Fallos del tipo CWE-269
1785 resultadosCVE-2025-64336HIGHClipBucket v5's Manage Photo Feature is Vulnerable to Stored XSS Attack via Photo TitleEPSS 0.3%CVE-2021-31833HIGHPotential product security bypass vulnerability in McAfee Application and Change Control (MACC) prior to version 8.3.4 allows a locally loggEPSS 0.3%CVE-2025-22621MEDIUMPrivilege escalation for users who hold the “splunk_app_soar“ role in the Splunk App for SOAREPSS 0.3%CVE-2026-56216HIGHCapgo - Scope Escalation via API Key Creation in /functions/v1/apikeyEPSS 0.3%CVE-2026-46827HIGHVulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Self Service Manager). Supported versions that are affecEPSS 0.3%CVE-2022-1256HIGHImproper Privilege Management in McAfee Agent for WindowsEPSS 0.3%CVE-2025-5689HIGHImproper Permission Management in SSH Session HandlingEPSS 0.3%CVE-2026-21223HIGHMicrosoft Edge (Chromium-based) Security Feature Bypass VulnerabilityEPSS 0.3%CVE-2025-5494LOWPrivilege EscalationEPSS 0.3%CVE-2022-20239MEDIUMremap_pfn_range' here may map out of size kernel memory (for example, may map the kernel area), and because the 'vma->vm_page_prot' can alsoEPSS 0.2%CVE-2021-37942HIGHAPM Java Agent Local Privilege EscalationEPSS 0.2%CVE-2020-7281HIGHPrivilege Escalation vulnerability in McAfee Total Protection (MTP)EPSS 0.2%CVE-2026-48210MEDIUMPossible information disclosure via External InterfaceEPSS 0.2%CVE-2025-13292HIGHImproper access control in Google Cloud Apigee-X allows cross-tenant Analytics modification and log data access.EPSS 0.2%CVE-2024-22069HIGHPermission and Access Control Vulnerability in ZXV10 XT802/ET301EPSS 0.2%CVE-2026-6895HIGHWishlist Member <= 3.30.1 - Missing Authorization to Authenticated (Subscriber+) API Secret Key Disclosure and Privilege Escalation via 'wlm3_export_settings' AJAX ActionEPSS 0.2%CVE-2025-13680HIGHTiger <= 101.2.1 - Authenticated (Subscriber+) Privilege EscalationEPSS 0.2%CVE-2026-46958HIGHVulnerability in the Oracle Subledger Accounting product of Oracle E-Business Suite (component: Internal Operations). Supported versions thEPSS 0.2%CVE-2026-46959HIGHVulnerability in the Oracle Subledger Accounting product of Oracle E-Business Suite (component: Internal Operations). Supported versions thEPSS 0.2%CVE-2020-7273MEDIUMAutorun registry bypassEPSS 0.2%