Cyber Resilience

CWE · MITRE source

CWE-453Insecure Default Variable Initialization

Abstraction: Variant · CVEs in our corpus: 18

The product, by default, initializes an internal variable with an insecure or less secure value than is possible.

Last updated: 04 July 2026 00:28 UTC

NIST 800-53 r5 controls that address this weakness (0)AI

Control Title Family Why it addresses this CWE
No NIST controls proposed yet.

Top CVEs of this weakness type, ranked by Risk Priority

CVE Risk CVSS EPSS Published
CVE-2021-274267.09.80.01162022-03-23
CVE-2025-302067.09.80.00722025-04-15
CVE-2025-47945 UPD7.09.10.00572025-05-17
CVE-2022-32625.58.10.00722022-12-08
CVE-2023-275165.57.30.00532023-10-12
CVE-2024-21411 UPD5.58.80.02622024-03-12
CVE-2024-412555.57.50.00242024-07-31
CVE-2024-491205.58.10.01062024-12-12
CVE-2025-48563 UPD5.57.80.00082025-09-04
CVE-2026-00825.57.80.00162026-06-17
CVE-2022-468313.56.60.00452022-12-08
CVE-2022-471943.55.40.00822023-01-19
CVE-2022-471953.55.40.00682023-01-19
CVE-2022-471963.55.40.00682023-01-19
CVE-2022-471973.55.40.01022023-01-19
CVE-2024-399163.56.40.00292024-07-12
CVE-2026-413303.54.40.00122026-04-21