Fallos del tipo CWE-20

4736 resultados
CVE-2023-28374MEDIUMImproper input validation for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthEPSS 0.4%CVE-2026-30575HIGHA Business Logic vulnerability exists in SourceCodester Pharmacy Product Management System 1.0 in the add-stock.php file. The application faEPSS 0.4%CVE-2021-39255MEDIUMA crafted NTFS image can trigger an out-of-bounds read, caused by an invalid attribute in ntfs_attr_find_in_attrdef, in NTFS-3G < 2021.8.22.EPSS 0.4%CVE-2021-39258MEDIUMA crafted NTFS image can cause out-of-bounds reads in ntfs_attr_find and ntfs_external_attr_find in NTFS-3G < 2021.8.22.EPSS 0.4%CVE-2025-0974LOWMaxD Lightning Module deserializationEPSS 0.4%CVE-2024-6376HIGHejson shell parser in MongoDB Compass maybe bypassedEPSS 0.4%CVE-2020-1677HIGHJuniper Networks Mist Cloud UI: SAML authentication attribute elements handling vulnerability.EPSS 0.4%CVE-2022-22749MEDIUMWhen scanning QR codes, Firefox for Android would have allowed navigation to some URLs that do not point to web content.<br>*This bug only aEPSS 0.4%CVE-2024-34009HIGHmoodle: ReCAPTCHA can be bypassed on the login pageEPSS 0.4%CVE-2026-3644MEDIUMIncomplete control character validation in http.cookiesEPSS 0.4%CVE-2025-55679MEDIUMWindows Kernel Information Disclosure VulnerabilityEPSS 0.4%CVE-2023-40061HIGHInsecure Job Execution Mechanism Vulnerability EPSS 0.4%CVE-2026-57985HIGHMicrosoft Edge (Chromium-based) Remote Code Execution VulnerabilityEPSS 0.4%CVE-2024-3172HIGHInsufficient data validation in DevTools in Google Chrome prior to 121.0.6167.85 allowed a remote attacker who convinced a user to engage inEPSS 0.4%CVE-2021-39260MEDIUMA crafted NTFS image can cause an out-of-bounds access in ntfs_inode_sync_standard_information in NTFS-3G < 2021.8.22.EPSS 0.4%CVE-2024-36390HIGHMileSight DeviceHub - CWE-20 Improper Input ValidationEPSS 0.4%CVE-2021-39262MEDIUMA crafted NTFS image can cause an out-of-bounds access in ntfs_decompress in NTFS-3G < 2021.8.22.EPSS 0.4%CVE-2021-44769MEDIUMTLS Certificate Generation Function Improper Input ValidationEPSS 0.4%CVE-2021-39259MEDIUMA crafted NTFS image can trigger an out-of-bounds access, caused by an unsanitized attribute length in ntfs_inode_lookup_by_name, in NTFS-3GEPSS 0.4%CVE-2024-36745HIGHAn issue in OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) via inputting a negative value into the oneflow.EPSS 0.4%