CWE-291 is a common weakness enumeration in software security. This database tracks 5 CVE vulnerabilities classified under this weakness type.

How many CVEs are classified as CWE-291?

There are 5 CVE vulnerabilities classified as CWE-291 with an average CVSS score of 6.76.

What is the severity distribution for CWE-291?

CWE-291 contains 0 critical, 3 high, 2 medium, and 0 low severity vulnerabilities.

CWE-291

Total CVEs

Vulnerabilities

Avg CVSS v3

6.8

Medium

Avg CVSS v2

5.1

Medium

Latest CVE

2024

Most Recent

Severity Distribution

Critical 0

High 3

60%

Medium 2

40%

Low 0

External References

MITRE CWE

Official CWE definition

NIST NVD

Search CVEs by CWE

All CVEs (5)

Page 1 of 1

CVE-2024-23309

HIGH

CVSS:8.1(High)

The LevelOne WBR-6012 router with firmware R0.40e6 has an authentication bypass vulnerability in its web application due to reliance on client IP addresses for authentication. Attackers could spoof an...

CWE-2912024

CVE-2023-7211

HIGH

CVSS:8.1(High)

A vulnerability was found in Uniway Router 2.0. It has been declared as critical. This vulnerability affects unknown code of the component Administrative Web Interface. The manipulation leads to relia...

CWE-2912023

CVE-2023-35906

HIGH

CVSS:7.5(High)

IBM Aspera Faspex 5.0.5 could allow a remote attacked to bypass IP restrictions due to improper access controls. IBM X-Force ID: 259649.

CWE-2912023

CVE-2022-46415

MEDIUM

CVSS:5.9(Medium)

DJI Spark 01.00.0900 allows remote attackers to prevent legitimate terminal connections by exhausting the DHCP IP address pool. To accomplish this, the attacker would first need to connect to the devi...

CWE-2912022

CVE-2024-32765

MEDIUM

CVSS:4.2(Medium)

A vulnerability has been reported to affect Network & Virtual Switch. If exploited, the vulnerability could allow local authenticated administrators to gain access to and execute certain functions via...

CWE-2912024