CWE-693— Protection Mechanism Failure
484 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-693page 7 of 10
- CVE-2025-22437HIGHCVSS 7.8EG 7.82025-09-02
In setMediaButtonReceiver of multiple files, there is a possible way to launch arbitrary activities from background due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges …
- CVE-2025-24061HIGHCVSS 7.8EG 7.82025-03-11
Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to bypass a security feature locally.
- CVE-2025-24523LOWCVSS 3.5EG 3.52025-08-12
Protection mechanism failure for some Edge Orchestrator software before version 24.11.1 for Intel(R) Tiber(TM) Edge Platform may allow an authenticated user to potentially enable denial of service via adjacent access.
- CVE-2025-24834MEDIUMCVSS 6.5EG 6.52025-11-11
Protection mechanism failure for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. Unprivileged software adversary with an unauthenticated user combined with…
- CVE-2025-24835MEDIUMCVSS 6.5EG 6.52025-08-12
Protection mechanism failure in the Intel(R) Graphics Driver for the Intel(R) Arc(TM) B-Series graphics before version 32.0.101.6737 may allow an authenticated user to potentially enable denial of service via local access.
- CVE-2025-24848MEDIUMCVSS 6.3EG 6.32025-11-11
Protection mechanism failure for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a hi…
- CVE-2025-26402MEDIUMCVSS 6.5EG 6.52025-11-11
Protection mechanism failure for some Intel(R) NPU Drivers within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial o…
- CVE-2025-26431HIGHCVSS 7.8EG 7.82025-09-04
In setupAccessibilityServices of AccessibilityFragment.java, there is a possible way to hide an enabled accessibility service due to a logic error in the code. This could lead to local escalation of privilege with no additional execution p…
- CVE-2025-26439HIGHCVSS 7.8EG 7.82025-09-04
In getComponentName of AccessibilitySettingsUtils.java, there is a possible way to for a malicious Talkback service to be enabled instead of the system component due to a logic error in the code. This could lead to local escalation of priv…
- CVE-2025-26443HIGHCVSS 7.3EG 7.32025-09-04
In parseHtml of HtmlToSpannedParser.java, there is a possible way to install apps without allowing installation from unknown sources due to a logic error in the code. This could lead to local escalation of privilege with no additional exec…
- CVE-2025-26444HIGHCVSS 7.8EG 7.82025-09-04
In onHandleForceStop of VoiceInteractionManagerService.java, there is a bug that could cause the system to incorrectly revert to the default assistant application when a user-selected assistant is forcibly stopped due to a logic error in t…
- CVE-2025-26458HIGHCVSS 7.8EG 7.82025-09-04
In multiple functions of LocationProviderManager.java, there is a possible background activity launch due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User i…
- CVE-2025-26464HIGHCVSS 7.8EG 7.82025-09-04
In executeAppFunction of AppSearchManagerService.java, there is a possible background activity launch due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User i…
- CVE-2025-26637MEDIUMCVSS 6.8EG 6.82025-04-08
Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
- CVE-2025-27472MEDIUMCVSS 5.4EG 5.42025-04-08
Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to bypass a security feature over a network.
- CVE-2025-27665CRITICALCVSS 9.8EG 9.82025-03-05
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows Insufficient Antivirus Protection and thus drivers can have known malicious code OVE-20230524-0009.
- CVE-2025-27700HIGHCVSS 8.4EG 8.42025-05-27
There is a possible bypass of carrier restrictions due to an unusual root cause. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- CVE-2025-29864MEDIUMCVSS 6.2EG 0.02025-12-03
Protection Mechanism Failure vulnerability in ESTsoft ALZip on Windows allows SmartScreen bypass.This issue affects ALZip: from 12.01 before 12.29.
- CVE-2025-3114CRITICALCVSS 9.4EG 0.02025-04-09
Code Execution via Malicious Files: Attackers can create specially crafted files with embedded code that may execute without adequate security validation, potentially leading to system compromise. Sandbox Bypass Vulnerability: A flaw in…
- CVE-2025-31189HIGHCVSS 8.2EG 8.22025-05-29
A file quarantine bypass was addressed with additional checks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to break out of its sandbox.
- CVE-2025-31224HIGHCVSS 7.8EG 7.82025-05-12
A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.5, macOS Sonoma 14.7.6, macOS Ventura 13.7.6. An app may be able to bypass certain Privacy preferences.
- CVE-2025-31244HIGHCVSS 8.8EG 8.82025-05-12
A file quarantine bypass was addressed with additional checks. This issue is fixed in macOS Sequoia 15.5. An app may be able to break out of its sandbox.
- CVE-2025-32331HIGHCVSS 7.8EG 7.82025-09-04
In showDismissibleKeyguard of KeyguardService.java, there is a possible way to bypass app pinning due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User inter…
- CVE-2025-32725HIGHCVSS 7.5EG 7.52025-06-10
Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network.
- CVE-2025-33050HIGHCVSS 7.5EG 7.52025-06-10
Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network.
- CVE-2025-34413HIGHCVSS 7.1EG 0.02025-12-09
Legality WHISTLEBLOWING by DigitalPA contains a protection mechanism failure in which critical HTTP security headers are not emitted by default. Affected deployments omit Content-Security-Policy, Referrer-Policy, Permissions-Policy, Cross-…
- CVE-2025-35968MEDIUMCVSS 6.4EG 6.42025-11-11
Protection mechanism failure in the UEFI firmware for the Slim Bootloader within firmware may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalat…
- CVE-2025-36898HIGHCVSS 7.8EG 7.82025-09-04
There is a possible escalation of privilege due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- CVE-2025-36905HIGHCVSS 7.8EG 7.82025-09-04
In gxp_mapping_create of gxp_mapping.c, there is a possible privilege escalation due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not nee…
- CVE-2025-36938MEDIUMCVSS 6.8EG 5.12025-12-11
In U-Boot of append_uint32_le(), there is a possible fault injection due to a logic error in the code. This could lead to physical escalation of privilege with no additional execution privileges needed. User interaction is not needed for e…
- CVE-2025-37124HIGHCVSS 8.6EG 8.62025-09-16
A vulnerability in the HPE Aruba Networking SD-WAN Gateways could allow an unauthenticated remote attacker to bypass firewall protections. Successful exploitation could allow an attacker to route potentially harmful traffic through the int…
- CVE-2025-3770HIGHCVSS 7.0EG 7.02025-08-07
EDK2 contains a vulnerability in BIOS where an attacker may cause “Protection Mechanism Failure” by local access. Successful exploitation of this vulnerability will lead to arbitrary code execution and impact Confidentiality, Integrity…
- CVE-2025-40536HIGHCVSS 8.1EG 9.0⚠ KEV2026-01-28
SolarWinds Web Help Desk was found to be susceptible to a security control bypass vulnerability that if exploited, could allow an unauthenticated attacker to gain access to certain restricted functionality.
- CVE-2025-41224HIGHCVSS 8.8EG 8.82025-07-08
A vulnerability has been identified in RUGGEDCOM RMC8388 V5.X (All versions < V5.10.0), RUGGEDCOM RMC8388NC V5.X (All versions < V5.10.0), RUGGEDCOM RS416NCv2 V5.X (All versions < V5.10.0), RUGGEDCOM RS416PNCv2 V5.X (All versions < V5.10.0…
- CVE-2025-41232CRITICALCVSS 9.1EG 9.12025-05-21
Spring Security Aspects may not correctly locate method security annotations on private methods. This can cause an authorization bypass. Your application may be affected by this if the following are true: * You are using @EnableMethod…
- CVE-2025-43261CRITICALCVSS 9.8EG 9.82025-07-30
A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to break out of its sandbox.
- CVE-2025-43273CRITICALCVSS 9.1EG 9.12025-07-30
A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.8. A sandboxed process may be able to circumvent sandbox restrictions.
- CVE-2025-43296MEDIUMCVSS 5.5EG 5.52025-10-09
A logic issue was addressed with improved validation. This issue is fixed in macOS Tahoe 26. An app may bypass Gatekeeper checks.
- CVE-2025-43330HIGHCVSS 8.2EG 8.22025-09-15
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.7, macOS Tahoe 26. An app may be able to break out of its sandbox.
- CVE-2025-43413HIGHCVSS 7.5EG 7.52025-11-04
An access issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 26.1 and iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1. A sandboxed app may b…
- CVE-2025-43728CRITICALCVSS 9.6EG 9.62025-08-27
Dell ThinOS 10, versions prior to 2508_10.0127, contain a Protection Mechanism Failure vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Protection mechanism bypass.
- CVE-2025-46281HIGHCVSS 8.8EG 8.82025-12-17
A logic issue was addressed with improved checks. This issue is fixed in macOS Tahoe 26.2. An app may be able to break out of its sandbox.
- CVE-2025-46290HIGHCVSS 7.5EG 7.52026-02-11
A logic issue was addressed with improved checks. This issue is fixed in iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Sequoia 15.7.4, macOS Sonoma 14.8.4, macOS Tahoe 26.2, visionOS 26.2, watchOS 26.2. A remote attacker ma…
- CVE-2025-46291HIGHCVSS 7.8EG 7.82025-12-17
A logic issue was addressed with improved validation. This issue is fixed in macOS Tahoe 26.2. An app may bypass Gatekeeper checks.
- CVE-2025-46358HIGHCVSS 7.7EG 7.72025-07-11
Emerson ValveLink products do not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.
- CVE-2025-46553MEDIUMCVSS 6.1EG 6.12025-05-05
@misskey-dev/summaly is a tool for getting a summary of a web page. Starting in version 3.0.1 and prior to version 5.2.1, a logic error in the main `summaly` function causes the `allowRedirects` option to never be passed to any plugins, an…
- CVE-2025-47159HIGHCVSS 7.8EG 7.82025-07-08
Protection mechanism failure in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to elevate privileges locally.
- CVE-2025-47160MEDIUMCVSS 5.4EG 5.42025-06-10
Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.
- CVE-2025-47984HIGHCVSS 7.5EG 7.52025-07-08
Protection mechanism failure in Windows GDI allows an unauthorized attacker to disclose information over a network.
- CVE-2025-48003MEDIUMCVSS 6.8EG 6.82025-07-08
Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
Map vulnerabilities like CWE-693 to your infrastructure
EchelonGraph correlates every CVE — across CWE-693 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →