Fallos del tipo CWE-20

4597 resultados
CVE-2019-19279A vulnerability has been identified in SIPROTEC 4 and SIPROTEC Compact relays equipped with EN100 Ethernet communication modules (All versioEPSS 1.6%CVE-2023-6395MEDIUMMock: privilege escalation for users that can access mock configurationEPSS 1.6%CVE-2022-35724Denial of service while reading data in Avro Rust SDKEPSS 1.6%CVE-2019-18247An attacker may use a specially crafted message to force Relion 650 series (versions 1.3.0.5 and prior) or Relion 670 series (versions 1.2.3EPSS 1.6%CVE-2019-13524GE PACSystems RX3i CPE100/115: All versions prior to R9.85,CPE302/305/310/330/400/410: All versions prior to R9.90,CRU/320 All versions(End EPSS 1.5%CVE-2020-3441MEDIUMCisco Webex Meetings and Cisco Webex Meetings Server Information Disclosure VulnerabilityEPSS 1.5%CVE-2021-27388SINAMICS medium voltage routable products are affected by a vulnerability in the Sm@rtServer component for remote access that could allow anEPSS 1.5%CVE-2018-16556HIGHA vulnerability has been identified in SIMATIC S7-400 CPU 412-1 DP V7 (All versions), SIMATIC S7-400 CPU 412-2 DP V7 (All versions), SIMAEPSS 1.5%CVE-2017-6759A vulnerability in the UpgradeManager of the Cisco Prime Collaboration Provisioning Tool 12.1 could allow an authenticated, remote attacker EPSS 1.5%CVE-2023-39357HIGHA Defect in sql_save() Causes Multiple SQL Injection Vulnerabilities in CactiEPSS 1.5%CVE-2021-28655MEDIUMApache Zeppelin: Arbitrary file deletion vulnerabilityEPSS 1.5%CVE-2021-21394MEDIUMDenial of service (via resource exhaustion) due to improper input validation on third-party identifier endpointsEPSS 1.5%CVE-2024-21663CRITICALRemote code execution on ReconServer due to improper input sanitization on the prips commandEPSS 1.5%CVE-2022-24423MEDIUMDell iDRAC8 versions prior to 2.83.83.83 contain a denial of service vulnerability. A remote unauthenticated attacker could potentially explEPSS 1.5%CVE-2023-24866MEDIUMMicrosoft PostScript and PCL6 Class Printer Driver Information Disclosure VulnerabilityEPSS 1.5%CVE-2023-24865MEDIUMMicrosoft PostScript and PCL6 Class Printer Driver Information Disclosure VulnerabilityEPSS 1.5%CVE-2025-34055CRITICALAVTECH IP camera, DVR, and NVR Devices Authenticated Root Command ExecutionEPSS 1.5%CVE-2023-22886HIGHApache Airflow JDBC Provider: RCE VulnerabilityEPSS 1.5%CVE-2020-15256HIGHPrototype pollution in object-pathEPSS 1.5%CVE-2019-1766HIGHCisco IP Phone 8800 Series File Upload Denial of Service VulnerabilityEPSS 1.5%