Weaknesses of type CWE-20

4,751 results
CVE-2026-6675MEDIUMResponsive Blocks <= 2.2.0 - Unauthenticated Open Email Relay via REST API 'email_to' ParameterEPSS 0.3%CVE-2023-33104HIGHImproper input Validation in Multi-Mode Call ProcessorEPSS 0.3%CVE-2020-3477MEDIUMCisco IOS and IOS XE Software Information Disclosure VulnerabilityEPSS 0.3%CVE-2026-3460MEDIUMREST API TO MiniProgram <= 5.1.2 - Authenticated (Subscriber+) Insecure Direct Object Reference via 'userid' REST API ParameterEPSS 0.3%CVE-2026-42544HIGHGranian: Unauthenticated DoS via WebSocket subprotocol header panicEPSS 0.3%CVE-2026-13791HIGHInsufficient validation of untrusted input in Downloads in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to EPSS 0.3%CVE-2023-33100HIGHImproper input validation in Multi-Mode Call ProcessorEPSS 0.3%CVE-2023-33099HIGHImproper Input Validation in Multi-Mode Call ProcessorEPSS 0.3%CVE-2026-42459HIGHfree5GC: Improper Input Validation and Generation of Error Message Containing Sensitive Information in github.com/free5gc/udmEPSS 0.3%CVE-2024-23676MEDIUMSensitive Information Disclosure of Index Metrics through “mrollup” SPL CommandEPSS 0.3%CVE-2023-33057HIGHImproper Input Validation in Multi-Mode Call ProcessorEPSS 0.3%CVE-2023-33103HIGHImproper Input Validation in Multi-Mode Call ProcessorEPSS 0.3%CVE-2026-10971HIGHInsufficient validation of untrusted input in Printing in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had EPSS 0.3%CVE-2025-40593HIGHA vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0). The affected application allows to control the device by storiEPSS 0.3%CVE-2023-41781MEDIUMXSS Vulnerability in ZTE MF258 ProductsEPSS 0.3%CVE-2025-10630MEDIUMRegex DoS in Grafana Zabbix PluginEPSS 0.3%CVE-2020-1619MEDIUMJunos OS: QFX10K Series, EX9200 Series, MX Series, PTX Series: Privilege escalation vulnerability in NG-RE.EPSS 0.3%CVE-2020-16237LOWPhilips SureSigns VS4 Improper Input ValidationEPSS 0.3%CVE-2026-27585MEDIUMCaddy's improper sanitization of glob characters in file matcher may lead to bypassing security protectionsEPSS 0.3%CVE-2023-32480MEDIUM Dell BIOS contains an Improper Input Validation vulnerability. An unauthenticated physical attacker may potentially exploit this vulnerabilEPSS 0.3%