CWE-390: CWE-390

Total CVEs

Critical

High

7.2

Avg CVSS

Yearly Trend

2025

2021

Top Affected Vendors

1 Redhat 2

2 Debian 2

3 Gerbv Project 1

4 Fedoraproject 1

5 Dell 1

6 Qualcomm 1

7 Netapp 1

8 Nixos 1

9 Suse 1

10 Samba 1

All CWE-390 CVEs (6)

CVE-2021-40391

9.8

This CVE describes a critical out-of-bounds write vulnerability in Gerbv, a Gerber file viewer used in PCB design. Attackers can execute arbitrary cod...

Nov 19, 2021

CVE-2025-46367

7.8

Dell Alienware Command Center versions before 6.10.15.0 contain a vulnerability where error conditions are detected but not properly handled. A local ...

Nov 13, 2025

CVE-2025-26465

EPSS 64.4% 6.8

This OpenSSH vulnerability allows machine-in-the-middle attacks when VerifyHostKeyDNS is enabled. Attackers can impersonate legitimate servers by expl...

Feb 18, 2025

CVE-2025-27039

6.6

This CVE describes a memory corruption vulnerability in Qualcomm's DMM/WARPNCC driver when processing specific IOCTL calls. Successful exploitation co...

Oct 9, 2025

CVE-2025-25204

6.3

A bug in GitHub's CLI tool `gh` causes the `gh attestation verify` command to incorrectly return a zero exit status when no attestations are present, ...

Feb 14, 2025

CVE-2024-12086

6.1

This rsync vulnerability allows a malicious server to read arbitrary files from a client's machine during file transfer operations. Attackers can reco...

Jan 14, 2025

About CWE-390 (CWE-390)

Our database tracks 6 CVEs classified as CWE-390, with 1 rated critical and 1 rated high severity. The average CVSS score for CWE-390 vulnerabilities is 7.2.

External reference: View CWE-390 on MITRE CWE →

Monitor CWE-390 Vulnerabilities

Get alerted when new CWE-390 CVEs affect your infrastructure.

Start Monitoring Free