Fallos del tipo CWE-20

4750 resultados
CVE-2026-29133MEDIUMUID Regex BypassEPSS 0.2%CVE-2026-6626MEDIUMCockpit-HQ Cockpit Asset Handler/Aggregate data query logic injectionEPSS 0.2%CVE-2024-27386MEDIUMA vulnerability was discovered in the slsi_handle_nan_rx_event_log_ind function in Samsung Mobile Processor Exynos 1380 and Exynos 1480 relaEPSS 0.2%CVE-2022-24418HIGHDell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerabiliEPSS 0.2%CVE-2022-28195MEDIUMNVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot ext4_read_file function, where insufficient validation of untrustedEPSS 0.2%CVE-2024-27385MEDIUMA vulnerability was discovered in the slsi_handle_nan_rx_event_log_ind function in Samsung Mobile Processor Exynos 1380 and Exynos 1480 relaEPSS 0.2%CVE-2024-23198MEDIUMImproper input validation in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi products before version 23.40EPSS 0.2%CVE-2026-48107MEDIUMRussh: Unchecked keyboard-interactive prompt count in client auth pathEPSS 0.2%CVE-2026-14117MEDIUMInsufficient validation of untrusted input in DevTools in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who convEPSS 0.2%CVE-2022-24417HIGHDell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerabiliEPSS 0.2%CVE-2023-43570MEDIUM A potential vulnerability was reported in the SMI callback function of the OemSmi driver that may allow a local attacker with elevated permEPSS 0.2%CVE-2024-28049MEDIUMImproper input validation in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi wireless products before versEPSS 0.2%CVE-2025-3885MEDIUMHarman Becker MGU21 Bluetooth Improper Input Validation Denial-of-Service VulnerabilityEPSS 0.2%CVE-2026-13995MEDIUMInsufficient validation of untrusted input in Autofill in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to perfoEPSS 0.2%CVE-2024-5913MEDIUMPAN-OS: Improper Input Validation Vulnerability in PAN-OSEPSS 0.2%CVE-2026-13865MEDIUMInsufficient validation of untrusted input in Enterprise in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoEPSS 0.2%CVE-2026-45628CRITICALDokploy: Command Injection via Unescaped Branch Fields in Deployment PipelineEPSS 0.2%CVE-2026-33587CRITICALRemote Code Execution (RCE) via Server-Side Template Injection (SSTI)EPSS 0.2%CVE-2026-11676HIGHInsufficient validation of untrusted input in Dawn in Google Chrome on Linux and ChromeOS prior to 149.0.7827.103 allowed a remote attacker EPSS 0.2%CVE-2026-26170HIGHPowerShell Elevation of Privilege VulnerabilityEPSS 0.2%