CWE-173 is a common weakness enumeration in software security. This database tracks 3 CVE vulnerabilities classified under this weakness type.

How many CVEs are classified as CWE-173?

There are 3 CVE vulnerabilities classified as CWE-173 with an average CVSS score of 5.4333333333333.

What is the severity distribution for CWE-173?

CWE-173 contains 0 critical, 0 high, 3 medium, and 0 low severity vulnerabilities.

CWE-173

Total CVEs

Vulnerabilities

Avg CVSS v3

5.4

Medium

Latest CVE

2024

Most Recent

Severity Distribution

Critical 0

High 0

Medium 3

100%

Low 0

External References

MITRE CWE

Official CWE definition

NIST NVD

Search CVEs by CWE

All CVEs (3)

Page 1 of 1

CVE-2023-26303

MEDIUM

CVSS:5.5(Medium)

Denial of service could be caused to markdown-it-py, before v2.2.0, if an attacker was allowed to force null assertions with specially crafted input.

CWE-1732023

CVE-2023-26302

MEDIUM

CVSS:5.5(Medium)

Denial of service could be caused to the command line interface of markdown-it-py, before v2.2.0, if an attacker was allowed to use invalid UTF-8 characters as input.

CWE-1732023

CVE-2024-54158

MEDIUM

CVSS:5.3(Medium)

In JetBrains YouTrack before 2024.3.52635 potential spoofing attack was possible via lack of Punycode encoding

CWE-1732024