Fallos del tipo CWE-347
478 resultadosCVE-2026-46349MEDIUMMastodon: LD-Signature Bypass via JSON-LD Named-Graph RestructuringEPSS 0.2%CVE-2026-6329MEDIUMPKCS#12 MAC verification uses attacker-controlled comparison lengthEPSS 0.2%CVE-2022-24115—Local privilege escalation due to unrestricted loading of unsigned librariesEPSS 0.2%CVE-2025-20181MEDIUMA vulnerability in Cisco IOS Software for Cisco Catalyst 2960X, 2960XR, 2960CX, and 3560CX Series Switches could allow an authenticated, locEPSS 0.2%CVE-2026-2746MEDIUMMissing PGP Signature TagEPSS 0.2%CVE-2025-43185MEDIUMA downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sequoia 15.6. An app may be able to EPSS 0.2%CVE-2026-39413MEDIUMLightRAG has a JWT Algorithm Confusion Vulnerability in LightRAG APIEPSS 0.2%CVE-2024-24694MEDIUMZoom Desktop Client for Windows - Improper Privilege ManagementEPSS 0.2%CVE-2026-32883MEDIUMBotan: Missing OCSP Response Signature Verification Allows MitM Certificate Revocation BypassEPSS 0.2%CVE-2025-59803MEDIUMFoxit PDF Editor and Reader before 2025.2.1 allow signature spoofing via triggers. An attacker can embed triggers (e.g., JavaScript) in a PDEPSS 0.2%CVE-2026-4600CRITICALVersions of the package jsrsasign before 11.1.1 are vulnerable to Improper Verification of Cryptographic Signature via the DSA domain-parameEPSS 0.2%CVE-2022-34459HIGH
Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a improper verification of cryptographic signature iEPSS 0.1%CVE-2025-36418HIGHMultiple vulnerabilities found in IBM ApplinX.EPSS 0.1%CVE-2022-28752HIGHLocal Privilege Escalation in the Zoom Rooms for Windows ClientEPSS 0.1%CVE-2026-46423CRITICALRocket.Chat: SAML signature validation skipped when IdP certificate field is emptyEPSS 0.1%CVE-2026-28432HIGHHTTP signature verification can be bypassedEPSS 0.1%CVE-2026-6331LOWHMAC zero-length tag forgery in EVP_DigestVerifyFinalEPSS 0.1%CVE-2026-5466HIGHwc_VerifyEccsiHash missing sanity checkEPSS 0.1%CVE-2025-52556CRITICALrfc3161-client has insufficient verification for timestamp response signaturesEPSS 0.1%CVE-2021-34709MEDIUMCisco IOS XR Software for Cisco 8000 and Network Convergence System 540 Series Routers Image Verification VulnerabilitiesEPSS 0.1%