Login Sign Up

CWE-681: CWE-681

16
Total CVEs
2
Critical
13
High
8.2
Avg CVSS

Yearly Trend

2025
2
2024
3
2023
4
2022
2
2021
5

Top Affected Vendors

1 Microsoft 5
2 Mozilla 2
3 F5 1
4 Fedoraproject 1
5 Redhat 1
6 Trendmicro 1
7 Debian 1
8 Squid Cache 1
9 Standalonetech 1
10 Opener Project 1

All CWE-681 CVEs (16)

CVE-2021-36357
9.8

This vulnerability in OpenPOWER firmware allows attackers to bypass timestamp validation checks due to a type mismatch in endian conversion. This coul...

Oct 22, 2021
CVE-2021-38187
9.8

This vulnerability in the anymap Rust crate allows memory corruption through unsound pointer conversion from *u8 to *u64. Attackers can exploit this t...

Aug 8, 2021
CVE-2024-49093
8.8

This vulnerability allows an authenticated attacker to exploit a flaw in Windows Resilient File System (ReFS) to gain SYSTEM-level privileges on affec...

Dec 12, 2024
CVE-2023-24884
8.8

This vulnerability allows remote attackers to execute arbitrary code on systems using vulnerable Microsoft PostScript and PCL6 printer drivers. Attack...

Apr 11, 2023
CVE-2021-23997
8.8

This vulnerability in Mozilla Firefox involves a use-after-free condition in the font cache due to unexpected data type conversions. Attackers could p...

Jun 24, 2021
CVE-2023-46848
8.6

Squid proxy server is vulnerable to a denial-of-service attack where remote attackers can crash the service by sending specially crafted ftp:// URLs i...

Nov 3, 2023
CVE-2025-53733
8.4

A type conversion vulnerability in Microsoft Office Word allows attackers to execute arbitrary code on vulnerable systems by tricking users into openi...

Aug 12, 2025
CVE-2021-27478
8.2

CVE-2021-27478 is a denial-of-service vulnerability in EIPStackGroup OpENer EtherNet/IP stack where specially crafted network packets can crash the se...

May 12, 2022
CVE-2023-29346
7.8

This vulnerability allows an authenticated attacker to exploit a flaw in the NTFS filesystem driver to elevate privileges from a standard user account...

Jun 14, 2023
CVE-2023-23401
7.8

CVE-2023-23401 is a remote code execution vulnerability in Windows Media components that allows attackers to execute arbitrary code on affected system...

Mar 14, 2023
CVE-2021-32461
7.8

This vulnerability allows a local attacker with low-privileged code execution to trigger a buffer overflow via integer truncation, leading to privileg...

Jul 8, 2021
CVE-2024-1552
7.5

This vulnerability involves incorrect code generation in Mozilla products that could cause unexpected numeric conversions and undefined behavior on 32...

Feb 20, 2024
CVE-2022-27189
7.5

This vulnerability in F5 BIG-IP allows attackers to cause memory exhaustion in the Traffic Management Microkernel (TMM) by sending specific traffic to...

May 5, 2022
CVE-2020-15225
7.5

This vulnerability in django-filter allows attackers to cause denial-of-service (DoS) by sending specially crafted exponential number inputs to Number...

Apr 29, 2021
CVE-2025-58063
7.1

CoreDNS etcd plugin incorrectly uses etcd lease IDs as TTL values due to improper type casting, enabling DNS cache pinning attacks. This creates a den...

Sep 9, 2025
CVE-2024-7747
6.5

The Wallet for WooCommerce WordPress plugin has a numerical logic flaw that allows authenticated attackers with Subscriber-level access or higher to c...

Nov 28, 2024

About CWE-681 (CWE-681)

Our database tracks 16 CVEs classified as CWE-681, with 2 rated critical and 13 rated high severity. The average CVSS score for CWE-681 vulnerabilities is 8.2.

External reference: View CWE-681 on MITRE CWE →

Monitor CWE-681 Vulnerabilities

Get alerted when new CWE-681 CVEs affect your infrastructure.

Start Monitoring Free