CWE-477 is a common weakness enumeration in software security. This database tracks 8 CVE vulnerabilities classified under this weakness type.

How many CVEs are classified as CWE-477?

There are 8 CVE vulnerabilities classified as CWE-477 with an average CVSS score of 7.625.

What is the severity distribution for CWE-477?

CWE-477 contains 2 critical, 4 high, 1 medium, and 1 low severity vulnerabilities.

CWE-477

Total CVEs

Vulnerabilities

Avg CVSS v3

7.6

High

Avg CVSS v2

5.4

Medium

Latest CVE

2023

Most Recent

Severity Distribution

Critical 2

25%

High 4

50%

Medium 1

12.5%

Low 1

12.5%

External References

MITRE CWE

Official CWE definition

NIST NVD

Search CVEs by CWE

All CVEs (8)

Page 1 of 1

CVE-2023-23451

CRITICAL

CVSS:9.8(Critical)

The Flexi Classic and Flexi Soft Gateways SICK UE410-EN3 FLEXI ETHERNET GATEW. with serial number <=2311xxxx all Firmware versions, SICK UE410-EN1 FLEXI ETHERNET GATEW. with serial number <=2311xxxx a...

CWE-4772023

CVE-2018-17890

CRITICAL

CVSS:9.8(Critical)

NUUO CMS all versions 3.1 and prior, The application uses insecure and outdated software components for functionality, which could allow arbitrary code execution.

CWE-4772018

CVE-2023-28829

HIGH

CVSS:8.8(High)

A vulnerability has been identified in SIMATIC NET PC Software V14 (All versions), SIMATIC NET PC Software V15 (All versions), SIMATIC PCS 7 V8.2 (All versions), SIMATIC PCS 7 V9.0 (All versions), SIM...

CWE-4772023

CVE-2022-1384

HIGH

CVSS:8.8(High)

Mattermost version 6.4.x and earlier fails to properly check the plugin version when a plugin is installed from the Marketplace, which allows an authenticated and an authorized user to install and exp...

CWE-4772022

CVE-2019-18251

HIGH

CVSS:8.8(High)

In Omron CX-Supervisor, Versions 3.5 (12) and prior, Omron CX-Supervisor ships with Teamviewer Version 5.0.8703 QS. This version of Teamviewer is vulnerable to an obsolete function vulnerability requi...

CWE-4772019

CVE-2020-6978

HIGH

CVSS:7.2(High)

In Honeywell WIN-PAK 4.7.2, Web and prior versions, the affected product is vulnerable due to the usage of old jQuery libraries.

CWE-4772020

CVE-2019-10968

MEDIUM

CVSS:4.4(Medium)

Philips Holter 2010 Plus, all versions. A vulnerability has been identified that may allow system options that were not purchased to be enabled.

CWE-4772019

CVE-2019-10988

LOW

CVSS:3.4(Low)

In Philips HDI 4000 Ultrasound Systems, all versions running on old, unsupported operating systems such as Windows 2000, the HDI 4000 Ultrasound System is built on an old operating system that is no l...

CWE-4772019