Weaknesses of type CWE-20
4,681 resultsCVE-2008-2173HIGHUnspecified vulnerability in Yamaha routers allows remote attackers to cause a denial of service (dropped session) via crafted BGP UPDATE meEPSS 1.5%CVE-2008-2170HIGHUnspecified vulnerability in Century routers allows remote attackers to cause a denial of service (dropped session) via crafted BGP UPDATE mEPSS 1.5%CVE-2020-7842MEDIUMD'live AP command injection vulnerabilityEPSS 1.5%CVE-2023-25927MEDIUMIBM Security Verify Access denial of serviceEPSS 1.5%CVE-2022-26336—A carefully crafted TNEF file can cause an out of memory exceptionEPSS 1.5%CVE-2025-24446CRITICALColdFusion | Improper Input Validation (CWE-20)EPSS 1.5%CVE-2021-36742HIGHA improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG and Worry-Free Business Security 10.EPSS 1.5%KEVCVE-2017-2658LOWIt was discovered that the Dashbuilder login page as used in Red Hat JBoss BPM Suite before 6.4.2 and Red Hat JBoss Data Virtualization & SeEPSS 1.5%CVE-2024-3096MEDIUMPHP function password_verify can erroneously return true when argument contains NULEPSS 1.5%CVE-2024-7988CRITICALThinManager® ThinServer™ Information Disclosure and Remote Code Execution VulnerabilitiesEPSS 1.5%CVE-2018-0462—Cisco Enterprise NFV Infrastructure Software Denial of Service VulnerabilityEPSS 1.5%CVE-2020-7863HIGHRaonwiz RAON K Upload Arbitrary Command Execution VulnerabilityEPSS 1.5%CVE-2020-3444MEDIUMCisco SD-WAN Software Packet Filtering Bypass VulnerabilityEPSS 1.5%CVE-2022-46365CRITICALApache StreamPark (incubating): Logic error causing any account resetEPSS 1.5%CVE-2024-21316MEDIUMWindows Server Key Distribution Service Security Feature BypassEPSS 1.5%CVE-2021-36007LOWAdobe Prelude MP4 File Parsing Uninitialized Variable Information Disclosure VulnerabilityEPSS 1.5%CVE-2024-41115CRITICALRemote code execution in streamlit geospatial in pages/1_📷_Timelapse.py MODIS Ocean Color SMI option paletteEPSS 1.5%CVE-2022-39312CRITICALDataease Mysql Data Source JDBC Connection Parameters Not Verified Leads to Deserialization VulnerabilityEPSS 1.5%CVE-2022-21646HIGHLookup operations do not take into account wildcards in SpiceDBEPSS 1.5%CVE-2023-39913HIGHApache UIMA Java SDK Core, Apache UIMA Java SDK CPE, Apache UIMA Java SDK Vinci adapter, Apache UIMA Java SDK tools: Potential untrusted code execution when deserializing certain binary CAS formatsEPSS 1.5%