Fallos del tipo CWE-20
4752 resultadosCVE-2022-26006HIGHImproper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of EPSS 0.2%CVE-2026-34679MEDIUMCAI Content Credentials | Improper Input Validation (CWE-20)EPSS 0.2%CVE-2024-33657HIGHSmm Callout in SmmComputrace ModuleEPSS 0.2%CVE-2025-24274HIGHAn input validation issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.5, macOS Sonoma 14.7.6, macEPSS 0.2%CVE-2025-46574MEDIUMZTE GoldenDB Database product has an input validation vulnerabilityEPSS 0.2%CVE-2026-34668MEDIUMCAI Content Credentials | Improper Input Validation (CWE-20)EPSS 0.2%CVE-2024-24981HIGHImproper input validation in PfrSmiUpdateFw driver in UEFI firmware for some Intel(R) Server M50FCP Family products may allow a privileged uEPSS 0.2%CVE-2026-11682HIGHInappropriate implementation in Views in Google Chrome on Linux prior to 149.0.7827.103 allowed a remote attacker who had compromised the reEPSS 0.2%CVE-2024-22015MEDIUMImproper input validation for some Intel(R) DLB driver software before version 8.5.0 may allow an authenticated user to potentially denial oEPSS 0.2%CVE-2023-31008HIGHNVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input validation. A successful exploit of this vuEPSS 0.2%CVE-2025-59301MEDIUMModbus/TCP Dos Vulnerability in DVP15MC11TEPSS 0.2%CVE-2023-22379MEDIUMImproper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information dEPSS 0.2%CVE-2026-20686MEDIUMThis issue was addressed with improved input validation. This issue is fixed in iOS 26.3 and iPadOS 26.3. An app may be able to access sensiEPSS 0.2%CVE-2025-27537MEDIUMImproper input validation for some Edge Orchestrator software before version 24.11.1 for Intel(R) Tiber(TM) Edge Platform may allow an autheEPSS 0.2%CVE-2022-4574MEDIUM
An SMI handler input validation vulnerability in the BIOS of some ThinkPad models could allow an attacker with local access and elevated prEPSS 0.2%CVE-2026-36175MEDIUMAn issue in the U-Boot component of GNCC GP5 v7.1.76 allows physically-proximate attackers to bypass authentication and gain root access viaEPSS 0.2%CVE-2024-42410MEDIUMImproper input validation in some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable denial of service via locaEPSS 0.2%CVE-2023-21501HIGHImproper input validation vulnerability in mPOS fiserve trustlet prior to SMR May-2023 Release 1 allows local attackers to execute arbitraryEPSS 0.2%CVE-2026-7931MEDIUMInsufficient validation of untrusted input in iOS in Google Chrome on iOS prior to 148.0.7778.96 allowed a remote attacker to perform UI spoEPSS 0.2%CVE-2026-14089MEDIUMInsufficient validation of untrusted input in PopupBlocker in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromEPSS 0.2%