Weaknesses of type CWE-20

4,753 results
CVE-2026-11244LOWInsufficient validation of untrusted input in WebAuthentication in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had coEPSS 0.2%CVE-2025-21477HIGHImproper Input Validation in ModemEPSS 0.2%CVE-2026-7965LOWInsufficient validation of untrusted input in DevTools in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromisedEPSS 0.2%CVE-2026-24347MEDIUMArbitrary file write to /tmp directory in EZCast Pro II DongleEPSS 0.2%CVE-2022-24379HIGHImproper input validation in some Intel(R) Server System M70KLP Family BIOS firmware before version 01.04.0029 may allow a privileged user tEPSS 0.2%CVE-2023-39411MEDIUMImproper input validationation for some Intel Unison software may allow a privileged user to potentially enable denial of service via local EPSS 0.2%CVE-2023-39537HIGHImproper input validation in BIOS TCG2EPSS 0.2%CVE-2023-39535HIGHImproper input validation in BIOS EPSS 0.2%CVE-2023-39536HIGHImproper input validation in BIOS OFBDEPSS 0.2%CVE-2025-12718MEDIUMQuick Contact Form <= 8.2.6 - Unauthenticated Open Mail RelayEPSS 0.2%CVE-2025-67163MEDIUMA stored cross-site scripting (XSS) vulnerability in Simple Machines Forum v2.1.6 allows attackers to execute arbitrary web scripts or HTML EPSS 0.2%CVE-2022-33209HIGHImproper input validation in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 may allow a privileged user to potentiallyEPSS 0.2%CVE-2026-8714HIGHDenial-of-Service Vulnerability in RTSP Input Handling on TP-Link's Tapo C520WSEPSS 0.2%CVE-2023-28402HIGHImproper input validation in some Intel(R) BIOS Guard firmware may allow a privileged user to potentially enable escalation of privilege viaEPSS 0.2%CVE-2025-53502MEDIUMHTML injection in FeaturedFeedsEPSS 0.2%CVE-2023-30434MEDIUMIBM Storage Scale denial of serviceEPSS 0.2%CVE-2025-40556HIGHA vulnerability has been identified in BACnet ATEC 550-440 (All versions), BACnet ATEC 550-441 (All versions), BACnet ATEC 550-445 (All versEPSS 0.2%CVE-2026-43708MEDIUMThe issue was addressed with improved input validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5EPSS 0.2%CVE-2025-6377HIGHArena® Simulation Out-Of-Bounds Write Remote Code Execution VulnerabilityEPSS 0.2%CVE-2025-6376HIGHArena® Simulation Out-Of-Bounds Write Remote Code Execution VulnerabilityEPSS 0.2%