Fallos del tipo CWE-20

4753 resultados
CVE-2026-45317MEDIUMOpen WebUI: Cross-Site Request Forgery (CSRF) via Image URL ManipulationEPSS 0.2%CVE-2026-10004MEDIUMInsufficient validation of untrusted input in Passwords in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to perform UI spoEPSS 0.2%CVE-2021-1462MEDIUMCisco SD-WAN vManage Software Privilege Escalation VulnerabilityEPSS 0.2%CVE-2025-13462LOWtarfile: Skip DIRTYPE normalization during GNU LONGNAME/LONGLINK handlingEPSS 0.2%CVE-2025-4424MEDIUMSetupAutomationSmm : Arbitrary calls to SmmSetVariable with unsanitised arguments in SMI handlerEPSS 0.2%CVE-2024-21829HIGHImproper input validation in UEFI firmware error handler for some Intel(R) Processors may allow a privileged user to potentially enable escaEPSS 0.2%CVE-2025-5148MEDIUMFunAudioLLM InspireMusic Pickle Data model.py load_state_dict deserializationEPSS 0.2%CVE-2023-25947MEDIUMThe bundle management subsystem has a improper input validation when installing a HAP package.EPSS 0.2%CVE-2022-32484MEDIUMDell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exEPSS 0.2%CVE-2025-2223HIGHCWE-20: Improper Input Validation vulnerability exists that could cause a loss of Confidentiality, Integrity and Availability of engineeringEPSS 0.2%CVE-2025-53471MEDIUMEmerson ValveLink Products Improper Input ValidationEPSS 0.2%CVE-2026-21505MEDIUMiccDEV has Undefined Behavior (UB) - Invalid Enum ValueEPSS 0.2%CVE-2026-8013MEDIUMInsufficient validation of untrusted input in FedCM in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin dEPSS 0.2%CVE-2026-7943MEDIUMInsufficient validation of untrusted input in ANGLE in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised thEPSS 0.2%CVE-2026-7989MEDIUMInsufficient data validation in DataTransfer in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the rendeEPSS 0.2%CVE-2022-32483MEDIUMDell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exEPSS 0.2%CVE-2025-4701MEDIUMVITA-MLLM Freeze-Omni utils.py torch.load deserializationEPSS 0.2%CVE-2026-45676MEDIUMOpenTelemetry eBPF Instrumentation: Unsafe fastelf parsing allows malformed ELF to crash agentEPSS 0.2%CVE-2026-47201HIGHauthentik: XML Signature Wrapping in SAML Source ACS allows authentication as arbitrary federated userEPSS 0.2%CVE-2023-22449HIGHImproper input validation in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via lEPSS 0.2%