Fallos del tipo CWE-290
466 resultadosCVE-2021-27862MEDIUML2 network filtering bypass using stacked VLAN0 and LLC/SNAP headers with an invalid length during Ethernet to Wifi frame translationEPSS 0.6%CVE-2024-22519HIGHAn issue discovered in OpenDroneID OSM 3.5.1 allows attackers to impersonate other drones via transmission of crafted data packets.EPSS 0.6%CVE-2025-59385HIGHQTS, QuTS heroEPSS 0.6%CVE-2025-32012MEDIUMJellyfin Vulnerable to Denial of Service (DoS) via IP SpoofingEPSS 0.6%CVE-2026-42354CRITICALSentry: Improper authentication on SAML SSO process allows user identity linkingEPSS 0.6%CVE-2019-3884LOWA vulnerability exists in the garbage collection mechanism of atomic-openshift. An attacker able spoof the UUID of a valid object from anothEPSS 0.6%CVE-2023-2807MEDIUMAuthentication bypass in password reset processEPSS 0.6%CVE-2023-23398HIGHMicrosoft Excel Spoofing VulnerabilityEPSS 0.6%CVE-2023-28452HIGHAn issue was discovered in CoreDNS through 1.10.1. There is a vulnerability in DNS resolving software, which triggers a resolver to ignore vEPSS 0.6%CVE-2025-27695MEDIUMDell Wyse Management Suite, versions prior to WMS 5.1 contain an Authentication Bypass by Spoofing vulnerability. A high privileged attackerEPSS 0.6%CVE-2024-22520HIGHAn issue discovered in Dronetag Drone Scanner 1.5.2 allows attackers to impersonate other drones via transmission of crafted data packets.EPSS 0.6%CVE-2024-46957CRITICALMellium mellium.im/xmpp 0.0.1 through 0.21.4 allows response spoofing if the implementation uses predictable IDs because the stanza type is EPSS 0.6%CVE-2022-36331CRITICALImpersonation attack causing an Authentication Bypass on Western Digital devicesEPSS 0.6%CVE-2024-35538MEDIUMTypecho v1.3.0 was discovered to contain a Client IP Spoofing vulnerability, which allows attackers to falsify their IP addresses by specifyEPSS 0.6%CVE-2023-44447MEDIUMTP-Link TL-WR902AC loginFs Improper Authentication Information Disclosure VulnerabilityEPSS 0.6%CVE-2022-41798MEDIUMSession information easily guessable vulnerability exists in Kyocera Document Solutions MFPs and printers, which may allow a network-adjacenEPSS 0.6%CVE-2023-2001MEDIUMAn issue has been discovered in GitLab CE/EE affecting all versions before 15.10.8, all versions starting from 15.11 before 15.11.7, all verEPSS 0.6%CVE-2022-31738MEDIUMWhen exiting fullscreen mode, an iframe could have confused the browser about the current state of fullscreen, resulting in potential user cEPSS 0.6%CVE-2024-3843MEDIUMInsufficient data validation in Downloads in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to perform UI spoofing via a craEPSS 0.6%CVE-2023-38173MEDIUMMicrosoft Edge for Android Spoofing VulnerabilityEPSS 0.6%