Fallos del tipo CWE-20

4713 resultados
CVE-2024-20709MEDIUMNew Edge T5 MSRC Case [DCMSFT-1081]EPSS 0.6%CVE-2024-23324HIGHEnvoy ext auth can be bypassed when Proxy protocol filter sets invalid UTF-8 metadataEPSS 0.6%CVE-2023-32032MEDIUM.NET and Visual Studio Elevation of Privilege VulnerabilityEPSS 0.6%CVE-2025-2690MEDIUMyiisoft Yii2 MockClass.php generate deserializationEPSS 0.6%CVE-2023-45177MEDIUMIBM MQ denial of serviceEPSS 0.6%CVE-2026-33332MEDIUMNiceGUI's unvalidated chunk size parameter in media routes can cause memory exhaustionEPSS 0.6%CVE-2023-47107HIGHPILOS account takeover through password reset poisoningEPSS 0.6%CVE-2023-35944HIGHEnvoy vulnerable to incorrect handling of HTTP requests and responses with mixed case schemesEPSS 0.6%CVE-2024-52309MEDIUMSFTPGo allows administrators to restrict command execution from the EventManagerEPSS 0.6%CVE-2024-0793HIGHKube-controller-manager: malformed hpa v1 manifest causes crashEPSS 0.6%CVE-2023-22301MEDIUMThe kernel subsystem hmdfs has a arbitrary memory accessing vulnerability.EPSS 0.6%CVE-2022-20545HIGHIn bindArtworkAndColors of MediaControlPanel.java, there is a possible way to crash the phone due to improper input validation. This could lEPSS 0.6%CVE-2024-4321HIGHLocal File Inclusion (LFI) in gaizhenbiao/chuanhuchatgptEPSS 0.6%CVE-2025-27211HIGHAn Improper Input Validation in EdgeMAX EdgeSwitch (Version 1.10.4 and earlier) could allow a Command Injection by a malicious actor with acEPSS 0.6%CVE-2024-9257MEDIUMLogsign Unified SecOps Platform delete_gsuite_key_file Input Validation Arbitrary File Deletion VulnerabilityEPSS 0.6%CVE-2023-39529MEDIUMPrestaShop vulnerable to file deletion via attachment APIEPSS 0.6%CVE-2026-21258MEDIUMMicrosoft Excel Information Disclosure VulnerabilityEPSS 0.6%CVE-2022-36027MEDIUMSegfault TFLite converter on per-channel quantized transposed convolutions in TensorFlowEPSS 0.6%CVE-2023-41303Command injection vulnerability in the distributed file system module. Successful exploitation of this vulnerability may cause variables in EPSS 0.6%CVE-2023-20525MEDIUMInsufficient syscall input validation in the ASP Bootloader may allow a privileged attacker to read memory outside the bounds of a mapped reEPSS 0.6%