Fallos del tipo CWE-20
4713 resultadosCVE-2026-52801HIGHGogs: Ability to import local repositories via Mirror SettingsEPSS 0.6%CVE-2023-0683HIGHA valid, authenticated XCC user with read only access may gain elevated privileges through a specifically crafted API call.EPSS 0.6%CVE-2025-29821MEDIUMMicrosoft Dynamics Business Central Information Disclosure VulnerabilityEPSS 0.6%CVE-2023-22835HIGHDenial of Service in Foundry IssuesEPSS 0.6%CVE-2024-20464HIGHA vulnerability in the Protocol Independent Multicast (PIM) feature of Cisco IOS XE Software could allow an unauthenticated, remote attackerEPSS 0.6%CVE-2022-32248—Due to missing input validation in the Manage Checkbooks component of SAP S/4HANA - version 101, 102, 103, 104, 105, 106, an attacker could EPSS 0.6%CVE-2026-45062HIGHFrankenPHP: Unsafe Unicode Handling in CGI Path Splitting Allows Execution of Non-PHP FilesEPSS 0.6%CVE-2023-49252HIGHA vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.7). The affected application allows IP configuration change withouEPSS 0.6%CVE-2022-32239—When a user opens manipulated JPEG 2000 (.jp2, jp2k.x3d) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the appliEPSS 0.6%CVE-2025-27517CRITICALVolt Allows RCE Via User-Crafted RequestsEPSS 0.6%CVE-2025-31132HIGHRaven allows Remote Code Execution due to improper validationEPSS 0.6%CVE-2023-31010MEDIUMNVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input validation. A successful exploit of this vuEPSS 0.6%CVE-2025-22137CRITICALArbitrary File Overwrite via HTTP POST in Pingvin ShareEPSS 0.6%CVE-2023-49095HIGHnexkey allows arbitrary users to impersonate any remote user due to missing signature validationEPSS 0.6%CVE-2014-5398—Schneider Electric Wonderware Input ValidationEPSS 0.6%CVE-2024-2199MEDIUM389-ds-base: malformed userpassword may cause crash at do_modify in slapd/modify.cEPSS 0.6%CVE-2023-33964HIGHmx-chain-go does not treat invalid transaction with wrong username correctlyEPSS 0.6%CVE-2025-61809CRITICALColdFusion | Improper Input Validation (CWE-20)EPSS 0.6%CVE-2020-3314MEDIUMCisco AMP for Endpoints Mac Connector Software File Scan Denial of Service VulnerabilityEPSS 0.6%CVE-2022-29562LOWA vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUGGEDCOM ROX MX5000RE (All versions < V2.16.0), RUGGEEPSS 0.6%