CVEbaza.plCWE DictionaryCWE-1108
Common Weakness Enumeration

CWE-1108

Excessive Reliance on Global Variables

Category: BaseCVE: 3
Description

The code is structured in a way that relies too much on using or setting global variables throughout various points in the code, instead of preserving the associated information in a narrower, more local context.

CVE vulnerabilities with CWE-1108 (3)
9.2
CVSS
CRITICAL
CVE-2026-32841

Edimax GS-5008PL firmware versions 1.00.54 and prior contain an authentication bypass vulnerability that allows unauthenticated attackers to access the management interface. Attackers can exploit the global authentication flag mechanism to gain administrative access without credentials after any user authenticates, enabling unauthorized password changes, firmware uploads, and configuration modifications.

pub. 2026-03-17
7.5
CVSS
HIGH
CVE-2022-2642

Horner Automation’s RCC 972 firmware version 15.40 contains global variables. This could allow an attacker to read out sensitive values and variable keys from the device.

pub. 2022-12-02
5.7
CVSS
MEDIUM
CVE-2024-47827

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. Due to a race condition in a global variable in 3.6.0-rc1, the argo workflows controller can be made to crash on-command by any user with access to execute a workflow. This vulnerability is fixed in 3.6.0-rc2.

pub. 2024-10-28
Information
ID: CWE-1108
Type: Base
Vulnerabilities: 3
MITRE CWE ↗
← CWE Dictionary