CWE-180 is a common weakness enumeration in software security. This database tracks 4 CVE vulnerabilities classified under this weakness type.

How many CVEs are classified as CWE-180?

There are 4 CVE vulnerabilities classified as CWE-180 with an average CVSS score of 6.825.

What is the severity distribution for CWE-180?

CWE-180 contains 1 critical, 1 high, 1 medium, and 1 low severity vulnerabilities.

CWE-180

Total CVEs

Vulnerabilities

Avg CVSS v3

6.8

Medium

Latest CVE

2025

Most Recent

Severity Distribution

Critical 1

25%

High 1

25%

Medium 1

25%

Low 1

25%

External References

MITRE CWE

Official CWE definition

NIST NVD

Search CVEs by CWE

All CVEs (4)

Page 1 of 1

CVE-2022-26136

CRITICAL

CVSS:9.8(Critical)

A vulnerability in multiple Atlassian products allows a remote, unauthenticated attacker to bypass Servlet Filters used by first and third party apps. The impact depends on which filters are used by e...

CWE-1802022

CVE-2022-26137

HIGH

CVSS:8.8(High)

A vulnerability in multiple Atlassian products allows a remote, unauthenticated attacker to cause additional Servlet Filters to be invoked when the application processes requests or responses. Atlassi...

CWE-1802022

CVE-2025-43716

MEDIUM

CVSS:5.8(Medium)

A directory traversal vulnerability exists in Ivanti LANDesk Management Gateway through 4.2-1.9. By appending %3F.php to the URI of the /client/index.php endpoint, an attacker can bypass access contro...

CWE-1802025

CVE-2024-28607

LOW

CVSS:2.9(Low)

The ip-utils package through 2.4.0 for Node.js might allow SSRF because some IP addresses (such as 0x7f.1) are improperly categorized as globally routable via a falsy isPrivate return value.

CWE-1802024