Login Sign Up

CWE-548: CWE-548

15
Total CVEs
0
Critical
6
High
5.8
Avg CVSS

Yearly Trend

2025
13
2024
1
2022
1

Top Affected Vendors

1 Ibm 5
2 Elspec Ltd 1
3 Code Projects 1
4 Endress 1
5 Janobe 1
6 Oretnom23 1
7 Openbmcs 1
8 Sound4 1
9 Moodle 1
10 Grandstream 1

All CWE-548 CVEs (15)

CVE-2025-28170
7.6

Grandstream GXP1628 IP phones with firmware version 1.0.4.130 or earlier have directory listing enabled by default, allowing attackers to browse sensi...

Jul 29, 2025
CVE-2022-50788
7.5

CVE-2022-50788 is an information disclosure vulnerability in SOUND4 IMPACT/FIRST/PULSE/Eco systems that allows unauthenticated attackers to access sen...

Dec 30, 2025
CVE-2021-47718
7.5

OpenBMCS 2.4 contains an unauthenticated directory listing vulnerability that allows attackers to browse sensitive directories and access configuratio...

Dec 9, 2025
CVE-2024-22082
7.5

Unauthenticated directory listing vulnerability in Elspec G5 digital fault recorder web interface allows attackers to enumerate system directories wit...

Mar 20, 2024
CVE-2021-27505
7.5

CVE-2021-27505 is an information disclosure vulnerability in mySCADA myPRO software where unauthorized users can access sensitive directory listings. ...

May 13, 2022
CVE-2025-2038
7.3

This critical vulnerability in Blood Bank Management System 1.0 allows remote attackers to access directory listings of the /upload/ folder, potential...

Mar 6, 2025
CVE-2025-13200
5.3

This vulnerability in SourceCodester Farm Management System 1.0 allows attackers to remotely view directory listings, potentially exposing sensitive f...

Nov 15, 2025
CVE-2025-62396
5.3

An error-handling vulnerability in Moodle's router component (r.php) can expose internal directory listings when specific HTTP headers are misconfigur...

Oct 23, 2025
CVE-2025-27906
5.3

IBM Content Navigator versions 3.0.11 through 3.2.0 expose directory listings when accessing specific application URLs, allowing attackers to view fil...

Oct 14, 2025
CVE-2025-27452
5.3

This vulnerability affects Apache httpd webservers running the MEAC300-FNADE4 web application with unnecessary modules enabled. It allows directory li...

Jul 3, 2025
CVE-2025-2651
5.3

This vulnerability in SourceCodester Online Eyewear Shop 1.0 allows attackers to view directory listings in the /oews/admin/ path and subdirectories r...

Mar 23, 2025
CVE-2025-2827
4.3

This vulnerability in IBM Sterling File Gateway allows authenticated users to access sensitive installation directory information. Attackers could use...

Jul 8, 2025
CVE-2025-1138
4.3

IBM InfoSphere Information Server 11.7 contains an information disclosure vulnerability where authenticated users can access directory listings that r...

May 15, 2025
CVE-2024-35113
4.3

IBM Control Center versions 6.2.1 and 6.3.1 contain an information disclosure vulnerability where authenticated users can access sensitive information...

Jan 25, 2025
CVE-2024-56464
2.7

IBM QRadar SIEM versions 7.5 through 7.5.0 UP14 IF01 have an information disclosure vulnerability that exposes directory information. This could allow...

Dec 9, 2025

About CWE-548 (CWE-548)

Our database tracks 15 CVEs classified as CWE-548, with 0 rated critical and 6 rated high severity. The average CVSS score for CWE-548 vulnerabilities is 5.8.

External reference: View CWE-548 on MITRE CWE →

Monitor CWE-548 Vulnerabilities

Get alerted when new CWE-548 CVEs affect your infrastructure.

Start Monitoring Free