CWE-233: CWE-233
Yearly Trend
Top Affected Vendors
All CWE-233 CVEs (9)
This vulnerability in Juniper Networks Junos OS J-Web interface allows authenticated attackers to manipulate client-side parameters, potentially bypas...
Apr 22, 2021This vulnerability in Google Chrome's updater allows a local attacker to escalate privileges by exploiting improper implementation. Attackers could ga...
Jun 7, 2024This vulnerability in Cisco IOx allows authenticated remote attackers to execute arbitrary commands as root on the host operating system by deploying ...
Feb 12, 2023This vulnerability in Eclipse ThreadX allows attackers to bypass memory protection mechanisms and perform arbitrary memory read/write operations when ...
Oct 15, 2025This vulnerability in Eclipse Glassfish allows attackers to redirect users to malicious websites via manipulated HTTP Host parameters when accessing t...
Sep 30, 2024CVE-2023-1419 is a script injection vulnerability in Debezium database connectors where improper parameter sanitization allows attackers to inject mal...
Nov 17, 2024This vulnerability in Eclipse ThreadX allows attackers to cause denial of service by providing pointers to unmapped memory regions. The system call va...
Oct 14, 2025Authenticated users of certain HIKSEMI NAS products can cause abnormal device behavior by sending crafted messages to an interface with insufficient i...
Jan 30, 2026This CVE describes a Cross-Site Scripting (XSS) vulnerability in TOTOLINK X2000R routers that allows remote attackers to inject malicious scripts via ...
May 14, 2024About CWE-233 (CWE-233)
Our database tracks 9 CVEs classified as CWE-233, with 0 rated critical and 4 rated high severity. The average CVSS score for CWE-233 vulnerabilities is 6.5.
External reference: View CWE-233 on MITRE CWE →
Monitor CWE-233 Vulnerabilities
Get alerted when new CWE-233 CVEs affect your infrastructure.
Start Monitoring Free