Fallos del tipo CWE-20
4753 resultadosCVE-2025-55301MEDIUMThe Scratch Channel Allows Username ModificationEPSS 0.2%CVE-2026-11273MEDIUMInsufficient validation of untrusted input in Omnibox in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a userEPSS 0.2%CVE-2023-31339MEDIUMImproper input validation in ARM® Trusted Firmware used in AMD’s Zynq™ UltraScale+™) MPSoC/RFSoC may allow a privileged attacker to perform EPSS 0.2%CVE-2024-52880HIGHAn issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before versioEPSS 0.2%CVE-2023-30559MEDIUMWireless Card Firmware Improperly SignedEPSS 0.2%CVE-2025-46836MEDIUMnet-tools Stack-based Buffer Overflow vulnerabilityEPSS 0.2%CVE-2023-24465MEDIUMCommunication Wi-Fi subsystem has a null pointer reference vulnerability when receving external data.EPSS 0.2%CVE-2026-35380MEDIUMuutils coreutils cut Local Logic Error and Data Integrity Issue in Delimiter ParsingEPSS 0.2%CVE-2026-44658LOWZen Browser: RSS Live-Folder Item URLs Are Not Scheme-Restricted Before Trusted Tab CreationEPSS 0.2%CVE-2024-37027MEDIUMImproper Input validation in some Intel(R) VTune(TM) Profiler software before version 2024.2.0 may allow an authenticated user to potentiallEPSS 0.2%CVE-2026-43895MEDIUMjq: Embedded NUL in jq import paths causes local redaction-policy bypass and preserves sensitive fields in published artifactsEPSS 0.2%CVE-2024-8518LOWCWE-20: Improper Input Validation vulnerability exists that could cause a crash of the Zelio Soft
2 application when a specially crafted proEPSS 0.2%CVE-2025-68134HIGHEVerest's use of assert functions can potentially lead to denial of serviceEPSS 0.2%CVE-2026-21496MEDIUMNULL Pointer Dereference in iccDEV Signature ParserEPSS 0.2%CVE-2026-27299MEDIUMAdobe Framemaker | Improper Input Validation (CWE-20)EPSS 0.2%CVE-2022-27826HIGHImproper validation vulnerability in SemSuspendDialogInfo prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.EPSS 0.2%CVE-2026-13434MEDIUMVirt-controller-rhel9: kubevirt: kubevirt: multus default-network annotation injection via unvalidated tenant networkname when externalnetresourceinjection is enabledEPSS 0.2%CVE-2026-1858MEDIUMwget2 Improper Certificate ValidationEPSS 0.2%CVE-2026-21503MEDIUMiccDEV has Undefined Behavior - Null Pointer Passed to memcpy() in CIccTagSparseMatrixArrayEPSS 0.2%CVE-2026-21506MEDIUMiccDEV is Vulnerable to Null Pointer Dereference in CIccProfileXml::ParseBasic() Leading to Denial of ServiceEPSS 0.2%