Fallos del tipo CWE-20

4753 resultados
CVE-2026-11221MEDIUMInsufficient validation of untrusted input in PointerLock in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromiEPSS 0.1%CVE-2026-24348HIGHMultiple cross-site scripting vulnerabilities in EZCast Pro II DongleEPSS 0.1%CVE-2021-37677MEDIUMMissing validation in shape inference for `Dequantize` in TensorFlowEPSS 0.1%CVE-2025-6969MEDIUMability_ability_runtime an improper input validation vulnerabilityEPSS 0.1%CVE-2024-39511MEDIUMJunos OS: The 802.1X Authentication Daemon crashes on running a specific commandEPSS 0.1%CVE-2024-32856MEDIUMDell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attackEPSS 0.1%CVE-2026-47909MEDIUMDreamweaver Desktop | Improper Input Validation (CWE-20)EPSS 0.1%CVE-2024-0158MEDIUMDell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exEPSS 0.1%CVE-2026-43722MEDIUMThe issue was addressed with improved input sanitization. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app maEPSS 0.1%CVE-2026-43989HIGHJunoClaw: upload_wasm accepted arbitrary filesystem paths without validationEPSS 0.1%CVE-2026-45055HIGHCubeCart: Pre-Authenticated Password Reset Link Poisoning via HTTP Host HeaderEPSS 0.1%CVE-2026-11205MEDIUMInsufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who coEPSS 0.1%CVE-2025-0037MEDIUMIn AMD Versal Adaptive SoC devices, the lack of address validation when executing PLM runtime services through the PLM firmware can allow acEPSS 0.1%CVE-2026-8003MEDIUMInsufficient validation of untrusted input in TabGroups in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spooEPSS 0.1%CVE-2026-13024MEDIUMInsufficient validation of untrusted input in Navigation in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromiEPSS 0.1%CVE-2025-71011MEDIUMAn input validation vulnerability in the flow.Tensor.new_empty/flow.Tensor.new_ones/flow.Tensor.new_zeros component of OneFlow v0.9.0 allowsEPSS 0.1%CVE-2026-9986MEDIUMInsufficient validation of untrusted input in OptimizationGuide in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had cEPSS 0.1%CVE-2025-71009MEDIUMAn input validation vulnerability in the flow.scatter/flow.scatter_add component of OneFlow v0.9.0 allows attackers to cause a Denial of SerEPSS 0.1%CVE-2024-42424MEDIUMDell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Improper Input Validation vulnerability. A high privileged attackeEPSS 0.1%CVE-2025-20197MEDIUMA vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privilegEPSS 0.1%