CWE-449

12 CVEs classified under CWE-449. Browse by severity and year.

Top CVEs for CWE-449
CVE	Severity	Score	Published	Summary
`CVE-2023-43585`	High	`7.1`	2023-12-13	Improper access control in Zoom Mobile App for iOS and Zoom SDKs for iOS before version 5.16.5 may allow an authenticated user to conduct a disclosure of infor…
`CVE-2023-39215`	High	`7.1`	2023-09-12	Improper authentication in Zoom clients may allow an authenticated user to conduct a denial of service via network access.
`CVE-2023-36535`	High	`7.1`	2023-08-08	Client-side enforcement of server-side security in Zoom clients before 5.14.10 may allow an authenticated user to enable information disclosure via network acc…
`CVE-2023-39209`	Medium	`5.9`	2023-08-08	Improper input validation in Zoom Desktop Client for Windows before 5.15.5 may allow an authenticated user to enable an information disclosure via network acce…
`CVE-2025-26643`	Medium	`5.4`	2025-03-07	The UI performs the wrong action in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.
`CVE-2024-24698`	Medium	`4.9`	2024-02-13	Improper authentication in some Zoom clients may allow a privileged user to conduct a disclosure of information via local access.
`CVE-2025-49736`	Medium	`4.3`	2025-08-12	The ui performs the wrong action in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network.
`CVE-2025-21404`	Medium	`4.3`	2025-02-06	Microsoft Edge (Chromium-based) Spoofing Vulnerability
`CVE-2024-49041`	Medium	`4.3`	2024-12-06	Microsoft Edge (Chromium-based) Spoofing Vulnerability
`CVE-2024-43577`	Medium	`4.3`	2024-10-18	Microsoft Edge (Chromium-based) Spoofing Vulnerability
`CVE-2024-38083`	Medium	`4.3`	2024-06-13	Microsoft Edge (Chromium-based) Spoofing Vulnerability
`CVE-2023-43588`	Low	`3.5`	2023-11-14	Insufficient control flow management in some Zoom clients may allow an authenticated user to conduct an information disclosure via network access.