CWE-149 is a common weakness enumeration in software security. This database tracks 3 CVE vulnerabilities classified under this weakness type.

How many CVEs are classified as CWE-149?

There are 3 CVE vulnerabilities classified as CWE-149 with an average CVSS score of 5.7333333333333.

What is the severity distribution for CWE-149?

CWE-149 contains 0 critical, 2 high, 0 medium, and 1 low severity vulnerabilities.

CWE-149

Total CVEs

Vulnerabilities

Avg CVSS v3

5.7

Medium

Latest CVE

2025

Most Recent

Severity Distribution

Critical 0

High 2

66.7%

Medium 0

Low 1

33.3%

External References

MITRE CWE

Official CWE definition

NIST NVD

Search CVEs by CWE

All CVEs (3)

Page 1 of 1

CVE-2025-1094

HIGH

CVSS:8.1(High)

Improper neutralization of quoting syntax in PostgreSQL libpq functions PQescapeLiteral(), PQescapeIdentifier(), PQescapeString(), and PQescapeStringConn() allows a database input provider to achieve ...

CWE-1492025

CVE-2025-43878

HIGH

CVSS:6.0(Medium)

When running in Appliance mode, an authenticated attacker assigned the Administrator or Resource Administrator role may be able to bypass Appliance mode restrictions utilizing system diagnostics tcpdu...

CWE-1492025

CVE-2023-36479

LOW

CVSS:3.1(Low)

Eclipse Jetty Canonical Repository is the canonical repository for the Jetty project. Users of the CgiServlet with a very specific command structure may have the wrong command executed. If a user send...

CWE-1492023