CWE-943 is a common weakness enumeration in software security. This database tracks 10 CVE vulnerabilities classified under this weakness type.

How many CVEs are classified as CWE-943?

There are 10 CVE vulnerabilities classified as CWE-943 with an average CVSS score of 7.34.

What is the severity distribution for CWE-943?

CWE-943 contains 0 critical, 5 high, 5 medium, and 0 low severity vulnerabilities.

CWE-943

Total CVEs

Vulnerabilities

Avg CVSS v3

7.3

High

Avg CVSS v2

6.4

Medium

Latest CVE

2025

Most Recent

Severity Distribution

Critical 0

High 5

50%

Medium 5

50%

Low 0

External References

MITRE CWE

Official CWE definition

NIST NVD

Search CVEs by CWE

All CVEs (10)

Page 1 of 1

CVE-2024-4872

HIGH

CVSS:8.8(High)

A vulnerability exists in the query validation of the MicroSCADA Pro/X SYS600 product. If exploited this could allow an authenticated attacker to inject code towards persistent data. Note that to succ...

CWE-9432024

CVE-2018-7829

HIGH

CVSS:8.8(High)

An Improper Neutralization of Special Elements in Query vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera which allows an attacker to execute arbitrary s...

CWE-9432018

CVE-2017-12904

HIGH

CVSS:8.8(High)

Improper Neutralization of Special Elements used in an OS Command in bookmarking function of Newsbeuter versions 0.7 through 2.9 allows remote attackers to perform user-assisted code execution by craf...

CWE-9432017

CVE-2025-24787

HIGH

CVSS:8.6(High)

WhoDB is an open source database management tool. In affected versions the application is vulnerable to parameter injection in database connection strings, which allows an attacker to read local files...

CWE-9432025

CVE-2020-5257

HIGH

CVSS:8.1(High)

In Administrate (rubygem) before version 0.13.0, when sorting by attributes on a dashboard, the direction parameter was not validated before being interpolated into the SQL query. This could present a...

CWE-9432020

CVE-2024-35136

MEDIUM

CVSS:6.5(Medium)

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) federated server 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query under certain non default cond...

CWE-9432024

CVE-2024-31882

MEDIUM

CVSS:6.5(Medium)

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to a denial of service, under specific non default configurations, as the server may crash when using a sp...

CWE-9432024

CVE-2021-34712

MEDIUM

CVSS:6.5(Medium)

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct cypher query language injection attacks on an affected s...

CWE-9432021

CVE-2021-1349

MEDIUM

CVSS:6.5(Medium)

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct Cypher query language injection attacks on an affected s...

CWE-9432021

CVE-2021-1481

MEDIUM

CVSS:4.3(Medium)

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct Cypher query language injection attacks on an affec...

CWE-9432021