CWE-627
5 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-627page 1 of 1
- CVE-2023-31032HIGHCVSS 7.5EG 7.52024-01-12
NVIDIA DGX A100 SBIOS contains a vulnerability where a user may cause a dynamic variable evaluation by local access. A successful exploit of this vulnerability may lead to denial of service.
- CVE-2024-8953CRITICALCVSS 9.8EG 9.82025-03-20
In composiohq/composio version 0.4.3, the mathematical_calculator endpoint uses the unsafe eval() function to perform mathematical operations. This can lead to arbitrary code execution if untrusted input is passed to the eval() function.
- CVE-2026-2415MEDIUMCVSS 5.9EG 5.92026-02-16
Emails sent by pretix can utilize placeholders that will be filled with customer data. For example, when {name} is used in an email template, it will be replaced with the buyer's name for the final email. This mechanism contained two se…
- CVE-2026-2451MEDIUMCVSS 6.5EG 6.52026-02-16
Emails sent by pretix can utilize placeholders that will be filled with customer data. For example, when {name} is used in an email template, it will be replaced with the buyer's name for the final email. This mechanism contained a secu…
- CVE-2026-2452MEDIUMCVSS 6.5EG 6.52026-02-16
Emails sent by pretix can utilize placeholders that will be filled with customer data. For example, when {name} is used in an email template, it will be replaced with the buyer's name for the final email. This mechanism contained a secu…
Map vulnerabilities like CWE-627 to your infrastructure
EchelonGraph correlates every CVE — across CWE-627 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →