CWE-506: CWE-506
Yearly Trend
Top Affected Vendors
All CWE-506 CVEs (8)
This CVE describes a supply chain compromise where unauthorized modifications were introduced into certain ASUS Live Update client versions. The modif...
Dec 17, 2025This vulnerability allows remote attackers to inject and execute malicious code on Unitronics Vision1210 PLCs by storing base64-encoded payloads in de...
Jul 13, 2023CVE-2025-30154 is a supply chain attack where the reviewdog/action-setup GitHub Action was compromised with malicious code that exfiltrates exposed se...
Mar 19, 2025CVE-2025-30066 is a supply chain attack where malicious commits were injected into the tj-actions/changed-files GitHub Action, allowing attackers to e...
Mar 15, 2025CVE-2024-4978 is a supply chain attack where Justice AV Solutions Viewer Setup 8.3.7.250-1 contains a malicious binary signed with an unexpected authe...
May 23, 2024This CVE describes a supply chain compromise where malicious versions of eslint-config-prettier contain embedded malware. Installing affected package ...
Jul 19, 2025TensorFlow v2.18.0 has a bug where Embedding layers produce random outputs during compilation instead of expected results, causing ML models to genera...
Sep 25, 2025The Amazon Q Developer VS Code extension v1.84.0 contains injected code with a syntax error that prevents it from calling the Q Developer CLI. This is...
Jul 30, 2025About CWE-506 (CWE-506)
Our database tracks 8 CVEs classified as CWE-506, with 2 rated critical and 4 rated high severity. The average CVSS score for CWE-506 vulnerabilities is 7.8.
External reference: View CWE-506 on MITRE CWE →
Monitor CWE-506 Vulnerabilities
Get alerted when new CWE-506 CVEs affect your infrastructure.
Start Monitoring Free