Weaknesses of type CWE-20

4,734 results
CVE-2022-34844MEDIUMBIG-IP and BIG-IQ AWS vulnerability CVE-2022-34844EPSS 0.6%CVE-2025-1701HIGHLocal Privilege Escalation in MIM Admin ServiceEPSS 0.6%CVE-2019-19163HIGHCommax WallPad Remote Code Execution VulnerabilityEPSS 0.6%CVE-2021-29462HIGHDNS rebinding in pupnpEPSS 0.6%CVE-2023-5079HIGHLenovo LeCloud App improper input validation allows attackers to access arbitrary components and arbitrary file downloads, which could resulEPSS 0.6%CVE-2024-45537MEDIUMApache Druid: Users can provide MySQL JDBC properties not on allow listEPSS 0.6%CVE-2023-31203MEDIUMImproper input validation in some OpenVINO Model Server software before version 2022.3 for Intel Distribution of OpenVINO toolkit may allow EPSS 0.6%CVE-2025-40746CRITICALA vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V3.2). Affected products do not properly validate inputEPSS 0.6%CVE-2018-0197Cisco IOS and IOS XE Software VLAN Trunking Protocol Denial of Service VulnerabilityEPSS 0.6%CVE-2019-19095MEDIUMABB eSOMS: Stored XSS vulnerabilityEPSS 0.6%CVE-2023-47106MEDIUMIncorrect processing of fragment in the URL leads to Authorization Bypass in TraefikEPSS 0.6%CVE-2023-52296MEDIUMIBM Db2 for Linux, UNIX and Windows denial of serviceEPSS 0.6%CVE-2023-21503MEDIUMPotential buffer overflow vulnerability in mm_LteInterRatManagement.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attaEPSS 0.6%CVE-2023-21504MEDIUMPotential buffer overflow vulnerability in mm_Plmncoordination.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackersEPSS 0.6%CVE-2022-32242When a user opens manipulated Radiance Picture (.hdr, hdr.x3d) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, theEPSS 0.6%CVE-2023-39539HIGHFailure when uploading a Logo image fileEPSS 0.6%CVE-2020-26082MEDIUMA vulnerability in the zip decompression engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthentiEPSS 0.6%CVE-2022-32238When a user opens manipulated Encapsulated Post Script (.eps, ai.x3d) files received from untrusted sources in SAP 3D Visual Enterprise ViewEPSS 0.6%CVE-2024-38307HIGHImproper input validation in the firmware for some Intel(R) AMT and Intel(R) Standard Manageability may allow an authenticated user to potenEPSS 0.6%CVE-2025-4377HIGHPath traversal vulnerability in Sparx Pro Cloud Server WebEA webconfig in logview.phpEPSS 0.6%