Weaknesses of type CWE-20

4,751 results
CVE-2026-10980MEDIUMInsufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromisedEPSS 0.3%CVE-2024-55630LOWDOM Clobbering leads to temporary DOS in the note viewer in JoplinEPSS 0.3%CVE-2022-21212MEDIUMImproper input validation for some Intel(R) PROSet/Wireless WiFi products may allow an unauthenticated user to potentially enable denial of EPSS 0.3%CVE-2026-13968HIGHInsufficient validation of untrusted input in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a useEPSS 0.3%CVE-2026-45352MEDIUMcpp-httplib DoS: Negative chunk-size in chunked Transfer-EncodingEPSS 0.3%CVE-2023-21621HIGHAdobe FrameMaker Improper Input Validation Remote Code Execution VulnerabilityEPSS 0.3%CVE-2023-26388HIGHZDI-CAN-20286: Adobe Substance 3D Stager USDZ File Parsing Memory Corruption Remote Code Execution VulnerabilityEPSS 0.3%CVE-2023-21574HIGHAdobe Photoshop Improper Input Validation Remote Code Execution VulnerabilityEPSS 0.3%CVE-2025-2305HIGHLocal file inclusion vulnerability in LIVE CONTRACTEPSS 0.3%CVE-2023-22228HIGHAdobe Bridge Improper Input Validation Remote Code Execution VulnerabilityEPSS 0.3%CVE-2023-21588HIGHAdobe InDesign Improper Input Validation Remote Code Execution VulnerabilityEPSS 0.3%CVE-2026-10974CRITICALInsufficient validation of untrusted input in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially performEPSS 0.3%CVE-2026-10983CRITICALInsufficient validation of untrusted input in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform EPSS 0.3%CVE-2023-21647MEDIUMImproper Input Validation in Bluetooth HOSTEPSS 0.3%CVE-2023-42798HIGHAutomataCI Release Job Can Revert Repo to First CommitEPSS 0.3%CVE-2026-21712MEDIUMA flaw in Node.js URL processing causes an assertion failure in native code when `url.format()` is called with a malformed internationalizedEPSS 0.3%CVE-2026-33769LOWAstro: Remote allowlist bypass via unanchored matchPathname wildcardEPSS 0.3%CVE-2026-6675MEDIUMResponsive Blocks <= 2.2.0 - Unauthenticated Open Email Relay via REST API 'email_to' ParameterEPSS 0.3%CVE-2026-11021CRITICALInsufficient validation of untrusted input in GPU in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had comprEPSS 0.3%CVE-2021-1514MEDIUMCisco SD-WAN Software Privilege Escalation VulnerabilityEPSS 0.3%