CWE-552: CWE-552

103

Total CVEs

Critical

High

7.6

Avg CVSS

In CISA KEV

Yearly Trend

2026

2025

2024

2023

2022

Top Affected Vendors

1 Apache 4

2 Redhat 3

3 Abb 2

4 Dell 2

5 Ibm 2

6 Openstack 2

7 Siemens 2

8 Arubanetworks 2

9 Huawei 1

10 Iteachyou 1

All CWE-552 CVEs (103)

CVE-2025-1042

4.9

This CVE describes an insecure direct object reference vulnerability in GitLab EE that allows attackers to access repositories without proper authoriz...

Feb 12, 2025

CVE-2025-9273

4.3

CVE-2025-9273 is an information disclosure vulnerability in CData API Server's MySQL connector that allows authenticated attackers to read local files...

Sep 2, 2025

CVE-2024-10126

4.3

This CVE describes a Local File Inclusion vulnerability in M-Files Server that allows authenticated users to read server local files of limited filety...

Nov 20, 2024

← Previous Page 3 of 3

About CWE-552 (CWE-552)

Our database tracks 103 CVEs classified as CWE-552, with 19 rated critical and 55 rated high severity. The average CVSS score for CWE-552 vulnerabilities is 7.6.

External reference: View CWE-552 on MITRE CWE →

Monitor CWE-552 Vulnerabilities

Get alerted when new CWE-552 CVEs affect your infrastructure.

Start Monitoring Free