CWE-1289: CWE-1289

Total CVEs

Critical

High

6.5

Avg CVSS

Yearly Trend

2026

2025

2024

Top Affected Vendors

1 Gitlab 1

2 Netapp 1

3 Servo 1

4 Angularjs 1

5 1password 1

All CWE-1289 CVEs (4)

CVE-2024-12224

8.8

This vulnerability in the idna crate from Servo rust-url allows attackers to create punycode hostnames that different system components interpret inco...

May 30, 2025

CVE-2024-42219

7.8

This vulnerability in 1Password 8 for macOS allows local attackers to exfiltrate vault items due to insufficient XPC inter-process communication valid...

Aug 6, 2024

CVE-2024-8372

4.8

This AngularJS vulnerability allows attackers to bypass image source restrictions via improper sanitization of the 'srcset' attribute, enabling conten...

Sep 9, 2024

CVE-2026-1094

4.6

This vulnerability allows authenticated developers to hide specially crafted file changes from the GitLab WebUI, potentially concealing malicious modi...

Feb 11, 2026

About CWE-1289 (CWE-1289)

Our database tracks 4 CVEs classified as CWE-1289, with 0 rated critical and 2 rated high severity. The average CVSS score for CWE-1289 vulnerabilities is 6.5.

External reference: View CWE-1289 on MITRE CWE →

Monitor CWE-1289 Vulnerabilities

Get alerted when new CWE-1289 CVEs affect your infrastructure.

Start Monitoring Free