Skip to main content

CWE-412

Unrestricted Externally Accessible Lock

3 CVEs Avg CVSS 7.9 MITRE
1
CRITICAL
1
HIGH
1
MEDIUM
0
LOW
0
POC
0
KEV

Monthly

CVE-2026-25612 MEDIUM This Month

MongoDB server's resource locking mechanism can cause unintended collisions between collections due to improper internal encoding, leading to service denial of availability. Authenticated users can trigger this condition to disrupt database operations across affected collections without requiring user interaction. No patch is currently available to remediate this vulnerability.

MongoDB
NVD
CVSS 3.1
6.5
EPSS
0.0%
CVE-2023-22318 HIGH This Week

Denial of service in Webconf in Tribe29 Checkmk Appliance before 1.6.5. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Checkmk Appliance Firmware
NVD
CVSS 3.1
7.5
EPSS
0.5%
CVE-2019-18269 CRITICAL Act Now

Omron’s CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Plc Cj Firmware Plc Cs Firmware
NVD VulDB
CVSS 3.1
9.8
EPSS
0.2%
EPSS 0% CVSS 6.5
MEDIUM This Month

MongoDB server's resource locking mechanism can cause unintended collisions between collections due to improper internal encoding, leading to service denial of availability. Authenticated users can trigger this condition to disrupt database operations across affected collections without requiring user interaction. No patch is currently available to remediate this vulnerability.

MongoDB
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Denial of service in Webconf in Tribe29 Checkmk Appliance before 1.6.5. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Checkmk Appliance Firmware
NVD
EPSS 0% CVSS 9.8
CRITICAL Act Now

Omron’s CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Plc Cj Firmware Plc Cs Firmware
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy