CWE-925 is a common weakness enumeration in software security. This database tracks 3 CVE vulnerabilities classified under this weakness type.

How many CVEs are classified as CWE-925?

There are 3 CVE vulnerabilities classified as CWE-925 with an average CVSS score of 5.3.

What is the severity distribution for CWE-925?

CWE-925 contains 1 critical, 0 high, 2 medium, and 0 low severity vulnerabilities.

CWE-925

Total CVEs

Vulnerabilities

Avg CVSS v3

5.3

Medium

Latest CVE

2024

Most Recent

Severity Distribution

Critical 1

33.3%

High 0

Medium 2

66.7%

Low 0

External References

MITRE CWE

Official CWE definition

NIST NVD

Search CVEs by CWE

All CVEs (3)

Page 1 of 1

CVE-2023-44126

MEDIUM

CVSS:5.5(Medium)

The vulnerability is that the Call management ("com.android.server.telecom") app patched by LG sends a lot of LG-owned implicit broadcasts that disclose sensitive data to all third-party apps installe...

CWE-9252023

CVE-2024-20853

MEDIUM

CVSS:5.1(Medium)

Improper verification of intent by broadcast receiver vulnerability in ThemeStore prior to 5.3.05.2 allows local attackers to write arbitrary files to sandbox of ThemeStore.

CWE-9252024

CVE-2024-10576

CRITICAL

Infinix devices contain a pre-loaded "com.transsion.agingfunction" application, that exposes an unsecured broadcast receiver. An attacker can communicate with the receiver and force the device to perf...

CWE-9252024