VYPR

CWE-749

Exposed Dangerous Method or Function

BaseIncompleteLikelihood: Low

Description

The product provides an Applications Programming Interface (API) or similar interface for interaction with external actors, but the interface includes a dangerous method or function that is not properly restricted.

Hierarchy (View 1000)

Parents

Related attack patterns (CAPEC)

CAPEC-500

CVEs mapped to this weakness (65)

page 1 of 4
  • CVE-2010-1428HigKEVApr 28, 2010
    risk 0.75cvss 7.5epss 0.62

    The Web Console (aka web-console) in JBossAs in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 performs access control only for the GET and POST methods, which allows remote attackers to obtain sensitive…

  • CVE-2022-31491CriAug 22, 2025
    risk 0.65cvss 10.0epss 0.01

    Voltronic Power ViewPower through 1.04-24215, ViewPower Pro through 2.0-22165, and PowerShield Netguard before 1.04-23292 allows a remote attacker to run arbitrary code via an unspecified web interface related to detection of a managed UPS shutting down. An unauthenticated…

  • CVE-2006-1547HigKEVMar 30, 2006
    risk 0.65cvss 7.5epss 0.55

    ActionForm in Apache Software Foundation (ASF) Struts before 1.2.9 with BeanUtils 1.7 allows remote attackers to cause a denial of service via a multipart/form-data encoded form with a parameter name that references the public getMultipartRequestHandler method, which provides…

  • CVE-2026-2275CriMar 30, 2026
    risk 0.62cvss 9.6epss 0.00

    The CrewAI CodeInterpreter tool falls back to SandboxPython when it cannot reach Docker, which can enable RCE through arbitrary C function calling.

  • CVE-2026-22208CriFeb 17, 2026
    risk 0.62cvss 9.6epss 0.01

    OpenS100 (the reference implementation S-100 viewer) prior to commit 753cf29 contains a remote code execution vulnerability via an unrestricted Lua interpreter. The Portrayal Engine initializes Lua using luaL_openlibs() without sandboxing or capability restrictions, exposing…

  • CVE-2018-10931CriAug 9, 2018
    risk 0.62cvss 9.8epss 0.68

    It was found that cobbler 2.6.x exposed all functions from its CobblerXMLRPCInterface class over XMLRPC. A remote, unauthenticated attacker could use this flaw to gain high privileges within cobbler, upload files to arbitrary location in the context of the daemon.

  • CVE-2010-0738MedKEVApr 28, 2010
    risk 0.62cvss 5.3epss 0.79

    The JMX-Console web application in JBossAs in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 performs access control only for the GET and POST methods, which allows remote attackers to send requests to this…

  • CVE-2014-5415CriOct 5, 2016
    risk 0.59cvss 9.1epss 0.04

    Beckhoff Embedded PC images before 2014-10-22 and Automation Device Specification (ADS) TwinCAT components might allow remote attackers to obtain access via the (1) Windows CE Remote Configuration Tool, (2) CE Remote Display service, or (3) TELNET service.

  • CVE-2026-47899HigJun 9, 2026
    risk 0.57cvss epss 0.00

    The Electron preload script in Logseq exposes an API method that allows the renderer process to invoke IPC handlers without proper path validation. An attacker with JavaScript execution in the renderer (e.g. via XSS or a malicious plugin), can read, write, or delete arbitrary…

  • CVE-2026-33583HigMay 13, 2026
    risk 0.57cvss 8.7epss 0.00

    Exposure of the QKEY (used as input into the ‘OTA-Quantum’ device registration process) and internal system keys via an unauthenticated and unencrypted HTTP GET method in the Arqit Symmetric Key Agreement Platform. This issue affects Symmetric Key Agreement Platform:…

  • CVE-2026-5173HigApr 8, 2026
    risk 0.55cvss 8.5epss 0.00

    GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.9.6 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that could have allowed an authenticated user to invoke unintended server-side methods through websocket connections due to improper…

  • CVE-2025-34114HigJul 25, 2025
    risk 0.55cvss epss 0.00

    A client-side security misconfiguration vulnerability exists in OpenBlow whistleblowing platform across multiple versions and default deployments, due to the absence of critical HTTP response headers including Content-Security-Policy, Referrer-Policy, Permissions-Policy,…

  • CVE-2024-12651HigFeb 14, 2025
    risk 0.55cvss 8.5epss 0.00

    Exposed Dangerous Method or Function vulnerability in PTT Inc. HGS Mobile App allows Manipulating User-Controlled Variables. This issue affects HGS Mobile App: before 6.5.0.

  • CVE-2016-7462HigDec 29, 2016
    risk 0.55cvss 8.5epss 0.02

    The Suite REST API in VMware vRealize Operations (aka vROps) 6.x before 6.4.0 allows remote authenticated users to write arbitrary content to files or rename files via a crafted DiskFileItem in a relay-request payload that is mishandled during deserialization.

  • CVE-2016-9469HigMar 28, 2017
    risk 0.53cvss 8.2epss 0.02

    Multiple versions of GitLab expose a dangerous method to any authenticated user that could lead to the deletion of all Issue and MergeRequest objects on a GitLab instance. For GitLab instances with publicly available projects this vulnerability could be exploited by an…

  • CVE-2026-53633criJun 15, 2026
    risk 0.52cvss epss

    ## Summary Vitest Browser Mode exposes a `cdp()` API that forwards raw Chrome DevTools Protocol (CDP) methods over the Vitest browser WebSocket RPC. CDP is not gated by `browser.api.allowWrite`, `browser.api.allowExec`, `api.allowWrite`, or `api.allowExec`. As a result,…

  • CVE-2026-8108HigMay 12, 2026
    risk 0.51cvss 7.8epss 0.00

    The installation of Fuji Tellus adds a driver to the kernel which grants all users read and write permissions.

  • CVE-2024-6689HigJul 15, 2024
    risk 0.51cvss 7.8epss 0.00

    Local Privilege Escalation in MSI-Installer in baramundi Management Agent v23.1.172.0 on Windows allows a local unprivileged user to escalate privileges to SYSTEM.

  • CVE-2025-14713HigMay 27, 2026
    risk 0.49cvss 7.5epss 0.00

    An Exposed Dangerous Method or Function vulnerability in Synology C2 Identity Edge Server package in DSM before 1.76.0-0307 allows remote attackers to obtain user credentials from the edge server.

  • CVE-2026-28400HigFeb 27, 2026
    risk 0.49cvss 7.5epss 0.00

    Docker Model Runner (DMR) is software used to manage, run, and deploy AI models using Docker. Versions prior to 1.0.16 expose a POST `/engines/_configure` endpoint that accepts arbitrary runtime flags without authentication. These flags are passed directly to the underlying…