CWE-671 is a common weakness enumeration in software security. This database tracks 4 CVE vulnerabilities classified under this weakness type.

How many CVEs are classified as CWE-671?

There are 4 CVE vulnerabilities classified as CWE-671 with an average CVSS score of 6.55.

What is the severity distribution for CWE-671?

CWE-671 contains 1 critical, 1 high, 2 medium, and 0 low severity vulnerabilities.

CWE-671

Total CVEs

Vulnerabilities

Avg CVSS v3

6.6

Medium

Avg CVSS v2

4.9

Medium

Latest CVE

2025

Most Recent

Severity Distribution

Critical 1

25%

High 1

25%

Medium 2

50%

Low 0

External References

MITRE CWE

Official CWE definition

NIST NVD

Search CVEs by CWE

All CVEs (4)

Page 1 of 1

CVE-2025-24024

CRITICAL

CVSS:9.1(Critical)

Mjolnir is a moderation tool for Matrix. Mjolnir v1.9.0 responds to management commands from any room the bot is member of. This can allow users who aren't operators of the bot to use the bot's functi...

CWE-6712025

CVE-2018-13283

HIGH

CVSS:7.4(High)

Lack of administrator control over security vulnerability in client.cgi in Synology SSL VPN Client before 1.2.5-0226 allows remote attackers to conduct man-in-the-middle attacks via the (1) command, (...

CWE-6712018

CVE-2023-20115

MEDIUM

CVSS:5.4(Medium)

A vulnerability in the SFTP server implementation for Cisco Nexus 3000 Series Switches and 9000 Series Switches in standalone NX-OS mode could allow an authenticated, remote attacker to download or ov...

CWE-6712023

CVE-2022-29163

MEDIUM

CVSS:4.3(Medium)

Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. Prior to versions 22.2.6 and 23.0.3, a user can create a link that is not password protected even if th...

CWE-6712022