CWE-230: CWE-230

Total CVEs

Critical

High

8.0

Avg CVSS

Yearly Trend

2025

2024

Top Affected Vendors

1 Wireshark 2

2 Google 1

3 Ibm 1

4 Redhat 1

5 Metagauss 1

6 Apppresser 1

All CWE-230 CVEs (7)

CVE-2024-11024

9.8

This vulnerability allows unauthenticated attackers to reset any user's password in WordPress sites using the AppPresser plugin, leading to account ta...

Nov 26, 2024

CVE-2024-10508

9.8

This vulnerability allows unauthenticated attackers to reset passwords of any WordPress user, including administrators, by exploiting improper token v...

Nov 9, 2024

CVE-2024-9781

7.8

A vulnerability in Wireshark's AppleTalk and RELOAD Framing dissectors causes a crash when processing malicious packets or capture files, leading to d...

Oct 10, 2024

CVE-2024-0048

7.8

This vulnerability in Android's AccountManagerService allows local attackers to retain foreground service privileges improperly, leading to privilege ...

Mar 11, 2024

CVE-2024-0208

7.8

This vulnerability in Wireshark's GVCP dissector allows remote attackers to cause a denial of service (crash) by injecting specially crafted packets o...

Jan 3, 2024

CVE-2025-23225

6.5

This vulnerability in IBM MQ allows authenticated users to send specially crafted messages with invalid headers to queues, causing the queue manager t...

Feb 28, 2025

CVE-2024-6237

6.5

CVE-2024-6237 is a denial-of-service vulnerability in 389 Directory Server where an unauthenticated attacker can crash the server by sending a specifi...

Jul 9, 2024

About CWE-230 (CWE-230)

Our database tracks 7 CVEs classified as CWE-230, with 2 rated critical and 3 rated high severity. The average CVSS score for CWE-230 vulnerabilities is 8.0.

External reference: View CWE-230 on MITRE CWE →

Monitor CWE-230 Vulnerabilities

Get alerted when new CWE-230 CVEs affect your infrastructure.

Start Monitoring Free