Weaknesses of type CWE-502
2,215 resultsCVE-2022-39311CRITICALCompromised agents may be able to execute remote code on GoCD ServerEPSS 1.6%CVE-2024-27281MEDIUMAn issue was discovered in RDoc 6.3.3 through 6.6.2, as distributed in Ruby 3.x through 3.3.0. When parsing .rdoc_options (used for configurEPSS 1.6%CVE-2020-36726CRITICALUltimate Reviews < 2.1.33 - PHP Object InjectionEPSS 1.6%CVE-2025-21364HIGHMicrosoft Excel Security Feature Bypass VulnerabilityEPSS 1.6%CVE-2023-5183CRITICALAuthenticated RCE due to unsafe JSON deserializationEPSS 1.6%CVE-2024-29212CRITICALDue to an unsafe de-serialization method used by the Veeam Service Provider Console(VSPC) server in communication between the management agEPSS 1.6%CVE-2023-21762HIGHMicrosoft Exchange Server Spoofing VulnerabilityEPSS 1.6%CVE-2023-51576CRITICALVoltronic Power ViewPower Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 1.5%CVE-2024-12433CRITICALRemote Code Execution in infiniflow/ragflowEPSS 1.5%CVE-2024-28861CRITICALGadget chain in Symfony 1 due to uncontrolled unserialized input in sfNamespacedParameterHolderEPSS 1.5%CVE-2026-3059CRITICALCVE-2026-3059EPSS 1.5%CVE-2024-22871HIGHAn issue in Clojure versions 1.20 to 1.12.0-alpha5 allows an attacker to cause a denial of service (DoS) via the clojure.core$partial$fn__59EPSS 1.5%CVE-2022-40314CRITICALA remote code execution risk when restoring backup files originating from Moodle 1.9 was identified.EPSS 1.5%CVE-2022-45136CRITICALApache Jena SDB allows arbitrary deserialisation via JDBCEPSS 1.5%CVE-2023-38647CRITICALApache Helix: Deserialization vulnerability in Helix workflow and RESTEPSS 1.5%CVE-2024-5580HIGHAllegra loadFieldMatch Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 1.5%CVE-2024-5579HIGHAllegra renderFieldMatch Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 1.5%CVE-2021-33728—A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system allows to upload JSON objects that EPSS 1.5%CVE-2023-50219HIGHInductive Automation Ignition RunQuery Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 1.5%CVE-2022-31115HIGHUnsafe YAML deserialization in opensearch-rubyEPSS 1.5%