Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-693 (保护机制失效) — Vulnerability Class 224

224 vulnerabilities classified as CWE-693 (保护机制失效). AI Chinese analysis included.

CWE-693 represents a critical vulnerability where software fails to implement or correctly utilize necessary security controls, leaving systems exposed to directed attacks. This weakness manifests in two primary forms: missing mechanisms, where no defense exists for a specific threat vector, and insufficient mechanisms, where existing safeguards are inadequate or improperly configured. Attackers typically exploit these gaps by bypassing authentication, escalating privileges, or accessing sensitive data that should have been restricted. To mitigate this risk, developers must conduct rigorous threat modeling to identify all potential attack surfaces and ensure comprehensive security controls are in place. Regular code reviews and automated security testing help verify that protection mechanisms function as intended. By adopting a defense-in-depth strategy and validating that every security feature is both present and robust, organizations can significantly reduce the likelihood of exploitation and maintain the integrity of their applications.

MITRE CWE Description
The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product. This weakness covers three distinct situations. A "missing" protection mechanism occurs when the application does not define any mechanism against a certain class of attack. An "insufficient" protection mechanism might provide some defenses - for example, against the most common attacks - but it does not protect against everything that is intended. Finally, an "ignored" mechanism occurs when a mechanism is available and in active use within the product, but the developer has not applied it in some code path.
Common Consequences (1)
Access ControlBypass Protection Mechanism
CVE IDTitleCVSSSeverityPublished
CVE-2025-48003 Windows BitLocker Security Feature Bypass Vulnerability — Windows 10 Version 1809 6.8 Medium2025-07-08
CVE-2025-47984 Windows GDI Information Disclosure Vulnerability — Windows 10 Version 1507 7.5 High2025-07-08
CVE-2025-47159 Windows Virtualization-Based Security (VBS) Elevation of Privilege Vulnerability — Windows 10 Version 1507 7.8 High2025-07-08
CVE-2025-41224 Siemens多款产品 安全漏洞 — RUGGEDCOM RMC8388 V5.X 8.8 High2025-07-08
CVE-2025-49193 Missing HTTP Security Headers — Field Analytics 4.2 Medium2025-06-12
CVE-2025-33050 DHCP Server Service Denial of Service Vulnerability — Windows Server 2016 7.5 High2025-06-10
CVE-2025-32725 DHCP Server Service Denial of Service Vulnerability — Windows Server 2016 7.5 High2025-06-10
CVE-2025-47160 Windows Shortcut Files Security Feature Bypass Vulnerability — Windows 10 Version 1507 5.4 Medium2025-06-10
CVE-2025-46553 @misskey-dev/summaly Redirect Filter Bypass — summaly 6.1AIMediumAI2025-05-05
CVE-2025-26637 Windows BitLocker Security Feature Bypass Vulnerability — Windows 10 Version 1507 6.8 Medium2025-04-08
CVE-2025-27472 Windows Mark of the Web Security Feature Bypass Vulnerability — Windows 10 Version 1507 5.4 Medium2025-04-08
CVE-2025-21384 Azure Health Bot Elevation of Privilege Vulnerability — Azure Health Bot 8.3 High2025-04-01
CVE-2025-24061 Windows Mark of the Web Security Feature Bypass Vulnerability — Windows 10 Version 1507 7.8 High2025-03-11
CVE-2024-56182 Siemens SIMATIC 缓冲区错误漏洞 — SIMATIC Field PG M5 8.2 High2025-03-11
CVE-2024-56181 Siemens SIMATIC 缓冲区错误漏洞 — SIMATIC Field PG M5 8.2 High2025-03-11
CVE-2024-13794 Hide My WP Ghost – Security & Firewall <= 5.3.02 - Unauthenticated Login Page Disclosure — WP Ghost (Hide My WP Ghost) – Security & Firewall 5.3 Medium2025-02-12
CVE-2025-0411 7-Zip Mark-of-the-Web Bypass Vulnerability — 7-Zip 7.8 -2025-01-25
CVE-2025-0575 Union Bank of India Vyom Rooting Detection protection mechanism — Vyom 3.9 Low2025-01-19
CVE-2025-21211 Secure Boot Security Feature Bypass Vulnerability — Windows 10 Version 1507 6.8 Medium2025-01-14
CVE-2025-21217 Windows NTLM Spoofing Vulnerability — Windows 10 Version 1507 6.5 Medium2025-01-14
CVE-2025-21346 Microsoft Office Security Feature Bypass Vulnerability — Microsoft 365 Apps for Enterprise 7.1 High2025-01-14
CVE-2024-11734 Org.keycloak:keycloak-quarkus-server: denial of service in keycloak server via security headers 6.5 Medium2025-01-14
CVE-2024-8811 WinZip Mark-of-the-Web Bypass Vulnerability — WinZip 6.3 -2024-11-22
CVE-2024-11197 Lock User Account <= 1.0.5 - User Lock Bypass — Lock User Account 4.2 Medium2024-11-21
CVE-2021-1494 Snort 安全漏洞 — Cisco Firepower Threat Defense Software 5.8 Medium2024-11-15
CVE-2024-38203 Windows Package Library Manager Information Disclosure Vulnerability — Windows Server 2025 6.2 Medium2024-11-12
CVE-2024-43645 Windows Defender Application Control (WDAC) Security Feature Bypass Vulnerability — Windows 10 Version 1809 6.7 Medium2024-11-12
CVE-2024-51481 Nix allows macOS sandbox escape via built-in builders — nix 8.8 -2024-10-31
CVE-2024-43584 Windows Scripting Engine Security Feature Bypass Vulnerability — Windows Server 2022 7.7 High2024-10-08
CVE-2024-43585 Code Integrity Guard Security Feature Bypass Vulnerability — Windows 10 Version 1809 5.5 Medium2024-10-08

Vulnerabilities classified as CWE-693 (保护机制失效) represent 224 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.