CWE-146 is a common weakness enumeration in software security. This database tracks 6 CVE vulnerabilities classified under this weakness type.

How many CVEs are classified as CWE-146?

There are 6 CVE vulnerabilities classified as CWE-146 with an average CVSS score of 7.6666666666667.

What is the severity distribution for CWE-146?

CWE-146 contains 1 critical, 4 high, 1 medium, and 0 low severity vulnerabilities.

CWE-146

Total CVEs

Vulnerabilities

Avg CVSS v3

7.7

High

Latest CVE

2024

Most Recent

Severity Distribution

Critical 1

16.7%

High 4

66.7%

Medium 1

16.7%

Low 0

External References

MITRE CWE

Official CWE definition

NIST NVD

Search CVEs by CWE

All CVEs (6)

Page 1 of 1

CVE-2024-20329

CRITICAL

CVSS:9.9(Critical)

A vulnerability in the SSH subsystem of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote attacker to execute operating system commands as root. This vulnerability ...

CWE-1462024

CVE-2023-20035

HIGH

CVSS:7.8(High)

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands with elevated privileges. This vulnerability is due to insufficien...

CWE-1462023

CVE-2022-4055

HIGH

CVSS:7.4(High)

When xdg-mail is configured to use thunderbird for mailto URLs, improper parsing of the URL can lead to additional headers being passed to thunderbird that should not be included per RFC 2368. An atta...

CWE-1462022

CVE-2023-20128

HIGH

CVSS:7.2(High)

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker to inject and execute ...

CWE-1462023

CVE-2023-20117

HIGH

CVSS:7.2(High)

CWE-1462023

CVE-2024-20470

MEDIUM

CVSS:6.5(Medium)

A vulnerability in the web-based management interface of Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an authenticated, remote attacker to execute arb...

CWE-1462024