Fallos del tipo CWE-20

4750 resultados
CVE-2026-33587CRITICALRemote Code Execution (RCE) via Server-Side Template Injection (SSTI)EPSS 0.2%CVE-2026-0415MEDIUMInsufficient input validation vulnerability in certain Orbi routersEPSS 0.2%CVE-2022-32489HIGHDell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerabiliEPSS 0.2%CVE-2026-11140MEDIUMOut of bounds read in Chromecast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process EPSS 0.2%CVE-2021-33142MEDIUMImproper input validation in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware may allow a privilEPSS 0.2%CVE-2022-32488HIGHDell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerabiliEPSS 0.2%CVE-2026-14100MEDIUMInsufficient data validation in NetworkCache in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data viaEPSS 0.2%CVE-2022-31808HIGHA vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions < V2.85.44), SiPass integrated ACC-AP (All versions <EPSS 0.2%CVE-2026-11093MEDIUMInappropriate implementation in Printing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer EPSS 0.2%CVE-2026-12016HIGHInappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the rendererEPSS 0.2%CVE-2026-11128MEDIUMInappropriate implementation in Web Share in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage iEPSS 0.2%CVE-2026-11121MEDIUMInsufficient validation of untrusted input in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised theEPSS 0.2%CVE-2026-0417MEDIUMInsufficient input validation in certain NETGEAR routersEPSS 0.2%CVE-2025-24504MEDIUMAn improper input validation the CSRF filter results in unsanitized user input written to the application logs.EPSS 0.2%CVE-2025-69279HIGHIn nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additionEPSS 0.2%CVE-2025-7507MEDIUMelink – Embed Content <= 1.1.0 - Authenticated (Contributor+) Insufficient Input ValidationEPSS 0.2%CVE-2026-9880HIGHInsufficient validation of untrusted input in WebGL in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised tEPSS 0.2%CVE-2021-33108MEDIUMImproper input validation in the Intel(R) In-Band Manageability software before version 2.13.0 may allow a privileged user to potentially enEPSS 0.2%CVE-2026-44204MEDIUMShelf: SQL Injection via sortBy ParameterEPSS 0.2%CVE-2026-6180MEDIUMPaperCut MF: Card truncation on HP readersEPSS 0.2%