CWE-294: CWE-294

Total CVEs

Critical

High

7.8

Avg CVSS

Yearly Trend

2026

2025

2024

2023

2022

Top Affected Vendors

1 Newforma 3

2 Microsoft 2

3 Dell 2

4 Veeam 2

5 D3dsecurity 2

6 Siemens 2

7 Perforce 1

8 Meross 1

9 Answer 1

10 Strapi 1

All CWE-294 CVEs (52)

CVE-2025-48012

4.8

CVE-2025-48012 is an authentication bypass vulnerability in Drupal's One Time Password module that allows attackers to replay captured authentication ...

May 21, 2025

CVE-2023-50786

4.1

This vulnerability in Dradis allows authorized authors to embed external HTTPS images that can trigger NTLM authentication requests from Windows domai...

Jul 5, 2025

← Previous Page 2 of 2

About CWE-294 (CWE-294)

Our database tracks 52 CVEs classified as CWE-294, with 11 rated critical and 29 rated high severity. The average CVSS score for CWE-294 vulnerabilities is 7.8.

External reference: View CWE-294 on MITRE CWE →

Monitor CWE-294 Vulnerabilities

Get alerted when new CWE-294 CVEs affect your infrastructure.

Start Monitoring Free