Fallos del tipo CWE-20
4736 resultadosCVE-2021-39262MEDIUMA crafted NTFS image can cause an out-of-bounds access in ntfs_decompress in NTFS-3G < 2021.8.22.EPSS 0.4%CVE-2019-14904—A flaw was found in the solaris_zone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the EPSS 0.4%CVE-2024-36742HIGHAn issue in the oneflow.scatter_nd parameter OneFlow-Inc. Oneflow v0.9.1 allows attackers to cause a Denial of Service (DoS) when index paraEPSS 0.4%CVE-2024-20274MEDIUMCisco Secure Firewall Management Center HTML Injection VulnerabilityEPSS 0.4%CVE-2026-24505HIGHDell PowerProtect Data Domain, versions 8.5 through 8.6 contain an improper input validation vulnerability. A high privileged attacker with EPSS 0.4%CVE-2025-23268HIGHNVIDIA Triton Inference Server contains a vulnerability in the DALI backend where an attacker may cause an improper input validation issue. EPSS 0.4%CVE-2024-32989LOWInsufficient verification vulnerability in the system sharing pop-up module
Impact: Successful exploitation of this vulnerability will affecEPSS 0.4%CVE-2025-5498MEDIUMslackero phpwcms Custom Source Tab cnt21.readform.inc.php is_file deserializationEPSS 0.4%CVE-2026-8959CRITICALSandbox escape due to incorrect boundary conditions in the Widget: Win32 componentEPSS 0.4%CVE-2022-33211CRITICALImproper Input Validation in MODEMEPSS 0.4%CVE-2026-0878HIGHSandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL componentEPSS 0.4%CVE-2021-3442—A flaw was found in the Red Hat OpenShift API Management product. User input is not validated allowing an authenticated user to inject scripEPSS 0.4%CVE-2021-39251MEDIUMA crafted NTFS image can cause a NULL pointer dereference in ntfs_extent_inode_open in NTFS-3G < 2021.8.22.EPSS 0.4%CVE-2017-12223—A vulnerability in the ROM Monitor (ROMMON) code of Cisco IR800 Integrated Services Router Software could allow an unauthenticated, local atEPSS 0.4%CVE-2023-41316MEDIUMHTML Injection with email in TolgeeEPSS 0.4%CVE-2025-9066HIGHRockwell Automation FactoryTalk® ViewPoint XXE to Denial-of-Service VulnerabilityEPSS 0.4%CVE-2021-33285MEDIUMIn NTFS-3G versions < 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfs_get_attribute_value, a heap bufferEPSS 0.4%CVE-2021-0162HIGHImproper input validation in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticaEPSS 0.4%CVE-2023-22937MEDIUMUnnecessary File Extensions Allowed by Lookup Table Uploads in Splunk EnterpriseEPSS 0.4%CVE-2024-41839LOWAdobe Experience Manager | Improper Input Validation (CWE-20)EPSS 0.4%