CWE-357: Insufficient UI Warning of Dangerous Operations
low-riskThe user interface provides a warning to a user regarding dangerous or sensitive operations, but the warning is not noticeable enough to warrant attention.
Abstraction: Base
Common Consequences
Non-Repudiation
→
Hide Activities
Real-World Examples (10)
| CVE | CVSS | EPSS | KEV |
|---|---|---|---|
| CVE-2024-21387 | 5.3 | 4.2% | — |
| CVE-2024-26188 | 4.3 | 3.3% | — |
| CVE-2025-49582 | 8.0 | 1.3% | — |
| CVE-2024-43505 | 7.8 | 1.0% | — |
| CVE-2024-29057 | 4.3 | 1.0% | — |
| CVE-2025-49585 | 8.0 | 0.6% | — |
| CVE-2025-49587 | 8.0 | 0.6% | — |
| CVE-2024-43580 | 5.4 | 0.3% | — |
| CVE-2021-22645 | 7.8 | 0.3% | — |
| CVE-2024-21336 | 2.5 | 0.3% | — |
0
/ 100
low-risk
Active Threat
0/50 · Minimal
Exploit Availability
0/50 · Minimal