Fallos del tipo CWE-20

4713 resultados
CVE-2017-3180Multiple TIBCO Spotfire components fail to sanitize user-supplied inout and are vulnerable to cross-site scriptingEPSS 0.6%CVE-2025-65946HIGHRoo Code is Vulnerable to Potential Remote Code Execution via zsh Command Validation BugEPSS 0.6%CVE-2021-1482MEDIUMCisco SD-WAN vManage Authorization Bypass VulnerabilityEPSS 0.6%CVE-2022-43908MEDIUMIBM Security Guardium denial of serviceEPSS 0.6%CVE-2023-33042HIGHImproper Input Validation in ModemEPSS 0.6%CVE-2022-43903MEDIUMIBM Security Guardium denial of serviceEPSS 0.6%CVE-2026-32604CRITICALSpinnaker vulnerable to RCE when using gitrepo artifact types due to improper sanitization of user input on branch and pathsEPSS 0.6%CVE-2022-40235MEDIUM"IBM InfoSphere Information Server 11.7 could allow a user to cause a denial of service by removing the ability to run jobs due to improper EPSS 0.6%CVE-2019-18994LOWABB PB610 HMIStudio crashes after launching an empty *.JPR application fileEPSS 0.6%CVE-2019-1846HIGHCisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers MPLS OAM Denial of Service VulnerabilityEPSS 0.6%CVE-2019-1749HIGHCisco Aggregation Services Router 900 Route Switch Processor 3 OSPFv2 Denial of Service VulnerabilityEPSS 0.6%CVE-2023-22734MEDIUMImproper Input Newsletter subscription option validation in shopwareEPSS 0.6%CVE-2018-0249A vulnerability when handling incoming 802.11 Association Requests for Cisco Aironet 1800 Series Access Point (APs) on Qualcomm Atheros (QCAEPSS 0.6%CVE-2017-12334A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection attackEPSS 0.6%CVE-2024-56131HIGHImproper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS Command Injection.EPSS 0.6%CVE-2025-21375HIGHKernel Streaming WOW Thunk Service Driver Elevation of Privilege VulnerabilityEPSS 0.6%CVE-2021-1466MEDIUMCisco SD-WAN vDaemon Buffer Overflow VulnerabilityEPSS 0.6%CVE-2024-21549HIGHVersions of the package spatie/browsershot before 5.0.3 are vulnerable to Improper Input Validation due to improper URL validation through tEPSS 0.6%CVE-2024-21631MEDIUMInteger overflow in URI leading to potential host spoofingEPSS 0.6%CVE-2023-36505MEDIUMWordPress Ninja Forms Plugin <= 3.6.24 is vulnerable to Arbitrary File DeletionEPSS 0.6%