Fallos del tipo CWE-20

4753 resultados
CVE-2021-25413Improper sanitization of incoming intent in Samsung Contacts prior to SMR JUN-2021 Release 1 allows local attackers to get permissions to acEPSS 0.2%CVE-2025-65264MEDIUMThe kernel driver of CPUID CPU-Z v2.17 and earlier does not validate user-supplied values passed via its IOCTL interface, allowing an attackEPSS 0.2%CVE-2023-45176MEDIUMIBM App Connect Enterprise and IBM Integration Bus denial of serviceEPSS 0.2%CVE-2025-12284MEDIUMLack of Input ValidationEPSS 0.2%CVE-2026-11685MEDIUMInappropriate implementation in MediaCapture in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to leak cross-origin EPSS 0.2%CVE-2026-11233MEDIUMInsufficient policy enforcement in FoldableAPIs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the reEPSS 0.2%CVE-2023-21502MEDIUMImproper input validation vulnerability in FactoryTest application prior to SMR May-2023 Release 1 allows local attackers to get privilege eEPSS 0.2%CVE-2026-11261MEDIUMInappropriate implementation in PDF in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer proceEPSS 0.2%CVE-2024-36482HIGHImproper input validation in some Intel(R) CIP software before version 2.4.10852 may allow a privileged user to potentially enable escalatioEPSS 0.2%CVE-2026-11223MEDIUMInsufficient validation of untrusted input in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised EPSS 0.2%CVE-2026-13999MEDIUMInsufficient validation of untrusted input in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user toEPSS 0.2%CVE-2026-7964MEDIUMInsufficient validation of untrusted input in FileSystem in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromisEPSS 0.2%CVE-2024-32859HIGHDell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attackEPSS 0.2%CVE-2024-32858HIGHDell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attackEPSS 0.2%CVE-2026-11192MEDIUMInsufficient validation of untrusted input in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform EPSS 0.2%CVE-2026-11220MEDIUMInsufficient validation of untrusted input in Navigation in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromisEPSS 0.2%CVE-2023-31035HIGHCVEEPSS 0.2%CVE-2024-32860HIGHDell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attackEPSS 0.2%CVE-2023-24571HIGH Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with administrator privileges could potEPSS 0.2%CVE-2026-42389MEDIUMReject more queries with invalid header valuesEPSS 0.2%