Weaknesses of type CWE-1284
234 resultsCVE-2024-47257HIGHFlorent Thiéry has found that selected Axis devices were vulnerable to handling certain ethernet frames which could lead to the Axis device EPSS 0.5%CVE-2026-2229HIGHundici is vulnerable to Unhandled Exception in undici WebSocket Client Due to Invalid server_max_window_bits ValidationEPSS 0.5%CVE-2024-9448HIGHOn affected platforms running Arista EOS with Traffic Policies configured the vulnerability will cause received untagged packets not to hit Traffic Policy rules that they are expected to hit. If the rule was to drop the packet, the packet will not be droppEPSS 0.5%CVE-2026-54092MEDIUMFile Browser: DoS Vulnerability on Public Login APIEPSS 0.5%CVE-2024-24715MEDIUMWordPress WordPress BookIt Plugin plugin <= 2.4.0 - Price Bypass Vulnerability vulnerabilityEPSS 0.5%CVE-2026-9801MEDIUMKeycloak: keycloak: denial of service via malformed ldap password policy responseEPSS 0.5%CVE-2025-14513HIGHImproper Validation of Specified Quantity in Input in GitLabEPSS 0.5%CVE-2025-2826LOWn affected platforms running Arista EOS, ACL policies may not be enforced. IPv4 ingress ACL, MAC ingress ACL, or IPv6 standard ingress ACL enabled on one or more ethernet or LAG interfaces may result in ACL policies not being enforced for ingress packets.EPSS 0.5%CVE-2025-2256HIGHImproper Validation of Specified Quantity in Input in GitLabEPSS 0.5%CVE-2025-43972MEDIUMAn issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer EPSS 0.5%CVE-2026-31970HIGHHTSlib BGZF index file reader has a heap buffer overflowEPSS 0.5%CVE-2026-12059HIGHCellopoint|CelloOS - Improper Access ControlEPSS 0.4%CVE-2026-33349MEDIUMfast-xml-parser: Entity Expansion Limits Bypassed When Set to Zero Due to JavaScript Falsy EvaluationEPSS 0.4%CVE-2024-5931MEDIUMBT: Unchecked user input in bap_broadcast_assistantEPSS 0.4%CVE-2026-25345CRITICALWordPress SimpLy Gallery plugin <= 3.3.2 - Arbitrary Code Execution vulnerabilityEPSS 0.4%CVE-2026-8047HIGHOut-of-bounds Write in CODESYS ControlEPSS 0.4%CVE-2024-3317MEDIUMSailPoint Identity Security Cloud Improper Access ControlEPSS 0.4%CVE-2022-20445HIGHIn process_service_search_rsp of sdp_discovery.cc, there is a possible out of bounds read due to improper input validation. This could lead EPSS 0.4%CVE-2026-25863HIGHConditional Fields for Contact Form 7 < 2.7.3 DoS via Uncontrolled Resource ConsumptionEPSS 0.4%CVE-2025-10094MEDIUMImproper Validation of Specified Quantity in Input in GitLabEPSS 0.4%