CWE-477— Use of Obsolete Function
15 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-477page 1 of 1
- CVE-2018-17890CRITICALCVSS 9.8EG 9.82018-10-12
NUUO CMS all versions 3.1 and prior, The application uses insecure and outdated software components for functionality, which could allow arbitrary code execution.
- CVE-2019-10968MEDIUMCVSS 4.4EG 4.42019-07-24
Philips Holter 2010 Plus, all versions. A vulnerability has been identified that may allow system options that were not purchased to be enabled.
- CVE-2019-10988LOWCVSS 3.4EG 3.42019-09-04
In Philips HDI 4000 Ultrasound Systems, all versions running on old, unsupported operating systems such as Windows 2000, the HDI 4000 Ultrasound System is built on an old operating system that is no longer supported. Thus, any unmitigated …
- CVE-2019-18251HIGHCVSS 8.8EG 8.82019-11-26
In Omron CX-Supervisor, Versions 3.5 (12) and prior, Omron CX-Supervisor ships with Teamviewer Version 5.0.8703 QS. This version of Teamviewer is vulnerable to an obsolete function vulnerability requiring user interaction to exploit.
- CVE-2020-6978HIGHCVSS 7.2EG 7.22020-03-24
In Honeywell WIN-PAK 4.7.2, Web and prior versions, the affected product is vulnerable due to the usage of old jQuery libraries.
- CVE-2022-1384MEDIUMCVSS 4.7EG 4.72022-04-19
Mattermost version 6.4.x and earlier fails to properly check the plugin version when a plugin is installed from the Marketplace, which allows an authenticated and an authorized user to install and exploit an old plugin version from the Mar…
- CVE-2023-23451CRITICALCVSS 9.8EG 9.82023-04-19
The Flexi Classic and Flexi Soft Gateways SICK UE410-EN3 FLEXI ETHERNET GATEW. with serial number <=2311xxxx all Firmware versions, SICK UE410-EN1 FLEXI ETHERNET GATEW. with serial number <=2311xxxx all Firmware versions, SICK UE410-EN3S04…
- CVE-2023-28829LOWCVSS 3.9EG 3.92023-06-13
A vulnerability has been identified in SIMATIC NET PC Software V14 (All versions), SIMATIC NET PC Software V15 (All versions), SIMATIC PCS 7 V8.2 (All versions), SIMATIC PCS 7 V9.0 (All versions), SIMATIC PCS 7 V9.1 (All versions), SIMATIC…
- CVE-2025-49212CRITICALCVSS 9.8EG 9.82025-06-17
An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could lead to a pre-authentication remote code execution on affected installations. Note that this vulnerability is similar to CVE-2025-49220 but is …
- CVE-2025-49213CRITICALCVSS 9.8EG 9.82025-06-17
An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could lead to a pre-authentication remote code execution on affected installations. Note that this vulnerability is similar to CVE-2025-49212 but is …
- CVE-2025-49214HIGHCVSS 8.8EG 8.82025-06-17
An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could lead to a post-authentication remote code execution on affected installations. Please note: an attacker must first obtain the ability to exe…
- CVE-2025-49216CRITICALCVSS 9.8EG 9.82025-06-17
An authentication bypass vulnerability in the Trend Micro Endpoint Encryption PolicyServer could allow an attacker to access key methods as an admin user and modify product configurations on affected installations.
- CVE-2025-49217CRITICALCVSS 9.8EG 9.82025-06-17
An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could lead to a pre-authentication remote code execution on affected installations. Note that this vulnerability is similar to CVE-2025-49213 but is …
- CVE-2025-49219CRITICALCVSS 9.8EG 9.82025-06-17
An insecure deserialization operation in Trend Micro Apex Central below versions 8.0.7007 could lead to a pre-authentication remote code execution on affected installations. Note that this vulnerability is similar to CVE-2025-49220 but is …
- CVE-2025-49220CRITICALCVSS 9.8EG 9.82025-06-17
An insecure deserialization operation in Trend Micro Apex Central below version 8.0.7007 could lead to a pre-authentication remote code execution on affected installations. Note that this vulnerability is similar to CVE-2025-49219 but is i…
Map vulnerabilities like CWE-477 to your infrastructure
EchelonGraph correlates every CVE — across CWE-477 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →