CWE hub

CWE-394 vulnerabilities

This hub groups CVEs that NVD maps to CWE-394, so you can review recent disclosures, common vendors, and related weakness patterns in one place.

RSS View CWE-394 on MITRE

Definition mirrored from MITRE CWE (MITRE CWE 4.13). CVE list is sourced live from NVD.

Mapped CVEs

Records currently returned for this weakness id.

Top vendor

copeland

1 mapped CVEs in the aggregate scan.

Weakness roll-up for CWE-394

Showing 1-1 of 1 vulnerabilities.

CWE: CWE-394

Sort current page

CVE-2026-25085HighCVSS8.6Published Feb 27, 2026

A vulnerability exists in Copeland XWEB Pro version 1.12.1 and prior, in which an unexpected return value from the authentication routine is later on processed as a legitimate value, resulting in an authentication bypass.

Affected vendor

copeland

Affected product

xweb 500b pro firmware

Coverage

3 affected product entries

CVSS

8.6

HIGH

Published

Feb 27, 2026