Fallos del tipo CWE-20
4751 resultadosCVE-2025-40935MEDIUMA vulnerability has been identified in RUGGEDCOM RMC8388 V5.X (All versions < V5.10.1), RUGGEDCOM RS416Pv2 V5.X (All versions < V5.10.1), RUEPSS 0.2%CVE-2025-0816HIGHCWE-20: Improper Input Validation vulnerability exists that could cause Denial-of-Service of the
product when malicious IPV6 packets are senEPSS 0.2%CVE-2021-3786MEDIUMA potential vulnerability in the SMI callback function used in CSME configuration of some Lenovo Notebook and ThinkPad systems could be usedEPSS 0.2%CVE-2026-23880HIGHOnboardLite has stored Cross-site Scripting issue that may lead to admin Account Take OverEPSS 0.2%CVE-2024-37365HIGHFactoryTalk View ME Remote Code Execution Vulnerability via Project Save PathEPSS 0.2%CVE-2026-48774HIGHProxySQL MCP run_sql_readonly executes side-effecting MySQL multi-statements despite read-only contractEPSS 0.2%CVE-2026-11658MEDIUMInsufficient validation of untrusted input in Extensions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromiEPSS 0.2%CVE-2026-11653MEDIUMInappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderEPSS 0.2%CVE-2021-26736MEDIUMZApp Installer Privilege Escalation VulnerabilitiesEPSS 0.2%CVE-2025-55058MEDIUMCWE-20 Improper Input ValidationEPSS 0.2%CVE-2022-33176HIGHImproper input validation in BIOS firmware for some Intel(R) NUC 11 Performance kits and Intel(R) NUC 11 Performance Mini PCs before versionEPSS 0.2%CVE-2025-58353HIGHPromptcraft Forge Studio: Complete Sanitizer Bypass Enables XSS via Overlapping PatternsEPSS 0.2%CVE-2026-11023MEDIUMInappropriate implementation in WebAppInstalls in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renEPSS 0.2%CVE-2026-10863MEDIUMMISP User-controlled order parameter in correlations over-correlation endpointEPSS 0.2%CVE-2024-47238HIGHDell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attackEPSS 0.2%CVE-2026-40317CRITICALNovumOS has Privilege Escalation in the Syscall InterfaceEPSS 0.2%CVE-2025-14576HIGHPossible QML code injection in VectorImage componentEPSS 0.2%CVE-2024-34545MEDIUMImproper input validation in some Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable infoEPSS 0.2%CVE-2025-10252LOWSEAT Queue Ticket Kiosk Java RMI Registry deserializationEPSS 0.2%CVE-2024-43445MEDIUMMissing X-Content-Type-Options: nosniff Header Allows MIME Type SniffingEPSS 0.2%