Login Sign Up

CWE-924: CWE-924

10
Total CVEs
2
Critical
7
High
7.9
Avg CVSS

Yearly Trend

2025
3
2024
5
2023
1
2021
1

Top Affected Vendors

1 Eclipse 1
2 Abb 1
3 Schneider Electric 1
4 Schedmd 1

All CWE-924 CVEs (10)

CVE-2025-29628
9.4

CVE-2025-29628 is a command injection vulnerability in Gardyn 4 that allows remote attackers to execute arbitrary commands on affected systems. This c...

Jul 25, 2025
CVE-2024-44730
9.1

This vulnerability in Mirotalk video conferencing software allows attackers to forge chat messages with arbitrary sender names due to improper access ...

Oct 11, 2024
CVE-2025-0592
8.8

This vulnerability allows remote attackers with low privileges to execute arbitrary shell commands by uploading a manipulated firmware file to affecte...

Feb 14, 2025
CVE-2023-6408
8.1

This vulnerability allows attackers to intercept and manipulate communications between Schneider Electric controllers due to improper message integrit...

Feb 14, 2024
CVE-2021-41034
8.1

Eclipse Che versions 6 builds for Java 8, Android, and PHP stacks pull binaries from unsecured HTTP endpoints during build time, making them vulnerabl...

Sep 29, 2021
CVE-2020-11639
7.8

CVE-2020-11639 is a local privilege escalation vulnerability in Advant MOD 300 AdvaBuild that allows attackers with local access to inject malicious d...

Jul 23, 2024
CVE-2024-8933
7.5

This vulnerability allows attackers positioned within the same logical network to intercept password hashes during project file transfers to/from Schn...

Nov 13, 2024
CVE-2023-49933
7.5

This vulnerability in SchedMD Slurm allows attackers to modify RPC traffic in a way that bypasses message integrity checks, potentially enabling unaut...

Dec 14, 2023
CVE-2024-12399
7.1

This CVE describes an improper message integrity enforcement vulnerability in Schneider Electric HMI systems that allows man-in-the-middle attacks. At...

Jan 17, 2025
CVE-2024-52288
5.1

This vulnerability in libosdp allows man-in-the-middle attackers to capture and replay OSDP protocol messages, potentially enabling unauthorized acces...

Nov 11, 2024

About CWE-924 (CWE-924)

Our database tracks 10 CVEs classified as CWE-924, with 2 rated critical and 7 rated high severity. The average CVSS score for CWE-924 vulnerabilities is 7.9.

External reference: View CWE-924 on MITRE CWE →

Monitor CWE-924 Vulnerabilities

Get alerted when new CWE-924 CVEs affect your infrastructure.

Start Monitoring Free