CWE-356: CWE-356
Yearly Trend
Top Affected Vendors
All CWE-356 CVEs (17)
This vulnerability allows remote attackers to execute arbitrary code on systems running NI Vision Builder AI by tricking users into opening malicious ...
Mar 18, 2025This vulnerability in Thunderbird allows attackers to execute JavaScript in the file:/// context by crafting a malicious email attachment. When Thunde...
May 14, 2025Epiphany browser's external URL handler feature can be abused to exploit vulnerabilities in external applications, making them appear remotely exploit...
Jan 23, 2026This vulnerability allows remote attackers to execute arbitrary code on Xmind installations by tricking users into opening malicious attachments. The ...
Feb 20, 2026This vulnerability in Soda PDF Desktop allows remote attackers to execute arbitrary code by tricking users into opening malicious XLS files. The softw...
Dec 23, 2025This vulnerability in Soda PDF Desktop allows remote attackers to execute arbitrary code by tricking users into opening malicious Word files. The soft...
Dec 23, 2025This vulnerability in Soda PDF Desktop allows remote attackers to execute arbitrary code by tricking users into opening malicious files or visiting ma...
Dec 23, 2025This vulnerability allows remote attackers to execute arbitrary code on systems running vulnerable versions of pdfforge PDF Architect. Attackers can e...
Dec 23, 2025This vulnerability allows remote attackers to execute arbitrary code on systems running vulnerable versions of PDFsam Enhanced. Attackers can exploit ...
Dec 23, 2025This vulnerability allows remote attackers to execute arbitrary code on Inductive Automation Ignition installations by tricking users into opening mal...
Jul 25, 2022This vulnerability in pdfforge PDF Architect allows remote attackers to execute arbitrary code by tricking users into opening malicious DOC files. The...
Dec 23, 2025This vulnerability allows remote attackers to execute arbitrary code on systems running vulnerable versions of pdfforge PDF Architect. Attackers can e...
Dec 23, 2025This vulnerability in PDFsam Enhanced allows remote attackers to execute arbitrary code by tricking users into opening malicious DOC files. The softwa...
Dec 23, 2025PDFsam Enhanced has a remote code execution vulnerability in its XLS file processing. Attackers can execute arbitrary code by tricking users into open...
Dec 23, 2025This vulnerability allows attackers to bypass Windows' 'Mark of the Web' security warnings by tricking users into opening malicious symbolic links in ...
Apr 3, 2025This vulnerability in LibreOffice allows attackers to embed malicious scripts in documents that execute automatically when users click on graphics, by...
May 14, 2024This vulnerability in JetBrains Junie allows attackers to access sensitive information through the search_project function. It affects users running v...
Aug 28, 2025About CWE-356 (CWE-356)
Our database tracks 17 CVEs classified as CWE-356, with 0 rated critical and 14 rated high severity. The average CVSS score for CWE-356 vulnerabilities is 7.4.
External reference: View CWE-356 on MITRE CWE →
Monitor CWE-356 Vulnerabilities
Get alerted when new CWE-356 CVEs affect your infrastructure.
Start Monitoring Free