Fallos del tipo CWE-20

4751 resultados
CVE-2026-7905HIGHInsufficient validation of untrusted input in Media in Google Chrome on Android prior to 148.0.7778.96 allowed a remote attacker who had comEPSS 0.2%CVE-2024-23678HIGHDeserialization of Untrusted Data on Splunk Enterprise for Windows through Path Traversal from Separate Disk PartitionEPSS 0.2%CVE-2023-20960HIGHIn launchDeepLinkIntentToRight of SettingsHomepageActivity.java, there is a possible way to launch arbitrary activities due to improper inpuEPSS 0.2%CVE-2025-14606LOWtiny-rdm Tiny RDM Pickle Decoding pickle_convert.go pickle.loads deserializationEPSS 0.2%CVE-2023-6381LOWImproper input validation in Newsletter Software SuperMailerEPSS 0.2%CVE-2023-27519MEDIUMImproper input validation in firmware for some Intel(R) Optane(TM) SSD products may allow a privileged user to potentially enable escalationEPSS 0.2%CVE-2025-12131MEDIUMTruncated 802.15.4 packet leads to denial of serviceEPSS 0.2%CVE-2021-25509MEDIUMA missing input validation in Samsung Flow Windows application prior to Version 4.8.5.0 allows attackers to overwrite abtraty file in the WiEPSS 0.2%CVE-2025-15222LOWDromara Sa-Token SaSerializerTemplateForJdkUseBase64.java ObjectInputStream.readObject deserializationEPSS 0.2%CVE-2025-24510HIGHA vulnerability has been identified in MS/TP Point Pickup Module (All versions). Affected devices improperly handle specific incoming BACnetEPSS 0.2%CVE-2026-7916HIGHInsufficient data validation in InterestGroups in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renEPSS 0.2%CVE-2026-0410LOWInsufficient input validation in certain NETGEAR routersEPSS 0.2%CVE-2025-7375MEDIUMUnauthenticated Denial-of-Service Vulnerability in Omada EAP610EPSS 0.2%CVE-2022-35893HIGHAn issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. An SMM memory corruption vulnerability in the FvbServicesRuntimeDxeEPSS 0.2%CVE-2025-43293MEDIUMThe issue was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An appEPSS 0.2%CVE-2026-34442MEDIUMFreeScout: Host Header Injection Leading to External Resource Loading and Open Redirect in FreeScoutEPSS 0.2%CVE-2021-3038MEDIUMGlobalProtect App: Windows VPN kernel driver denial of service (DoS)EPSS 0.2%CVE-2026-13939LOWInsufficient validation of untrusted input in WebShare in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had EPSS 0.2%CVE-2026-8516MEDIUMInsufficient validation of untrusted input in DataTransfer in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced EPSS 0.2%CVE-2026-53723MEDIUMguzzlehttp/guzzle-services' XML Request Serialization Vulnerable to XML Injection via CDATA TerminatorEPSS 0.2%