CWE-69

2 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →

CVEs classified under CWE-69page 1 of 1

CVE-2024-43033HIGHCVSS 8.8EG 8.8
2024-08-22
JPress through 5.1.1 on Windows has an arbitrary file upload vulnerability that could cause arbitrary code execution via ::$DATA to AttachmentController, such as a .jsp::$DATA file to io.jpress.web.commons.controller.AttachmentController#u…
CVE-2025-3941MEDIUMCVSS 5.4EG 5.4
2025-05-22
Improper Handling of Windows ::DATA Alternate Data Stream vulnerability in Tridium Niagara Framework on Windows, Tridium Niagara Enterprise Security on Windows allows Input Data Manipulation. This issue affects Niagara Framework: before 4.…

Map vulnerabilities like CWE-69 to your infrastructure

EchelonGraph correlates every CVE — across CWE-69 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.

Start Free Scan →