CWE-647: CWE-647

Total CVEs

Critical

High

6.9

Avg CVSS

Yearly Trend

2025

Top Affected Vendors

1 Sensiolabs 1

2 Astro 1

All CWE-647 CVEs (2)

CVE-2025-64500

7.3

This vulnerability in Symfony's HttpFoundation component allows attackers to bypass access control rules by manipulating URL paths that don't start wi...

Nov 12, 2025

CVE-2025-66202

6.5

This vulnerability allows unauthenticated attackers to bypass path-based authentication checks in Astro web framework middleware by using double-encod...

Dec 9, 2025

About CWE-647 (CWE-647)

Our database tracks 2 CVEs classified as CWE-647, with 0 rated critical and 1 rated high severity. The average CVSS score for CWE-647 vulnerabilities is 6.9.

External reference: View CWE-647 on MITRE CWE →

Monitor CWE-647 Vulnerabilities

Get alerted when new CWE-647 CVEs affect your infrastructure.

Start Monitoring Free