CWE-298 is a common weakness enumeration in software security. This database tracks 2 CVE vulnerabilities classified under this weakness type.

How many CVEs are classified as CWE-298?

There are 2 CVE vulnerabilities classified as CWE-298 with an average CVSS score of 6.5.

What is the severity distribution for CWE-298?

CWE-298 contains 0 critical, 0 high, 2 medium, and 0 low severity vulnerabilities.

CWE-298

Total CVEs

Vulnerabilities

Avg CVSS v3

6.5

Medium

Latest CVE

2025

Most Recent

Severity Distribution

Critical 0

High 0

Medium 2

100%

Low 0

External References

MITRE CWE

Official CWE definition

NIST NVD

Search CVEs by CWE

All CVEs (2)

Page 1 of 1

CVE-2023-42446

MEDIUM

CVSS:6.5(Medium)

Pow is a authentication and user management solution for Phoenix and Plug-based apps. Starting in version 1.0.14 and prior to version 1.0.34, use of `Pow.Store.Backend.MnesiaCache` is susceptible to s...

CWE-2982023

CVE-2025-4384

MEDIUM

The MQTT add-on of PcVue fails to verify that a remote device’s certificate has not already expired or has not yet become valid. This allows malicious devices to present certificates that are not reje...

CWE-2982025