Fallos del tipo CWE-20
4711 resultadosCVE-2024-27201MEDIUMAn improper input validation vulnerability exists in the OAS Engine User Configuration functionality of Open Automation Software OAS PlatforEPSS 0.7%CVE-2023-29410HIGH
A CWE-20: Improper Input Validation vulnerability exists that could allow an authenticated
attacker to gain the same privilege as the appliEPSS 0.7%CVE-2024-43526MEDIUMWindows Mobile Broadband Driver Remote Code Execution VulnerabilityEPSS 0.7%CVE-2023-21494MEDIUMPotential buffer overflow vulnerability in auth api in mm_Authentication.c in Shannon baseband prior to SMR May-2023 Release 1 allows remoteEPSS 0.7%CVE-2024-43525MEDIUMWindows Mobile Broadband Driver Remote Code Execution VulnerabilityEPSS 0.7%CVE-2024-43523MEDIUMWindows Mobile Broadband Driver Remote Code Execution VulnerabilityEPSS 0.7%CVE-2024-30092HIGHWindows Hyper-V Remote Code Execution VulnerabilityEPSS 0.7%CVE-2026-49434HIGHApache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All: LdapNetworkConnector instantiates denied transports and a remote-properties brokerEPSS 0.7%CVE-2026-23571MEDIUMCommand Injection in 1E-Nomad-RunPkgStatusRequest Instruction in TeamViewer DEXEPSS 0.7%CVE-2024-22119MEDIUMStored XSS in graph items select formEPSS 0.7%CVE-2023-22730MEDIUMImproper Input Validation of Clearance sale in cartEPSS 0.7%CVE-2024-28103MEDIUMAction Pack is missing security headers on non-HTML responsesEPSS 0.7%CVE-2020-3319LOWCisco Webex Network Recording Player and Cisco Webex Player Denial of Service VulnerabilityEPSS 0.7%CVE-2020-3322LOWCisco Webex Network Recording Player and Cisco Webex Player Denial of Service VulnerabilityEPSS 0.7%CVE-2022-46401MEDIUMThe Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) accepts PauseEncReqPlainText before pEPSS 0.7%CVE-2023-20192CRITICALCisco Expressway Series and Cisco TelePresence Video Communication Server Privilege Escalation VulnerabilitiesEPSS 0.7%CVE-2025-21284MEDIUMWindows Virtual Trusted Platform Module Denial of Service VulnerabilityEPSS 0.7%CVE-2025-21280MEDIUMWindows Virtual Trusted Platform Module Denial of Service VulnerabilityEPSS 0.7%CVE-2024-3841HIGHInsufficient data validation in Browser Switcher in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to inject scripts or HTMLEPSS 0.7%CVE-2022-40237MEDIUMIBM MQ for HPE NonStop denial of serviceEPSS 0.7%