CWE-1007

4 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →

CVEs classified under CWE-1007page 1 of 1

CVE-2021-4221MEDIUMCVSS 4.3EG 4.3
2022-12-22
If a domain name contained a RTL character, it would cause the domain to be rendered to the right of the path. This could lead to user confusion and spoofing attacks. <br>*This bug only affects Firefox for Android. Other operating systems …
CVE-2021-42694HIGHCVSS 8.3EG 8.3
2021-11-01
An issue was discovered in the character definitions of the Unicode Specification through 14.0. The specification allows an adversary to produce source code identifiers such as function names using homoglyphs that render visually identical…
CVE-2025-0996MEDIUMCVSS 5.4EG 5.9
2025-02-15
Inappropriate implementation in Browser UI in Google Chrome on Android prior to 133.0.6943.98 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: High)
CVE-2025-27611HIGHCVSS 8.7EG 0.0
2025-04-30
base-x is a base encoder and decoder of any given alphabet using bitcoin style leading zero compression. Versions 4.0.0, 5.0.0, and all prior to 3.0.11, are vulnerable to attackers potentially deceiving users into sending funds to an unint…

Map vulnerabilities like CWE-1007 to your infrastructure

EchelonGraph correlates every CVE — across CWE-1007 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.

Start Free Scan →