CWE-127 is a common weakness enumeration in software security. This database tracks 5 CVE vulnerabilities classified under this weakness type.

How many CVEs are classified as CWE-127?

There are 5 CVE vulnerabilities classified as CWE-127 with an average CVSS score of 7.

What is the severity distribution for CWE-127?

CWE-127 contains 0 critical, 3 high, 2 medium, and 0 low severity vulnerabilities.

CWE-127

Total CVEs

Vulnerabilities

Avg CVSS v3

7.0

High

Avg CVSS v2

5.0

Medium

Latest CVE

2025

Most Recent

Severity Distribution

Critical 0

High 3

60%

Medium 2

40%

Low 0

External References

MITRE CWE

Official CWE definition

NIST NVD

Search CVEs by CWE

All CVEs (5)

Page 1 of 1

CVE-2024-10395

HIGH

CVSS:8.6(High)

No proper validation of the length of user input in http_server_get_content_type_from_extension.

CWE-1272024

Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting in...

CWE-1272020

CVE-2020-1918

HIGH

CVSS:7.5(High)

In-memory file operations (ie: using fopen on a data URI) did not properly restrict negative seeking, allowing for the reading of memory prior to the in-memory buffer. This issue affects HHVM versions...

CWE-1272020

CVE-2025-32050

MEDIUM

CVSS:5.9(Medium)

A flaw was found in libsoup. The libsoup append_param_quoted() function may contain an overflow bug resulting in a buffer under-read.

CWE-1272025

CVE-2024-25629