CWE-784 is a common weakness enumeration in software security. This database tracks 4 CVE vulnerabilities classified under this weakness type.

How many CVEs are classified as CWE-784?

There are 4 CVE vulnerabilities classified as CWE-784 with an average CVSS score of 7.55.

What is the severity distribution for CWE-784?

CWE-784 contains 1 critical, 2 high, 1 medium, and 0 low severity vulnerabilities.

CWE-784

Total CVEs

Vulnerabilities

Avg CVSS v3

7.6

High

Avg CVSS v2

5.0

Medium

Latest CVE

2024

Most Recent

Severity Distribution

Critical 1

25%

High 2

50%

Medium 1

25%

Low 0

External References

MITRE CWE

Official CWE definition

NIST NVD

Search CVEs by CWE

All CVEs (4)

Page 1 of 1

CVE-2023-3050

CRITICAL

CVSS:9.8(Critical)

Reliance on Cookies without Validation and Integrity Checking in a Security Decision vulnerability in TMT Lockcell allows Privilege Abuse, Authentication Bypass.This issue affects Lockcell: before 15.

CWE-7842023

CVE-2024-9820

HIGH

CVSS:7.5(High)

The WP 2FA with Telegram plugin for WordPress is vulnerable to Two-Factor Authentication Bypass in versions up to, and including, 3.0. This is due to the two-factor code being stored in a cookie, whic...

CWE-7842024

CVE-2020-8184

HIGH

CVSS:7.5(High)

A reliance on cookies without validation/integrity check security vulnerability exists in rack < 2.2.3, rack < 2.1.4 that makes it is possible for an attacker to forge a secure or host-only cookie pre...

CWE-7842020

CVE-2022-3083

MEDIUM

CVSS:5.4(Medium)

All versions of Landis+Gyr E850 (ZMQ200) are vulnerable to CWE-784: Reliance on Cookies Without Validation and Integrity. The device's web application navigation depends on the value of the session co...

CWE-7842022