Weaknesses of type CWE-394
14 resultsCVE-2018-20802MEDIUMPost-auth queries on compound index may crash mongodEPSS 1.5%CVE-2019-0066HIGHJunos OS: A malformed IPv4 packet received by Junos in an NG-mVPN scenario may cause the routing protocol daemon (rpd) process to coreEPSS 1.4%CVE-2019-20924MEDIUMInvariant in IndexBoundsBuilderEPSS 1.3%CVE-2022-24880MEDIUMPotential Captcha Validate Bypass in flask-session-captchaEPSS 1.1%CVE-2023-48429LOWA vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 2). The Web UI of affected devices does not check the lengtEPSS 0.6%CVE-2024-1713HIGHPlv8 Deferred Trigger Privilege EscalationEPSS 0.5%CVE-2023-25948HIGHServer Data type confusion - info leak EPSS 0.5%CVE-2026-25085HIGHCopeland XWEB and XWEB Pro Unexpected Status Code or Return ValueEPSS 0.5%CVE-2025-23013HIGHIn Yubico pam-u2f before 1.3.1, local privilege escalation can sometimes occur. This product implements a Pluggable Authentication Module (PEPSS 0.4%CVE-2025-12516CRITICALLack of Graceful Error Handling - HTTP 5xx ErrorEPSS 0.3%CVE-2025-12515CRITICALSystemic Internal Server Errors - HTTP 500 ResponseEPSS 0.3%CVE-2023-28975MEDIUMJunos OS: The kernel will crash when certain USB devices are insertedEPSS 0.3%CVE-2025-22854MEDIUMPossible thread exhaustion from processing http responses in PingFederate Google AdapterEPSS 0.3%CVE-2025-48510HIGHImproper return value within AMD uProf can allow a local attacker to bypass KSLR, potentially resulting in loss of confidentiality or availaEPSS 0.1%