Weaknesses of type CWE-20

4,693 results
CVE-2022-24952Several denial of service vulnerabilities exist in Eternal Terminal prior to version 6.2.0, including a DoS triggered remotely by an invalidEPSS 1.3%CVE-2023-46116CRITICALRemote Code Execution via insufficiently sanitized call to shell.openExternalEPSS 1.3%CVE-2022-36087MEDIUMOAuthLib vulnerable DoS when attacker provides malicious IPV6 URIEPSS 1.3%CVE-2024-3657HIGH389-ds-base: potential denial of service via specially crafted kerberos as-req requestEPSS 1.3%CVE-2020-15112MEDIUMImproper Input Validation in etcdEPSS 1.3%CVE-2020-7504A CWE-20: Improper Input Validation vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which could allow an attacker toEPSS 1.3%CVE-2021-3910MEDIUMNUL character in ROA causes OctoRPKI to crashEPSS 1.3%CVE-2019-0965HIGHWindows Hyper-V Remote Code Execution VulnerabilityEPSS 1.3%CVE-2024-5171CRITICALheap buffer overflow in libaomEPSS 1.3%CVE-2018-19952If exploited, this SQL injection vulnerability could allow remote attackers to obtain application information. This issue affects: QNAP SystEPSS 1.3%CVE-2018-1078OpenDayLight version Carbon SR3 and earlier contain a vulnerability during node reconciliation that can result in traffic flows that should EPSS 1.3%CVE-2020-5130SonicOS SSLVPN LDAP login request allows remote attackers to cause external service interaction (DNS) due to improper validation of the requEPSS 1.3%CVE-2021-20195A flaw was found in keycloak in versions before 13.0.0. A Self Stored XSS attack vector escalating to a complete account takeover is possiblEPSS 1.2%CVE-2021-26617HIGHGabia Firstmall remote code execution vulnerabilityEPSS 1.2%CVE-2021-36321HIGHDell Networking X-Series firmware versions prior to 3.0.1.8 contain an improper input validation vulnerability. A remote unauthenticated attEPSS 1.2%CVE-2026-33000CRITICALA malicious actor with access to the network and high privileges could exploit an Improper Input Validation vulnerability found in UniFi OS EPSS 1.2%CVE-2022-44617HIGHA flaw was found in libXpm. When processing a file with width of 0 and a very large height, some parser functions will be called repeatedly EPSS 1.2%CVE-2021-34432In Eclipse Mosquitto versions 2.07 and earlier, the server will crash if the client tries to send a PUBLISH packet with topic length = 0.EPSS 1.2%CVE-2022-25271Drupal core's form API has a vulnerability where certain contributed or custom modules' forms may be vulnerable to improper input validationEPSS 1.2%CVE-2022-23623HIGHValidation bypass in frourioEPSS 1.2%