Fallos del tipo CWE-20
4739 resultadosCVE-2025-66786HIGHOpenAirInterface CN5G AMF<=v2.0.1 There is a logical error when processing JSON format requests. Unauthorized remote attackers can send maliEPSS 0.3%CVE-2022-21180MEDIUMImproper input validation for some Intel(R) Processors may allow an authenticated user to potentially cause a denial of service via local acEPSS 0.3%CVE-2024-1534MEDIUMBooster for WooCommerce <= 7.1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via ShortocdeEPSS 0.3%CVE-2026-13924MEDIUMInsufficient validation of untrusted input in WebView in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had cEPSS 0.3%CVE-2025-8097MEDIUMWoodMart - Multipurpose WooCommerce Theme <= 8.2.6 - Improper Input Validation Leading to Unauthenticated Cart ManipulationEPSS 0.3%CVE-2026-13921MEDIUMInsufficient validation of untrusted input in DeviceBoundSessionCredentials in Google Chrome prior to 150.0.7871.47 allowed a remote attackeEPSS 0.3%CVE-2025-3068HIGHInappropriate implementation in Intents in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker to perform privilege esEPSS 0.3%CVE-2026-14023MEDIUMInsufficient validation of untrusted input in SanitizerAPI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same EPSS 0.3%CVE-2023-7012HIGHInsufficient data validation in Permission Prompts in Google Chrome prior to 117.0.5938.62 allowed an attacker who convinced a user to instaEPSS 0.3%CVE-2026-22047HIGHiccDEV has heap-buffer-overflow in SIccCalcOp::Describe() at IccProfLib/IccMpeCalc.cppEPSS 0.3%CVE-2026-13926MEDIUMInsufficient validation of untrusted input in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised EPSS 0.3%CVE-2026-14065MEDIUMInsufficient validation of untrusted input in PageInfo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromisedEPSS 0.3%CVE-2026-45642LOWMicrosoft Azure Attestation service and Device Health Attestation Service Spoofing VulnerabilityEPSS 0.3%CVE-2025-43375HIGHThe issue was addressed with improved checks. This issue is fixed in Xcode 26. Processing an overly large path value may crash a process.EPSS 0.3%CVE-2026-13847MEDIUMInsufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to leaEPSS 0.3%CVE-2025-59940MEDIUMmkdocs-include-markdown-plugin susceptible to unvalidated input colliding with substitution placeholdersEPSS 0.3%CVE-2019-15265HIGHCisco Aironet Access Points Bridge Protocol Data Unit Port Disable Denial of Service VulnerabilityEPSS 0.3%CVE-2022-36448HIGHAn issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. There is an SMM memory corruption vulnerability in the Software SMIEPSS 0.3%CVE-2022-29196MEDIUMMissing validation causes denial of service in TensorFlow via `Conv3DBackpropFilterV2`EPSS 0.3%CVE-2025-0514HIGHExecutable hyperlink Windows path targets executed unconditionally on activationEPSS 0.3%