CWE-146: CWE-146

Total CVEs

Critical

High

7.4

Avg CVSS

Yearly Trend

2026

2025

2024

2023

Top Affected Vendors

1 Cisco 4

2 Dell 1

3 Apache 1

All CWE-146 CVEs (7)

CVE-2024-20329

9.9

This critical vulnerability in Cisco ASA Software allows authenticated remote attackers to execute arbitrary operating system commands with root privi...

Oct 23, 2024

CVE-2025-53192

8.8

This vulnerability in Apache Commons OGNL allows attackers to bypass security restrictions and potentially execute arbitrary code by exploiting incomp...

Aug 18, 2025

CVE-2023-20035

7.8

This vulnerability allows authenticated local attackers on Cisco IOS XE SD-WAN devices to execute arbitrary commands with root privileges due to insuf...

Mar 23, 2023

CVE-2023-20117

7.2

Authenticated remote attackers can execute arbitrary commands as root on Cisco RV320/RV325 routers via web interface input validation flaws. This affe...

Apr 5, 2023

CVE-2023-20128

7.2

Authenticated remote attackers can execute arbitrary commands as root on Cisco RV320/RV325 routers via the web management interface. This affects admi...

Apr 5, 2023

CVE-2025-20237

6.0

This vulnerability allows authenticated local attackers with administrative credentials to execute arbitrary commands with root privileges on Cisco AS...

Aug 14, 2025

CVE-2026-22266

4.7

Dell PowerProtect Data Manager versions before 19.22 have a REST API vulnerability where improper verification of communication channels allows high-p...

Feb 19, 2026

About CWE-146 (CWE-146)

Our database tracks 7 CVEs classified as CWE-146, with 1 rated critical and 4 rated high severity. The average CVSS score for CWE-146 vulnerabilities is 7.4.

External reference: View CWE-146 on MITRE CWE →

Monitor CWE-146 Vulnerabilities

Get alerted when new CWE-146 CVEs affect your infrastructure.

Start Monitoring Free