Fallos del tipo CWE-358
105 resultadosCVE-2024-23592MEDIUMAn authentication bypass vulnerability was reported in Lenovo devices with Synaptics fingerprint readers that could allow an attacker with pEPSS 0.3%CVE-2026-22618MEDIUMA security misconfiguration was identified in Eaton Intelligent Power Protector (IPP), where an HTTP response header was set with an insecurEPSS 0.2%CVE-2026-35679LOWZcash zcashd before 6.12.0 allows invalid transactions to be accepted under certain conditions, which potentially could have resulted in theEPSS 0.2%CVE-2020-7251MEDIUMESConfig Tool able to edit configuration for newer versionEPSS 0.2%CVE-2024-41907LOWA vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V2.0). The affected application is missinEPSS 0.2%CVE-2024-25545HIGHAn issue in Weave Weave Desktop v.7.78.10 allows a local attacker to execute arbitrary code via a crafted script to the nwjs framework compoEPSS 0.2%CVE-2021-26328MEDIUMFailure to verify the mode of CPU execution at the time of SNP_INIT may lead to a potential loss of memory integrity for SNP guests.
EPSS 0.2%CVE-2025-43262MEDIUMA permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26. USB Restricted Mode may not be applieEPSS 0.2%CVE-2025-66607MEDIUMA vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation.
The response header
contains an insecure setting.EPSS 0.2%CVE-2026-11127MEDIUMInappropriate implementation in WebAPKs in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofEPSS 0.2%CVE-2026-44473HIGHElla Core: UE Downlink Redirection via Forged PDUSessionResourceSetupResponseEPSS 0.2%CVE-2026-5894MEDIUMInappropriate implementation in PDF in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass navigation restrictions via EPSS 0.2%CVE-2026-11122MEDIUMInappropriate implementation in Keyboard in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTEPSS 0.2%CVE-2025-66601MEDIUMA vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation.
This product does not
specify MIME types. When anEPSS 0.2%CVE-2025-31969MEDIUMHCL Unica Platform is impacted by misconfigured Content Security Policy (CSP)EPSS 0.1%CVE-2025-31970MEDIUMHCL DFXAnalytics is affected by an Insecure Security Header configuration vulnerabilityEPSS 0.1%CVE-2026-44475MEDIUMElla Core: UE Security Capability bypass on NGAP PathSwitchRequestEPSS 0.1%CVE-2026-28914MEDIUMA logic issue was addressed with improved file handling. This issue is fixed in macOS Tahoe 26.5. A maliciously crafted ZIP archive may bypaEPSS 0.1%CVE-2026-44474LOWElla Core: Handover failures during concurrent Security Mode CommandEPSS 0.1%CVE-2025-32086MEDIUMImproperly implemented security check for standard in the DDRIO configuration for some Intel(R) Xeon(R) 6 Processors when using Intel(R) SGXEPSS 0.1%