CWE-357
19 CVEs classified under CWE-357. Browse by severity and year.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-33054 | High | 8.1 | 2025-07-08 | Insufficient UI warning of dangerous operations in Remote Desktop Client allows an unauthorized attacker to perform spoofing over a network. |
CVE-2024-43505 | High | 7.8 | 2024-10-08 | Microsoft Office Visio Remote Code Execution Vulnerability |
CVE-2026-26151 | High | 7.1 | 2026-04-14 | Insufficient ui warning of dangerous operations in Windows Remote Desktop allows an unauthorized attacker to perform spoofing over a network. |
CVE-2022-41904 | Medium | 6.4 | 2022-11-11 | Element iOS is an iOS Matrix client provided by Element. It is based on MatrixSDK. Prior to version 1.9.7, events encrypted using Megolm for which trust could… |
CVE-2024-43580 | Medium | 5.4 | 2024-10-17 | Microsoft Edge (Chromium-based) Spoofing Vulnerability |
CVE-2024-30058 | Medium | 5.4 | 2024-06-13 | Microsoft Edge (Chromium-based) Spoofing Vulnerability |
CVE-2024-21387 | Medium | 5.3 | 2024-01-26 | Microsoft Edge for Android Spoofing Vulnerability |
CVE-2025-47967 | Medium | 4.7 | 2025-09-16 | Insufficient ui warning of dangerous operations in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network. |
CVE-2024-49054 | Medium | 4.3 | 2024-11-22 | Microsoft Edge (Chromium-based) Spoofing Vulnerability |
CVE-2024-29057 | Medium | 4.3 | 2024-03-22 | Microsoft Edge (Chromium-based) Spoofing Vulnerability |
CVE-2024-26188 | Medium | 4.3 | 2024-02-23 | Microsoft Edge (Chromium-based) Spoofing Vulnerability |
CVE-2026-47782 | Low | 3.3 | 2026-05-20 | Android App "RoboForm Password Manager" provided by Siber Systems, Inc. handles Android intents without sufficient URL validation, user confirmation nor notifi… |
CVE-2024-21336 | Low | 2.5 | 2024-01-26 | Microsoft Edge (Chromium-based) Spoofing Vulnerability |
CVE-2025-49587 | | 2025-06-13 | XWiki is an open-source wiki software platform. When a user without script right creates a document with an XWiki.Notifications.Code.NotificationDisplayerClass… | |
CVE-2025-49585 | | 2025-06-13 | XWiki is a generic wiki platform. In versions before 15.10.16, 16.0.0-rc-1 through 16.4.6, and 16.5.0-rc-1 through 16.10.1, when an attacker without script or… | |
CVE-2025-49583 | | 2025-06-13 | XWiki is a generic wiki platform. When a user without script right creates a document with an `XWiki.Notifications.Code.NotificationEmailRendererClass` object… | |
CVE-2025-49582 | | 2025-06-13 | XWiki is a generic wiki platform. When editing content that contains "dangerous" macros like malicious script macros that were authored by a user with fewer ri… | |
CVE-2021-22645 | | 2021-02-23 | Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions prior to 10.1, Luxion KeyShot Network Rendering versions prior to 10.1, and Luxion KeyVR… | |
CVE-2019-13521 | | 2020-01-27 | A maliciously crafted program file opened by an unsuspecting user of Rockwell Automation Arena Simulation Software version 16.00.00 and earlier may result in t… |