Description
The authentication scheme or implementation uses key data elements that are assumed to be immutable, but can be controlled or modified by the attacker.
CVE vulnerabilities with CWE-302 (37)
10.0
CVSS
CRITICAL
CVE-2025-29813
pub. 2025-05-08
9.9
CVSS
CRITICAL
CVE-2026-48781
pub. 2026-06-17
9.9
CVSS
CRITICAL
CVE-2024-56404
pub. 2025-01-24
9.8
CVSS
CRITICAL
CVE-2025-63210
pub. 2025-11-19
9.8
CVSS
CRITICAL
CVE-2024-43441
pub. 2024-12-24
9.8
CVSS
CRITICAL
CVE-2023-4612
pub. 2023-11-09
9.8
CVSS
CRITICAL
CVE-2023-4669
pub. 2023-09-14
9.8
CVSS
CRITICAL
CVE-2016-9482
pub. 2018-07-13
9.0
CVSS
CRITICAL
CVE-2025-47158
pub. 2025-07-18
8.8
CVSS
HIGH
CVE-2026-40285
pub. 2026-04-17
8.8
CVSS
HIGH
CVE-2024-12838
pub. 2024-12-31
8.8
CVSS
HIGH
CVE-2022-22729
pub. 2022-03-11
8.7
CVSS
HIGH
CVE-2024-47086
pub. 2024-09-19
8.7
CVSS
HIGH
CVE-2024-22179
pub. 2024-04-18
8.7
CVSS
HIGH
CVE-2024-3741
pub. 2024-04-18
8.2
CVSS
HIGH
CVE-2026-39429
pub. 2026-04-08
8.1
CVSS
HIGH
CVE-2025-8855
pub. 2025-11-14
8.1
CVSS
HIGH
CVE-2025-24876
pub. 2025-02-11
7.5
CVSS
HIGH
CVE-2025-26522
pub. 2025-02-14
7.5
CVSS
HIGH
CVE-2020-15074
pub. 2020-07-14
Showing 20 of 37 vulnerabilities