Fallos del tipo CWE-123
44 resultadosCVE-2026-43284HIGHxfrm: esp: avoid in-place decrypt on shared skb fragsEPSS 93.4%CVE-2025-55298HIGHImageMagick Format String Bug in InterpretImageFilename leads to arbitrary code executionEPSS 4.1%CVE-2014-5435—An arbitrary memory write vulnerability exists in the dual_onsrv.exe module in Honeywell Experion PKS R40x before R400.6, R41x before R410.6EPSS 3.5%CVE-2024-42479CRITICALllama.cpp allows write-what-where in rpc_server::set_tensorEPSS 2.6%CVE-2020-16225—Delta Electronics TPEditor Versions 1.97 and prior. A write-what-where condition may be exploited by processing a specially crafted project EPSS 2.1%CVE-2021-38441MEDIUMEclipse CycloneDDS Write-what-where ConditionEPSS 2.0%CVE-2022-38143CRITICALA heap out-of-bounds write vulnerability exists in the way OpenImageIO v2.3.19.0 processes RLE encoded BMP images. A specially-crafted bmp fEPSS 1.4%CVE-2020-7560—A CWE-123: Write-what-where Condition vulnerability exists in EcoStruxure™ Control Expert (all versions) and Unity Pro (former name of EcoStEPSS 1.4%CVE-2020-2001HIGHPAN-OS: Panorama External control of file vulnerability leads to privilege escalationEPSS 1.3%CVE-2021-38449CRITICALAUVESY VersiondogEPSS 1.2%CVE-2024-2607HIGHReturn registers were overwritten which could have allowed an attacker to execute arbitrary code. *Note:* This issue only affected Armv7-A sEPSS 1.1%CVE-2021-42540HIGHEmerson WirelessHART GatewayEPSS 1.0%CVE-2025-22225HIGHVMware ESXi contains an arbitrary write vulnerability. A malicious actor with privileges within the VMX process may trigger an arbitrary kerEPSS 1.0%KEVCVE-2025-62164HIGHVLLM deserialization vulnerability leading to DoS and potential RCEEPSS 0.8%CVE-2025-9900HIGHLibtiff: libtiff write-what-whereEPSS 0.7%CVE-2022-37904MEDIUMVulnerabilities in ArubaOS running on 7xxx series controllers exist that allows an attacker to execute arbitrary code during the boot sequenEPSS 0.7%CVE-2024-36877HIGHMicro-Star International Z-series motherboards (Z590, Z490, and Z790) and B-series motherboards (B760, B560, B660, and B460) with firmware 7EPSS 0.7%CVE-2022-41757HIGHAn issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to obtain writeEPSS 0.7%CVE-2021-36057MEDIUMXMP Toolkit SDK Write-What-Where Condition Could Lead To Local Application Denial Of ServiceEPSS 0.6%CVE-2025-69809CRITICALA write-what-where condition in p2r3 Bareiron commit 8e4d40 allows unauthenticated attackers to write arbitrary values to memory, enabling aEPSS 0.5%