CWE-357
19 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-357page 1 of 1
- CVE-2019-13521HIGHCVSS 7.8EG 7.82020-01-27
A maliciously crafted program file opened by an unsuspecting user of Rockwell Automation Arena Simulation Software version 16.00.00 and earlier may result in the limited exposure of information related to the targeted workstation. Rockwell…
- CVE-2021-22645HIGHCVSS 7.8EG 7.82021-02-23
Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions prior to 10.1, Luxion KeyShot Network Rendering versions prior to 10.1, and Luxion KeyVR versions prior to 10.1 are vulnerable to an attack because the .bip documents di…
- CVE-2022-41904MEDIUMCVSS 6.4EG 6.42022-11-11
Element iOS is an iOS Matrix client provided by Element. It is based on MatrixSDK. Prior to version 1.9.7, events encrypted using Megolm for which trust could not be established did not get decorated accordingly (with warning shields). The…
- CVE-2024-21336LOWCVSS 2.5EG 2.52024-01-26
Microsoft Edge (Chromium-based) Spoofing Vulnerability
- CVE-2024-21387MEDIUMCVSS 5.3EG 5.32024-01-26
Microsoft Edge for Android Spoofing Vulnerability
- CVE-2024-26188MEDIUMCVSS 4.3EG 4.32024-02-23
Microsoft Edge (Chromium-based) Spoofing Vulnerability
- CVE-2024-29057MEDIUMCVSS 4.3EG 4.32024-03-22
Microsoft Edge (Chromium-based) Spoofing Vulnerability
- CVE-2024-30058MEDIUMCVSS 5.4EG 5.42024-06-13
Microsoft Edge (Chromium-based) Spoofing Vulnerability
- CVE-2024-43505HIGHCVSS 7.8EG 7.82024-10-08
Microsoft Office Visio Remote Code Execution Vulnerability
- CVE-2024-43580MEDIUMCVSS 5.4EG 5.42024-10-17
Microsoft Edge (Chromium-based) Spoofing Vulnerability
- CVE-2024-49054MEDIUMCVSS 4.3EG 4.32024-11-22
Microsoft Edge (Chromium-based) Spoofing Vulnerability
- CVE-2025-33054HIGHCVSS 8.1EG 8.12025-07-08
Insufficient UI warning of dangerous operations in Remote Desktop Client allows an unauthorized attacker to perform spoofing over a network.
- CVE-2025-47967MEDIUMCVSS 4.7EG 4.72025-09-16
Insufficient ui warning of dangerous operations in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network.
- CVE-2025-49582HIGHCVSS 8.0EG 8.02025-06-13
XWiki is a generic wiki platform. When editing content that contains "dangerous" macros like malicious script macros that were authored by a user with fewer rights, XWiki warns about the execution of these macros since XWiki 15.9RC1. These…
- CVE-2025-49583LOWCVSS 3.5EG 3.52025-06-13
XWiki is a generic wiki platform. When a user without script right creates a document with an `XWiki.Notifications.Code.NotificationEmailRendererClass` object, and later an admin edits and saves that document, the email templates in this o…
- CVE-2025-49585HIGHCVSS 8.0EG 8.02025-06-13
XWiki is a generic wiki platform. In versions before 15.10.16, 16.0.0-rc-1 through 16.4.6, and 16.5.0-rc-1 through 16.10.1, when an attacker without script or programming right creates an XClass definition in XWiki (requires edit right), a…
- CVE-2025-49587HIGHCVSS 8.0EG 8.02025-06-13
XWiki is an open-source wiki software platform. When a user without script right creates a document with an XWiki.Notifications.Code.NotificationDisplayerClass object, and later an admin edits and saves that document, the possibly maliciou…
- CVE-2026-26151HIGHCVSS 7.1EG 7.12026-04-14
Insufficient ui warning of dangerous operations in Windows Remote Desktop allows an unauthorized attacker to perform spoofing over a network.
- CVE-2026-47782LOWCVSS 3.3EG 3.32026-05-20
Android App "RoboForm Password Manager" provided by Siber Systems, Inc. handles Android intents without sufficient URL validation, user confirmation nor notification. If a URL to some malicious web page is given through an intent, RoboForm…
Map vulnerabilities like CWE-357 to your infrastructure
EchelonGraph correlates every CVE — across CWE-357 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →