Fallos del tipo CWE-20

4713 resultados
CVE-2026-40411CRITICALAzure Virtual Network Gateway Remote Code Execution VulnerabilityEPSS 0.5%CVE-2026-24412HIGHiccDEV has Heap Buffer Overflow in icCurvesFromXml()EPSS 0.5%CVE-2026-21282MEDIUMAdobe Commerce | Improper Input Validation (CWE-20)EPSS 0.5%CVE-2026-24405HIGHiccDEV has Heap Buffer Overflow in CIccMpeCalculator::Read()EPSS 0.5%CVE-2024-6207HIGHCVE 2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN1550.html  and send a specially crafted EPSS 0.5%CVE-2026-24406HIGHiccDEV has Heap Buffer Overflow in CIccTagNamedColor2::SetSize()EPSS 0.5%CVE-2024-27909MEDIUMA denial of service vulnerability was reported in the HTTPS service of some Lenovo Printers that could result in a system reboot.EPSS 0.5%CVE-2018-0235A vulnerability in the 802.11 frame validation functionality of the Cisco Wireless LAN Controller (WLC) could allow an unauthenticated, adjaEPSS 0.5%CVE-2023-41336MEDIUMPrevent injection of invalid entity ids for "autocomplete" fields in symfony ux-autocompleteEPSS 0.5%CVE-2023-31013MEDIUMNVIDIA DGX H100 BMC contains a vulnerability in the REST service, where an attacker may cause improper input validation. A successful exploiEPSS 0.5%CVE-2026-27891HIGHRemote Code Execution (RCE) via Zip Slip in Plugin Upload MechanismEPSS 0.5%CVE-2023-31012MEDIUMNVIDIA DGX H100 BMC contains a vulnerability in the REST service where an attacker may cause improper input validation. A successful exploitEPSS 0.5%CVE-2023-21515HIGHInstantPlay which included vulnerable script which could execute javascript in Galaxy Store prior to version 4.5.49.8 allows attackers to exEPSS 0.5%CVE-2023-21514HIGHImproper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API toEPSS 0.5%CVE-2023-6835MEDIUMMultiple WSO2 products have been identified as vulnerable due to lack of server-side input validation in the Forum feature, API rating couldEPSS 0.5%CVE-2023-37547MEDIUMCODESYS: Improper Input Validation in CmpApp componentEPSS 0.5%CVE-2024-9507MEDIUMContact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder <= 2.15.2 - Authenticated (Administrator+) Improper Input Validation via iconUpload Function to Arbitrary File ReadEPSS 0.5%CVE-2023-37550MEDIUMCODESYS: Improper Input Validation in CmpApp componentEPSS 0.5%CVE-2023-37545MEDIUMCODESYS: Improper Input Validation in CmpApp componentEPSS 0.5%CVE-2024-21627HIGHSome attribute not escaped in Validate::isCleanHTML methodEPSS 0.5%