Weaknesses of type CWE-602
121 resultsCVE-2025-36102LOWIBM Controller Validation BypassEPSS 0.2%CVE-2023-3747MEDIUMInsufficient Validation on Override Codes for Always-Enabled WARP ModeEPSS 0.2%CVE-2026-11236HIGHInsufficient policy enforcement in Web Bluetooth in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the rEPSS 0.2%CVE-2026-11092HIGHInsufficient policy enforcement in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a maEPSS 0.2%CVE-2025-14687MEDIUMClient-Side Enforcement of Server-Side Security in IBM Db2 Intelligence CenterEPSS 0.2%CVE-2026-42329MEDIUMIris has an Open Redirect issueEPSS 0.2%CVE-2025-2139LOWIBM Engineering Requirements Management Doors Next security bypassEPSS 0.2%CVE-2025-2138LOWIBM Engineering Requirements Management Doors Next data modificationEPSS 0.2%CVE-2026-3941MEDIUMInsufficient policy enforcement in DevTools in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictiEPSS 0.2%CVE-2025-36410LOWMultiple vulnerabilities found in IBM ApplinX.EPSS 0.2%CVE-2025-6249HIGHAn authentication bypass vulnerability was reported in FileZ client application that could allow a local attacker with elevated permissions EPSS 0.2%CVE-2026-11184MEDIUMInsufficient policy enforcement in Actor in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictionsEPSS 0.2%CVE-2024-6831MEDIUMSeth Fogie, member of AXIS Camera Station Pro Bug Bounty Program has found that it is possible to edit and/or remove views without the necesEPSS 0.2%CVE-2026-5901MEDIUMInsufficient policy enforcement in DevTools in Google Chrome prior to 147.0.7727.55 allowed an attacker who convinced a user to install a maEPSS 0.1%CVE-2026-11267MEDIUMInsufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a EPSS 0.1%CVE-2026-11062MEDIUMInsufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a EPSS 0.1%CVE-2025-41402MEDIUMClient-Side Enforcement of Server-Side Security (CWE-602) in the Command Centre Server allows a privileged operator to enter invalid competeEPSS 0.1%CVE-2024-41750MEDIUMIBM SmartCloud Analytics - Log Analysis security bypassEPSS 0.1%CVE-2024-41751MEDIUMIBM SmartCloud Analytics - Log Analysis security bypassEPSS 0.1%CVE-2026-56693MEDIUMNanoClaw < 2.1.17 - Privilege Escalation via Unauthorized create_agent System ActionEPSS 0.1%