Fallos del tipo CWE-20

4706 resultados
CVE-2022-28708MEDIUMOn F5 BIG-IP 16.1.x versions prior to 16.1.2.2 and 15.1.x versions prior to 15.1.5.1, when a BIG-IP DNS resolver-enabled, HTTP-Explicit or SEPSS 0.8%CVE-2018-19010Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all versions, Kappa, all version, and Infinity Explorer C700, all versions. AEPSS 0.8%CVE-2024-38243HIGHKernel Streaming Service Driver Elevation of Privilege VulnerabilityEPSS 0.8%CVE-2017-3849A vulnerability in the Autonomic Networking Infrastructure (ANI) registrar feature of Cisco IOS Software (possibly 15.2 through 15.6) and CiEPSS 0.8%CVE-2023-32890MEDIUMIn modem EMM, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additioEPSS 0.8%CVE-2023-42805HIGHquinn-proto Denial of Service vulnerabilityEPSS 0.8%CVE-2023-4698HIGHImproper Input Validation in usememos/memosEPSS 0.8%CVE-2021-39220LOWBypass of image blocking in Nextcloud MailEPSS 0.8%CVE-2025-64991MEDIUMCommand Injection in 1E-PatchInsights-Deploy InstructionEPSS 0.8%CVE-2023-48608LOWAdobe Experience Manager | Improper Input Validation (CWE-20)EPSS 0.8%CVE-2025-64993MEDIUMCommand Injection in 1E-ConfigMgrConsoleExtensions InstructionsEPSS 0.8%CVE-2023-27496MEDIUMEnvoy may crash when a redirect url without a state param is received in the oauth filterEPSS 0.8%CVE-2023-34317MEDIUMAn improper input validation vulnerability exists in the OAS Engine User Creation functionality of Open Automation Software OAS Platform v18EPSS 0.8%CVE-2025-64992MEDIUMCommand Injection in 1E-Nomad-PauseNomadJobQueue InstructionEPSS 0.8%CVE-2024-6973HIGHRemote Code Execution in Cato Windows SDP client via crafted URLsEPSS 0.8%CVE-2021-25444An IV reuse vulnerability in keymaster prior to SMR AUG-2021 Release 1 allows decryption of custom keyblob with privileged process.EPSS 0.8%CVE-2023-37915HIGHMalformed PID_PROPERTY_LIST parameter in DATA submessage remotely crashes OpenDDSEPSS 0.8%CVE-2023-36406MEDIUMWindows Hyper-V Information Disclosure VulnerabilityEPSS 0.8%CVE-2024-25131HIGHOpenshift-dedicated: must-gather-operator: yaml template injection leads to privilege escalationEPSS 0.8%CVE-2026-35031CRITICALJellyfin: Potential RCE via subtitle upload path traversal + .strm chainEPSS 0.8%