CWE-253: CWE-253
Yearly Trend
Top Affected Vendors
All CWE-253 CVEs (8)
This critical authentication bypass vulnerability in OpenText COBOL products allows attackers to log in with any username regardless of password valid...
Sep 12, 2023Squid caching proxy versions before 6.5 contain an incorrect check of function return value bug in helper process management that allows denial of ser...
Dec 4, 2023This vulnerability allows attackers to cause denial-of-service or memory corruption by exhausting the ThreadX RTOS counter pool. When the pool is depl...
Jan 27, 2026This vulnerability in Asterisk allows remote attackers to cause a denial of service (crash) by sending specially crafted SIP requests with malformed A...
Aug 28, 2025This vulnerability in Windows Hyper-V allows an authenticated attacker on a guest virtual machine to cause a denial of service condition on the host s...
Oct 8, 2024Envoy proxy crashes when processing requests with host/authority headers longer than 255 characters while using upstream TLS clusters with auto_sni en...
Apr 18, 2024Routinator versions 0.14.0 through 0.14.2 contain a vulnerability where the software will crash when an RTR (RPKI-to-Router) connection is reset by th...
Feb 26, 2024A bug in Apache HTTP Server 2.4.64 causes all RewriteCond expression tests to evaluate as true, potentially allowing attackers to bypass URL rewrite r...
Jul 23, 2025About CWE-253 (CWE-253)
Our database tracks 8 CVEs classified as CWE-253, with 1 rated critical and 6 rated high severity. The average CVSS score for CWE-253 vulnerabilities is 7.8.
External reference: View CWE-253 on MITRE CWE →
Monitor CWE-253 Vulnerabilities
Get alerted when new CWE-253 CVEs affect your infrastructure.
Start Monitoring Free