Fallos del tipo CWE-20

4753 resultados
CVE-2026-15124MEDIUMInsufficient policy enforcement in Passwords in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass same origin policyEPSS 0.2%CVE-2023-28041MEDIUM Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potenEPSS 0.2%CVE-2023-28054MEDIUM Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potenEPSS 0.2%CVE-2026-33436LOWStirling-PDF: Reflected XSS through crafted filename in file upload functionalityEPSS 0.2%CVE-2023-28034MEDIUM Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potenEPSS 0.2%CVE-2023-28028MEDIUM Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potenEPSS 0.2%CVE-2023-21451MEDIUMA Stack-based overflow vulnerability in IpcRxEmbmsSessionList in SECRIL prior to Android S(12) allows attacker to cause memory corruptions.EPSS 0.2%CVE-2023-39251MEDIUM Dell BIOS contains an Improper Input Validation vulnerability. A local malicious user with high privileges could potentially exploit this vEPSS 0.2%CVE-2022-20590MEDIUMIn valid_va_sec_mfc_check of drm_access_control.c, there is a possible information disclosure due to improper input validation. This could lEPSS 0.2%CVE-2022-20592MEDIUMIn ppmp_validate_secbuf of drm_fw.c, there is a possible information disclosure due to improper input validation. This could lead to local iEPSS 0.2%CVE-2022-37336HIGHImproper input validation in BIOS firmware for some Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege vEPSS 0.2%CVE-2022-32144HIGHThere is an insufficient input verification vulnerability in Huawei product. Successful exploitation of this vulnerability may lead to serviEPSS 0.2%CVE-2026-33797HIGHJunos OS and Junos OS Evolved: An attacker sending a specific genuine BGP packet causes a BGP resetEPSS 0.2%CVE-2026-21678HIGHiccDEV has heap-buffer-overflow vulnerability on IccTagXml()EPSS 0.2%CVE-2021-22280HIGHDLL Hijacking Vulnerability in Automation StudioEPSS 0.2%CVE-2023-31028LOW NVIDIA nvJPEG2000 Library for Windows and Linux contains a vulnerability where improper input validation might enable an attacker to use a EPSS 0.2%CVE-2024-34163HIGHImproper input validation in firmware for some Intel(R) NUC may allow a privileged user to potentially enableescalation of privilege via locEPSS 0.2%CVE-2020-26270MEDIUMCHECK-fail in LSTM with zero-length input in TensorFlowEPSS 0.2%CVE-2026-45317MEDIUMOpen WebUI: Cross-Site Request Forgery (CSRF) via Image URL ManipulationEPSS 0.2%CVE-2024-21781HIGHImproper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged user to enable information disclosure or deniEPSS 0.2%