Skip to main content

CWE-733

Compiler Optimization Removal or Modification of Security-critical Code

4 CVEs Avg CVSS 8.0 MITRE
1
CRITICAL
3
HIGH
0
MEDIUM
0
LOW
1
POC
0
KEV

Monthly

CVE-2025-13024 CRITICAL PATCH Act Now

JIT miscompilation in the JavaScript Engine: JIT component. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Mozilla
NVD VulDB
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-20241 HIGH This Month

A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) feature of Cisco NX-OS Software for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS. Rated high severity (CVSS 7.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Cisco
NVD
CVSS 3.1
7.4
EPSS
0.0%
CVE-2025-52496 HIGH POC PATCH This Week

Mbed TLS before 3.6.4 has a race condition in AESNI detection if certain compiler optimizations occur. An attacker may be able to extract an AES key from a multithreaded program, or perform a GCM forgery.

Information Disclosure Ubuntu Debian Mbed Tls Suse
NVD GitHub
CVSS 3.1
7.8
EPSS
0.0%
CVE-2020-15294 HIGH This Week

Compiler Optimization Removal or Modification of Security-critical Code vulnerability in IntPeParseUnwindData() results in multiple dereferences to the same pointer. Rated high severity (CVSS 7.0). No vendor patch available.

RCE Hypervisor Introspection
NVD
CVSS 3.1
7.0
EPSS
0.3%
EPSS 0% CVSS 9.8
CRITICAL PATCH Act Now

JIT miscompilation in the JavaScript Engine: JIT component. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Mozilla
NVD VulDB
EPSS 0% CVSS 7.4
HIGH This Month

A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) feature of Cisco NX-OS Software for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS. Rated high severity (CVSS 7.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Cisco
NVD
EPSS 0% CVSS 7.8
HIGH POC PATCH This Week

Mbed TLS before 3.6.4 has a race condition in AESNI detection if certain compiler optimizations occur. An attacker may be able to extract an AES key from a multithreaded program, or perform a GCM forgery.

Information Disclosure Ubuntu Debian +2
NVD GitHub
EPSS 0% CVSS 7.0
HIGH This Week

Compiler Optimization Removal or Modification of Security-critical Code vulnerability in IntPeParseUnwindData() results in multiple dereferences to the same pointer. Rated high severity (CVSS 7.0). No vendor patch available.

RCE Hypervisor Introspection
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy