensure that it is communicating with the correct endpoint.
46 vulnerabilities with CWE-923
CVE-2026-22715
MEDIUM
VMWare Workstation/Fusion - Privilege Escalation
CVSS 5.9
CVE-2025-58742
MEDIUM
Milner ImageDirector Capture <7.6.3.25808 - SSRF
CVSS 5.9
CVE-2025-61939
HIGH
MicroServer - SSRF
CVSS 8.8
CVE-2025-33176
MEDIUM
NVIDIA RunAI - SSRF
CVSS 6.2
CVE-2025-12357
HIGH
ISO 15118-2 - Man-in-the-Middle
CVSS 8.3
CVE-2025-49734
HIGH
Windows PowerShell - Privilege Escalation
CVSS 7.0
CVE-2025-48807
MEDIUM
Windows Hyper-V - Code Execution
CVSS 6.7
CVE-2025-35978
HIGH
UpdateNavi V1.4 L10-L33 & UpdateNaviInstallService Service 1.2.0091...
CVSS 7.1
CVE-2025-22251
LOW
FortiOS <7.6.0 - SSRF
CVSS 3.1
CVE-2025-20261
HIGH
Cisco IMC - Privilege Escalation
CVSS 8.8
CVE-2025-48999
HIGH
DataEase <2.10.10 - Auth Bypass
CVSS 8.8
CVE-2025-46566
CRITICAL
DataEase <2.10.9 - Authenticated RCE
CVSS 9.8
CVE-2025-32886
MEDIUM
goTenna <5.5.3-0.25.5 - Info Disclosure
CVSS 4.0
CVE-2025-23178
HIGH
CWE-923 - SSRF
CVSS 7.6
CVE-2025-31144
MEDIUM
Quick Agent V3-V2 - SSRF
CVSS 5.8
CVE-2024-26013
HIGH
Fortinet FortiOS <7.4.4 - SSRF
CVSS 7.5
CVE-2025-29986
HIGH
Dell CEE 9.0.0.0 - SSRF
CVSS 8.3
CVE-2024-39271
LOW
Intel PROSet/Wireless <23.80 - Info Disclosure
CVSS 2.6
CVE-2022-43916
MEDIUM
IBM App Connect Enterprise Certified Container <12.7 - DoS
CVSS 6.8
CVE-2024-22315
MEDIUM
IBM Fusion <2.8.2 - SSRF
CVSS 4.0
CVE-2024-47490
HIGH
Juniper Networks Junos OS Evolved ACX 7000 Series - DoS
CVSS 8.2
CVE-2024-43571
MEDIUM
Sudo for Windows - Privilege Escalation
CVSS 5.6
CVE-2024-47125
HIGH
goTenna Pro App - Info Disclosure
CVSS 8.1
CVE-2024-41889
CRITICAL
Pimax Products - RCE
CVSS 9.8
CVE-2024-39537
MEDIUM
Juniper Junos OS Evolved < 21.4 - Information Disclosure
CVSS 6.5
Details
Vulnerabilities
46