Weaknesses of type CWE-20
4,753 resultsCVE-2022-30712HIGHImproper validation vulnerability in KfaOptions prior to SMR Jun-2022 Release 1 allows attackers to launch certain activities.EPSS 0.2%CVE-2024-31965MEDIUMA vulnerability on Mitel 6800 Series and 6900 Series SIP Phones through 6.3 SP3 HF4, 6900w Series SIP Phone through 6.3.3, and 6970 ConferenEPSS 0.2%CVE-2023-48368MEDIUMImproper input validation in Intel(R) Media SDK software all versions may allow an authenticated user to potentially enable denial of servicEPSS 0.2%CVE-2024-25010HIGHEricsson RAN Compute and Site Controller 6610 - Improper Input Validation VulnerabilityEPSS 0.2%CVE-2025-8007HIGHRockwell Automation 1756-ENT2R, EN4TR, EN4TRXT VulnerabilityEPSS 0.2%CVE-2022-28611MEDIUMImproper input validation in some Intel(R) XMM(TM) 7560 Modem software before version M2_7560_R_01.2146.00 may allow a privileged user to poEPSS 0.2%CVE-2025-24785MEDIUMiTop dashboard vulnerable to denial of serviceEPSS 0.2%CVE-2024-34118MEDIUMAdobe illustrator 2024 TIF File parsing Division by zero denial of serviceEPSS 0.2%CVE-2026-13959MEDIUMInsufficient validation of untrusted input in Blink in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin EPSS 0.2%CVE-2026-21687HIGHiccDEV has Undefined Behavior in CIccTagCurve::CIccTagCurve()EPSS 0.2%CVE-2021-26323—Failure to validate SEV Commands while SNP is active may result in a potential impact to memory integrity.EPSS 0.2%CVE-2024-20406HIGHCisco IOS XR Software Intermediate System-to-Intermediate System Denial of Service VulnerabilityEPSS 0.2%CVE-2026-7967HIGHInsufficient validation of untrusted input in Navigation in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromisEPSS 0.2%CVE-2026-5885MEDIUMInsufficient validation of untrusted input in WebML in Google Chrome on Windows prior to 147.0.7727.55 allowed a remote attacker to obtain pEPSS 0.2%CVE-2026-14401HIGHInsufficient validation of untrusted input in ANGLE in Google Chrome on Android prior to 150.0.7871.46 allowed a remote attacker who had comEPSS 0.2%CVE-2023-34440HIGHImproper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privEPSS 0.2%CVE-2026-42261HIGHPromptHub: Authenticated SSRF via IPv6 filter bypass in `POST /api/skills/fetch-remote`EPSS 0.2%CVE-2024-28047MEDIUMImproper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable information discloEPSS 0.2%CVE-2024-28127HIGHImproper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privEPSS 0.2%CVE-2021-25504MEDIUMIntent redirection vulnerability in Group Sharing prior to 10.8.03.2 allows attacker to access contact information.EPSS 0.2%