Weaknesses of type CWE-20
4,585 resultsCVE-2019-15961HIGHClam AntiVirus (ClamAV) Software Email Parsing VulnerabilityEPSS 3.1%CVE-2017-3858—A vulnerability in the web framework of Cisco IOS XE Software could allow an authenticated, remote attacker to inject arbitrary commands thaEPSS 3.1%CVE-2019-12689HIGHCisco Firepower Management Center Remote Code Execution VulnerabilityEPSS 3.1%CVE-2019-1716HIGHCisco IP Phone 7800 Series and 8800 Series Remote Code Execution VulnerabilityEPSS 3.1%CVE-2018-0387—A vulnerability in Cisco Webex Teams (for Windows and macOS) could allow an unauthenticated, remote attacker to execute arbitrary code on thEPSS 3.1%CVE-2018-1139MEDIUMA flaw was found in the way samba before 4.7.9 and 4.8.4 allowed the use of weak NTLMv1 authentication even when NTLMv1 was explicitly disabEPSS 3.1%CVE-2020-3111HIGHCisco IP Phone Remote Code Execution and Denial of Service VulnerabilityEPSS 3.1%CVE-2025-34101CRITICALServiio Media Server Unauthenticated Command Injection via checkStreamUrl VIDEO ParameterEPSS 3.1%CVE-2025-55692HIGHWindows Error Reporting Service Elevation of Privilege VulnerabilityEPSS 3.1%CVE-2020-10738HIGHA flaw was found in Moodle versions 3.8 before 3.8.3, 3.7 before 3.7.6, 3.6 before 3.6.10, 3.5 before 3.5.12 and earlier unsupported versionEPSS 3.1%CVE-2024-20666MEDIUMBitLocker Security Feature Bypass VulnerabilityEPSS 3.1%CVE-2022-20698HIGHClam AntiVirus (ClamAV) Denial of Service VulnerabilityEPSS 3.1%CVE-2021-41561—Apache Parquet-MR potential DoS in case of malicious Parquet fileEPSS 3.1%CVE-2016-9219—A vulnerability with IPv6 UDP ingress packet processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remoEPSS 3.0%CVE-2018-0349—A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying opEPSS 3.0%CVE-2022-26780CRITICALMultiple improper input validation vulnerabilities exists in the libnvram.so nvram_import functionality of InHand Networks InRouter302 V3.5.EPSS 3.0%CVE-2022-26782CRITICALMultiple improper input validation vulnerabilities exists in the libnvram.so nvram_import functionality of InHand Networks InRouter302 V3.5.EPSS 3.0%CVE-2023-3466HIGHReflected Cross-Site Scripting (XSS)
EPSS 3.0%CVE-2016-9158HIGHA vulnerability has been identified in SIMATIC S7-300 CPU family (All versions), SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPEPSS 3.0%CVE-2018-0345—A vulnerability in the configuration and management database of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to eEPSS 3.0%