CWE-176: Improper Handling of Unicode Encoding
low-riskThe product does not properly handle when an input contains Unicode encoding.
Abstraction: Variant
Common Consequences
Integrity
→
Unexpected State
Real-World Examples (10)
| CVE | CVSS | EPSS | KEV |
|---|---|---|---|
| CVE-2023-39213 | 9.6 | 0.8% | — |
| CVE-2024-24691 | 9.6 | 0.3% | — |
| CVE-2024-43093 | 7.3 | 0.2% | Y |
| CVE-2023-41889 | 5.3 | 0.2% | — |
| CVE-2023-52081 | 5.3 | 0.1% | — |
| CVE-2020-8929 | 5.3 | 0.1% | — |
| CVE-2025-59547 | 5.3 | 0.1% | — |
| CVE-2023-31169 | 4.8 | 0.1% | — |
| CVE-2026-4116 | 7.2 | 0.0% | — |
| CVE-2025-55129 | 5.4 | 0.0% | — |
2
/ 100
low-risk
Active Threat
0/50 · Minimal
Exploit Availability
2/50 · Minimal