CWE-31: CWE-31

Total CVEs

Critical

High

8.5

Avg CVSS

Yearly Trend

2024

Top Affected Vendors

1 Fedoraproject 1

2 Ivanti 1

3 Pgadmin 1

4 Dzzoffice 1

5 Zkteco 1

All CWE-31 CVEs (5)

CVE-2024-2044

9.9

pgAdmin versions up to 8.3 contain a path traversal vulnerability in session handling that allows unsafe deserialization of pickle objects, leading to...

Mar 7, 2024

CVE-2024-41376

8.8

CVE-2024-41376 is a directory traversal vulnerability in dzzoffice 2.02.1 that allows attackers to access arbitrary files on the server via the user/s...

Aug 5, 2024

CVE-2024-24998

8.8

This path traversal vulnerability in Ivanti Avalanche allows authenticated remote attackers to execute arbitrary commands with SYSTEM privileges. It a...

Apr 19, 2024

CVE-2024-35431

7.5

ZKTeco ZKBio CVSecurity versions up to 6.4.1 are vulnerable to directory traversal via the photoBase64 parameter, allowing unauthenticated attackers t...

May 30, 2024

CVE-2019-6268

7.5

CVE-2019-6268 is a path traversal vulnerability in RAD SecFlow-2 devices that allows attackers to access sensitive files like /etc/shadow by using URI...

Mar 8, 2024

About CWE-31 (CWE-31)

Our database tracks 5 CVEs classified as CWE-31, with 1 rated critical and 4 rated high severity. The average CVSS score for CWE-31 vulnerabilities is 8.5.

External reference: View CWE-31 on MITRE CWE →

Monitor CWE-31 Vulnerabilities

Get alerted when new CWE-31 CVEs affect your infrastructure.

Start Monitoring Free