CWE-1100— Insufficient Isolation of System-Dependent Functions
The product or code does not isolate system-dependent functionality into separate standalone modules.— MITRE CWE catalog
5 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-1100page 1 of 1
- CVE-2024-7045MEDIUMCVSS 4.3EG 4.32025-03-20
In version v0.3.8 of open-webui/open-webui, improper access control vulnerabilities allow an attacker to view any prompts. The application does not verify whether the attacker is an administrator, allowing the attacker to directly call the…
- CVE-2024-9612MEDIUMCVSS 6.5EG 6.52025-03-20
In danswer-ai/danswer v0.3.94, administrators can set the visibility of pages within a workspace, including the search page. When the search page is set to be invisible, regular users cannot view the search page or access its functionaliti…
- CVE-2025-3466HIGHCVSS 7.2EG 9.82025-07-07
langgenius/dify versions 1.1.0 to 1.1.2 are vulnerable to unsanitized input in the code node, allowing execution of arbitrary code with full root permissions. The vulnerability arises from the ability to override global functions in JavaSc…
- CVE-2026-44007CRITICALCVSS 9.1EG 9.12026-05-13
vm2 is an open source vm/sandbox for Node.js. Prior to 3.11.1, when a NodeVM is created with nesting: true, sandbox code can unconditionally require('vm2') regardless of the outer VM's require configuration — including require: false. Wi…
- CVE-2026-44008CRITICALCVSS 9.8EG 9.82026-05-13
vm2 is an open source vm/sandbox for Node.js. Prior to 3.11.2, the new method neutralizeArraySpeciesBatch works with objects from the other side but can call into this side via getter on the array prototype exposing objects of the wrong si…
Map vulnerabilities like CWE-1100 to your infrastructure
EchelonGraph correlates every CVE — across CWE-1100 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →