CWE-697: CWE-697
Yearly Trend
Top Affected Vendors
All CWE-697 CVEs (20)
Softaculous Webuzo contains an authentication bypass vulnerability in its password reset functionality that allows remote, unauthenticated attackers t...
Jul 25, 2024CVE-2023-32571 is a remote code execution vulnerability in Dynamic LINQ libraries where untrusted input to methods like Where, Select, and OrderBy can...
Jun 22, 2023A type juggling vulnerability in PlaySMS v1.4.5 and earlier allows attackers to bypass authentication by exploiting PHP's loose comparison operators. ...
Feb 13, 2023This vulnerability allows unauthenticated attackers to bypass authentication on NETGEAR WAC104 wireless access points by adding a specific substring t...
Jun 30, 2021This vulnerability in WeBid 1.2.2 allows attackers to bypass password confirmation during user registration due to improper loose comparison. This aff...
Jan 27, 2021This CVE describes an authentication bypass vulnerability in NetAlertX where attackers can log in without valid credentials using specially crafted 'm...
Jul 4, 2025An unauthenticated remote attacker can cause Cisco Identity Services Engine (ISE) to restart unexpectedly by sending crafted RADIUS access request mes...
Nov 5, 2025The SureTriggers WordPress plugin has an authentication bypass vulnerability that allows unauthenticated attackers to create administrator accounts. T...
Apr 10, 2025This vulnerability in Unicorn Engine allows attackers to escape sandbox restrictions and execute arbitrary code on the host system. It affects systems...
Dec 26, 2021CVE-2023-46009 is a floating point exception vulnerability in gifsicle's resize_stream function that can cause denial of service through application c...
Oct 18, 2023This vulnerability in Jenkins Azure AD Plugin allows attackers to potentially bypass CSRF protection through timing attacks. By exploiting non-constan...
Sep 6, 2023This vulnerability allows remote attackers to cause a denial-of-service (DoS) condition on Experion servers by sending specially crafted messages that...
Jul 13, 2023This CVE describes a floating-point exception (FPE) vulnerability in TensorFlow's TFLite component when constructing models with a filter_input_channe...
Mar 25, 2023This CVE describes a floating point exception vulnerability in TensorFlow's AudioSpectrogram function. Attackers can cause denial of service by trigge...
Mar 25, 2023An incomplete string comparison vulnerability in cvxopt versions up to 1.2.6 allows attackers to create fake Capsule objects that can crash affected a...
Dec 17, 2021CVE-2021-35970 is an information disclosure vulnerability in Coral Talk's GraphQL API where incorrect data type usage in permission checks allows unau...
Jun 30, 2021This vulnerability in Etherpad's UeberDB MySQL connector allows attackers to bypass access controls by exploiting MySQL's behavior of omitting trailin...
Apr 28, 2021This vulnerability allows authenticated attackers to bypass two-factor authentication (2FA) in mailcow: dockerized email systems. Attackers need crede...
Aug 5, 2024A signed/unsigned integer comparison bug in the Linux kernel's MPTCP implementation causes TCP packets to lack required MPTCP extensions when transmit...
May 21, 2024The Events Calendar WordPress plugin versions up to 6.15.9 have an information disclosure vulnerability where unauthenticated attackers can obtain ful...
Nov 5, 2025About CWE-697 (CWE-697)
Our database tracks 20 CVEs classified as CWE-697, with 6 rated critical and 11 rated high severity. The average CVSS score for CWE-697 vulnerabilities is 8.0.
External reference: View CWE-697 on MITRE CWE →
Monitor CWE-697 Vulnerabilities
Get alerted when new CWE-697 CVEs affect your infrastructure.
Start Monitoring Free