Fallos del tipo CWE-20

4713 resultados
CVE-2026-3204CRITICALImproper input validation in the error message page in Devolutions Server 2025.3.16 and earlier allows remote attackers to spoof the displaEPSS 0.5%CVE-2020-3409HIGHCisco IOS and IOS XE Software PROFINET Denial of Service VulnerabilityEPSS 0.5%CVE-2024-40721HIGHCHANGING Information Technology TCBServiSign Windows Version - Improper Input ValidationEPSS 0.5%CVE-2025-1736MEDIUMStream HTTP wrapper header check might omit basic auth headerEPSS 0.5%CVE-2024-12994MEDIUMrunning-elephant Datart File Upload import extractModel deserializationEPSS 0.5%CVE-2020-17393MEDIUMThis vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.3-47255. An attacker mEPSS 0.5%CVE-2025-24073HIGHMicrosoft DWM Core Library Elevation of Privilege VulnerabilityEPSS 0.5%CVE-2025-24058HIGHWindows DWM Core Library Elevation of Privilege VulnerabilityEPSS 0.5%CVE-2025-24074HIGHMicrosoft DWM Core Library Elevation of Privilege VulnerabilityEPSS 0.5%CVE-2025-1026HIGHVersions of the package spatie/browsershot before 5.0.5 are vulnerable to Improper Input Validation due to improper URL validation through tEPSS 0.5%CVE-2018-14656HIGHA missing address check in the callers of the show_opcodes() in the Linux kernel allows an attacker to dump the kernel memory at an arbitrarEPSS 0.5%CVE-2024-45422MEDIUMZoom Apps - Improper Input ValidationEPSS 0.5%CVE-2026-39399CRITICALNuGet Gallery: Arbitrary Blob Overwrite via Nuspec Confusion and URI Fragment TruncationEPSS 0.5%CVE-2025-68667CRITICALConduit-derived homeservers are affected by a Confused Deputy and Improper Input Validation issueEPSS 0.5%CVE-2023-36462MEDIUMMastodon's verified profile links can be formatted in a misleading wayEPSS 0.5%CVE-2025-34021HIGHSelea Targa IP OCR-ANPR Camera Server-Side Request ForgeryEPSS 0.5%CVE-2021-36402MEDIUMIn Moodle, Users' names required additional sanitizing in the account confirmation email, to prevent a self-registration phishing risk.EPSS 0.5%CVE-2026-40411CRITICALAzure Virtual Network Gateway Remote Code Execution VulnerabilityEPSS 0.5%CVE-2023-29457MEDIUMInsufficient validation of Action form input fieldsEPSS 0.5%CVE-2021-25684HIGHapport can be stalled by reading a FIFOEPSS 0.5%