Fallos del tipo CWE-20

4583 resultados

CVE-2025-62507HIGHRedis: Bug in XACKDEL may lead to stack overflow and potential RCEEPSS 6.4%CVE-2018-16875MEDIUMThe crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verificationEPSS 6.3%CVE-2016-7072MEDIUMAn issue has been found in PowerDNS Authoritative Server before 3.4.11 and 4.0.2 allowing a remote, unauthenticated attacker to cause a deniEPSS 6.3%CVE-2025-14558HIGHRemote code execution via ND6 Router AdvertisementsEPSS 6.3%CVE-2021-22924LOWlibcurl keeps previously used connections in a connection pool for subsequenttransfers to reuse, if one of them matches the setup.Due to errEPSS 6.3%CVE-2018-5474—Philips Intellispace Portal all versions 7.0.x and 8.0.x have an input validation vulnerability that could allow a remote attacker to executEPSS 6.2%CVE-2016-9606—JBoss RESTEasy before version 3.1.2 could be forced into parsing a request with YamlProvider, resulting in unmarshalling of potentially untrEPSS 6.2%CVE-2024-56132HIGHImproper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS Command Injection.EPSS 6.1%CVE-2024-30188HIGHApache DolphinScheduler: Resource File Read And Write VulnerabilityEPSS 6.0%CVE-2020-14343—A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary code execution when it proEPSS 6.0%CVE-2024-27135HIGHApache Pulsar: Improper Input Validation in Pulsar Function Worker allows Remote Code ExecutionEPSS 6.0%CVE-2018-0314—A vulnerability in the Cisco Fabric Services (CFS) component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated,EPSS 6.0%CVE-2024-38244HIGHKernel Streaming Service Driver Elevation of Privilege VulnerabilityEPSS 5.9%CVE-2016-8624MEDIUMcurl before version 7.51.0 doesn't parse the authority component of the URL correctly when the host name part ends with a '#' character, andEPSS 5.9%CVE-2023-45648MEDIUMApache Tomcat: Trailer header parsing too lenientEPSS 5.8%CVE-2023-29371HIGHWindows GDI Elevation of Privilege VulnerabilityEPSS 5.8%CVE-2025-14156CRITICALFox LMS – WordPress LMS Plugin 1.0.4.7 - 1.0.5.1 - Unauthenticated Privilege Escalation via 'createOrder'EPSS 5.8%CVE-2022-26531MEDIUMMultiple improper input validation flaws were identified in some CLI commands of Zyxel USG/ZyWALL series firmware versions 4.09 through 4.71EPSS 5.8%CVE-2021-34994HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authEPSS 5.8%CVE-2024-38241HIGHKernel Streaming Service Driver Elevation of Privilege VulnerabilityEPSS 5.8%

← anteriorpágina 11 / 230siguiente →