Fallos del tipo CWE-20

4753 resultados
CVE-2022-27830HIGHImproper validation vulnerability in SemBlurInfo prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.EPSS 0.1%CVE-2023-28574CRITICALImproper Input Validation in CoreEPSS 0.1%CVE-2022-30754HIGHImplicit Intent hijacking vulnerability in AppLinker prior to SMR Jul-2022 Release 1 allow allows attackers to launch certain activities witEPSS 0.1%CVE-2022-30756HIGHImplicit Intent hijacking vulnerability in Finder prior to SMR Jul-2022 Release 1 allow allows attackers to launch certain activities with pEPSS 0.1%CVE-2022-20542HIGHIn parseParamsBlob of types.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation EPSS 0.1%CVE-2025-4277HIGHTcg2Smm: improper input validation may lead to arbitrary code executionEPSS 0.1%CVE-2024-0021HIGHIn onCreate of NotificationAccessConfirmationActivity.java, there is a possible way for an app in the work profile to enable notification liEPSS 0.1%CVE-2025-4276HIGHUsbCoreDxe: improper input validation may lead to arbitrary code executionEPSS 0.1%CVE-2026-34383MEDIUMAdmidio: CSRF and Form Validation Bypass in Inventory Item Save via `imported` ParameterEPSS 0.1%CVE-2024-24973LOWImproper input validation for some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentiEPSS 0.1%CVE-2025-24325CRITICALImproper input validation in the Linux kernel-mode driver for some Intel(R) 800 Series Ethernet before version 1.17.2 may allow an authenticEPSS 0.1%CVE-2026-13929MEDIUMInsufficient policy enforcement in DevTools in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to bypass navigationEPSS 0.1%CVE-2026-30769HIGHAn issue in the TVicPort64.sys component of EnTech Taiwan TVicPort Product v4.0, File v5.2.1.0 allows attackers to escalate privileges via sEPSS 0.1%CVE-2022-20457MEDIUMIn getMountModeInternal of StorageManagerService.java, there is a possible prevention of package installation due to improper input validatiEPSS 0.1%CVE-2025-32004LOWImproper input validation in the Intel Edger8r Tool for some Intel(R) SGX SDK may allow an authenticated user to potentially enable escalatiEPSS 0.1%CVE-2026-14060HIGHInsufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perfEPSS 0.1%CVE-2026-35369MEDIUMuutils coreutils kill System-wide Process Termination and Denial of Service via Argument MisinterpretationEPSS 0.1%CVE-2024-21476HIGHImproper Input Validation in Secure ProcessorEPSS 0.1%CVE-2026-9979MEDIUMInsufficient validation of untrusted input in Input in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised tEPSS 0.1%CVE-2025-24484HIGHImproper input validation in the Linux kernel-mode driver for some Intel(R) 800 Series Ethernet before version 1.17.2 may allow an authenticEPSS 0.1%