Weaknesses of type CWE-20
4,753 resultsCVE-2021-25401—Intent redirection vulnerability in Samsung Health prior to version 6.16 allows attacker to execute privileged action.EPSS 0.3%CVE-2020-12487HIGHCommand Execution Vulnerability in ABE serviceEPSS 0.3%CVE-2022-47924MEDIUMArbitrary Code Execution using the validate function of csaf-validator-libEPSS 0.3%CVE-2026-9124MEDIUMInsufficient validation of untrusted input in Input in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker who had compromiseEPSS 0.3%CVE-2022-21181HIGHImproper input validation for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enaEPSS 0.3%CVE-2025-63785MEDIUMA DOM-based Cross-Site Scripting (XSS) vulnerability exists in the text editor feature of the Onlook web application 0.2.32. This vulnerabilEPSS 0.3%CVE-2025-66400MEDIUMmdast-util-to-hast unsanitized class attributeEPSS 0.3%CVE-2021-3675MEDIUMsynaTEE.signed.dll Out-Of-Bounds Heap WriteEPSS 0.3%CVE-2024-26002HIGHPHOENIX CONTACT: File ownership manipulation in CHARX SeriesEPSS 0.3%CVE-2026-14428HIGHInsufficient validation of untrusted input in Dawn in Google Chrome on Android prior to 150.0.7871.46 allowed a remote attacker who had compEPSS 0.3%CVE-2021-0154HIGHImproper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable aescalation ofEPSS 0.3%CVE-2025-48985LOWA vulnerability in Vercel’s AI SDK has been fixed in versions 5.0.52, 5.1.0-beta.9, and 6.0.0-beta. This issue may have allowed users to bypEPSS 0.3%CVE-2026-49234HIGHRoutinator crashes on specifically crafted ASN strings in the APIEPSS 0.3%CVE-2022-21136MEDIUMImproper input validation for some Intel(R) Xeon(R) Processors may allow a privileged user to potentially enable denial of service via localEPSS 0.3%CVE-2021-0159HIGHImproper input validation in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enabEPSS 0.3%CVE-2023-43758HIGHImproper input validation in UEFI firmware for some Intel(R) processors may allow a privileged user to potentially enable escalation of privEPSS 0.3%CVE-2026-11660HIGHInsufficient validation of untrusted input in New Tab Page in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had comproEPSS 0.3%CVE-2024-7980HIGHInsufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84 allowed a local attacker to perform privilege eEPSS 0.3%CVE-2026-13341HIGHPrompt Injection and Credential Exposure via Untrusted Analytics Data in Kong Konnect MCPEPSS 0.3%CVE-2025-67493HIGHHomarr: missing input sanitization and possible privilege escalation through ldap search query injectionEPSS 0.3%