CWE-453: CWE-453

Total CVEs

Critical

High

8.5

Avg CVSS

Yearly Trend

2025

2024

2022

Top Affected Vendors

1 Google 1

2 Microsoft 1

3 Donetick 1

4 Filestash 1

5 Skype 1

6 Ge 1

All CWE-453 CVEs (6)

CVE-2021-27426

9.8

GE UR IED firmware versions prior to 8.1x with 'Basic' security variant have a factory mode that cannot be disabled, allowing unauthorized access. Thi...

Mar 23, 2022

CVE-2025-47945

9.1

CVE-2025-47945 is a critical authentication bypass vulnerability in Donetick task management software. It allows attackers to forge valid JWT tokens d...

May 17, 2025

CVE-2024-21411

8.8

CVE-2024-21411 is a remote code execution vulnerability in Skype for Consumer that allows attackers to execute arbitrary code on affected systems. Att...

Mar 12, 2024

CVE-2024-49120

8.1

This vulnerability allows remote attackers to execute arbitrary code on Windows systems with Remote Desktop Services enabled. Attackers can exploit th...

Dec 12, 2024

CVE-2025-48563

7.8

This Android vulnerability allows local privilege escalation without user interaction by exploiting an insecure default value in RemoteFillService. It...

Sep 4, 2025

CVE-2024-41255

7.5

This vulnerability in filestash v0.4 disables TLS certificate verification for FTPS connections, allowing man-in-the-middle attackers to intercept and...

Jul 31, 2024

About CWE-453 (CWE-453)

Our database tracks 6 CVEs classified as CWE-453, with 2 rated critical and 4 rated high severity. The average CVSS score for CWE-453 vulnerabilities is 8.5.

External reference: View CWE-453 on MITRE CWE →

Monitor CWE-453 Vulnerabilities

Get alerted when new CWE-453 CVEs affect your infrastructure.

Start Monitoring Free