Weaknesses of type CWE-20
4,753 resultsCVE-2023-21472MEDIUMImproper input validation with Exynos Fastboot USB Interface prior to SMR Apr-2023 Release 1 allows a physical attacker to execute arbitraryEPSS 0.2%CVE-2025-67480NONElist=allrevisions can be used to bypass Extension:LockdownEPSS 0.2%CVE-2023-21473MEDIUMImproper input validation with Exynos Fastboot USB Interface prior to SMR Apr-2023 Release 1 allows a physical attacker to execute arbitraryEPSS 0.2%CVE-2024-52579MEDIUMServer-Side Request Forgery vulnerability in various APIs in MisskeyEPSS 0.2%CVE-2024-21810CRITICALImproper input validation in the Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 maEPSS 0.2%CVE-2026-42327HIGHrust-openssl: undefined behavior in X509Ref::ocsp_responders for certificates with non-UTF-8 OCSP URLsEPSS 0.2%CVE-2026-28821HIGHA validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement. ThEPSS 0.2%CVE-2024-54100MEDIUMVulnerability of improper access control in the secure input module
Impact: Successful exploitation of this vulnerability may cause featuresEPSS 0.2%CVE-2022-28791MEDIUMImproper input validation vulnerability in InstallAgent in Galaxy Store prior to version 4.5.41.8 allows attacker to overwrite files stored EPSS 0.2%CVE-2021-33161HIGHImproper input validation in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware may allow a privilEPSS 0.2%CVE-2024-45441MEDIUMInput verification vulnerability in the system service module
Impact: Successful exploitation of this vulnerability will affect availabilityEPSS 0.2%CVE-2026-11069MEDIUMInsufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin pEPSS 0.2%CVE-2025-41378MEDIUMInjection vulnerability in Iridium Certus 700EPSS 0.2%CVE-2024-22429HIGHDell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with admin privileges could potentially EPSS 0.2%CVE-2025-43195MEDIUMAn issue existed in the handling of environment variables. This issue was addressed with improved validation. This issue is fixed in macOS SEPSS 0.2%CVE-2024-54140LOWsigstore-java has a vulnerability with bundle verificationEPSS 0.2%CVE-2026-3230LOWImproper key_share validation in TLS 1.3 HelloRetryRequestEPSS 0.2%CVE-2026-6779MEDIUMOther issue in the JavaScript Engine componentEPSS 0.2%CVE-2025-11497MEDIUMAdvanced Database Cleaner <= 3.1.6 - Cross-Site Request Forgery to Settings ManipulationEPSS 0.2%CVE-2026-12017LOWInappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderEPSS 0.2%