Fallos del tipo CWE-20

4737 resultados
CVE-2019-1959MEDIUMCisco Enterprise NFV Infrastructure Software Arbitrary File Read VulnerabilitiesEPSS 0.4%CVE-2025-22233LOWSpring Framework DataBinder Case Sensitive Match ExceptionEPSS 0.4%CVE-2024-53827HIGHEricsson Packet Core Controller (PCC) - Improper Input Validation VulnerabilityEPSS 0.4%CVE-2025-57834HIGHAn issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem (Exynos 980, 850, 990, 1080, 2100, 1280, 2200, 1330, 1380EPSS 0.4%CVE-2024-7023HIGHInsufficient data validation in Updater in Google Chrome prior to 128.0.6537.0 allowed a remote attacker to perform privilege escalation viaEPSS 0.4%CVE-2026-48569HIGHVisual Studio Code Security Feature Bypass VulnerabilityEPSS 0.4%CVE-2023-3034MEDIUMReflected XSS in BKG Ntrip Professional Caster version <=2.0.44EPSS 0.4%CVE-2024-1638HIGHBluetooth characteristic LESC security requirement not enforced without additional flagsEPSS 0.4%CVE-2022-27573MEDIUMImproper input validation vulnerability in parser_infe and sheifd_find_itemIndexin fuctions of libsimba library prior to SMR Apr-2022 ReleasEPSS 0.4%CVE-2026-10938HIGHInappropriate implementation in Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer proEPSS 0.4%CVE-2023-3434MEDIUMQRC Handler without Input Validation in JamiEPSS 0.4%CVE-2022-29191MEDIUMMissing validation causes denial of service via `GetSessionTensor` in TensorFlowEPSS 0.4%CVE-2024-45761MEDIUMDell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains an improper input validation vulnerability. A remote low-privileEPSS 0.3%CVE-2026-59509CRITICALUnauthenticated arbitrary MongoDB collection read in cve-searchEPSS 0.3%CVE-2024-4787MEDIUMCost Calculator Builder PRO <= 3.1.75 - Unauthenticated Arbitrary Email SendingEPSS 0.3%CVE-2024-5969MEDIUMAIomatic - Automatic AI Content Writer <= 2.0.5 - Unauthenticated Arbitrary Email SendingEPSS 0.3%CVE-2025-32077MEDIUMXSSes in Extension:SimpleCalendarEPSS 0.3%CVE-2025-1514HIGHActive Products Tables for WooCommerce <= 1.0.6.7 - Unauthenticated Arbitrary Filter CallEPSS 0.3%CVE-2022-44611MEDIUMImproper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of EPSS 0.3%CVE-2025-4635MEDIUMRemote Code ExecutionEPSS 0.3%