Fallos del tipo CWE-494
159 resultadosCVE-2024-43169HIGHIBM Engineering Requirements Management DOORS Next file downloadEPSS 0.2%CVE-2023-24500HIGH Electra Central AC unit – Adjacent attacker may cause the unit to load unauthorized FWEPSS 0.2%CVE-2023-24503HIGH Electra Smart Kit for Split AC – Adjacent attacker may cause the unit to load unauthorized FWEPSS 0.2%CVE-2026-55698HIGHpnpm: Project env lockfile can short-circuit package-manager resolution and execute lockfile-selected pnpm bytesEPSS 0.2%CVE-2023-28818MEDIUMAn issue was discovered in Veritas NetBackup IT Analytics 11 before 11.2.0. The application upgrade process included unsigned files that couEPSS 0.2%CVE-2025-40604MEDIUMDownload of Code Without Integrity Check Vulnerability in the SonicWall Email Security appliance loads root filesystem images without verifyEPSS 0.2%CVE-2024-28850HIGHWP Crontrol possible RCE when combined with a pre-conditionEPSS 0.2%CVE-2025-55581HIGHD-Link DCS-825L firmware version 1.08.01 and possibly prior versions contain an insecure implementation in the mydlink-watch-dog.sh script. EPSS 0.2%CVE-2021-35532—Firmware upload verification bypass in TXpert Hub CoreTec 4EPSS 0.2%CVE-2025-52263HIGHAn issue in the Web Configuration module of Startcharge Artemis AC Charger 7-22 kW v1.0.4 allows authenticated network-adjacent attackers toEPSS 0.2%CVE-2026-42575HIGHapko doesn't verify downloaded apk packages against APKINDEX checksum (package substitution possible)EPSS 0.2%CVE-2024-48974CRITICALLife2000 Ventilator does not perform proper file integrity checks when adopting firmware updatesEPSS 0.2%CVE-2026-49241HIGHAngular: Multiple Remote Code Execution Vulnerabilities in Angular Language Service VS Code ExtensionEPSS 0.2%CVE-2024-47192MEDIUMAn issue was discovered in Mahara 23.04.8 and 24.04.4. The use of a malicious export download URL can allow an attacker to download files thEPSS 0.1%CVE-2026-22816HIGHGradle fails to disable repositories which can expose builds to malicious artifactsEPSS 0.1%CVE-2024-33660MEDIUMPotential Firmware update without integrity checkEPSS 0.1%CVE-2026-20056MEDIUMCisco Secure Web Appliance TBD Bypass VulnerabilityEPSS 0.1%CVE-2024-54126HIGHInsufficient Integrity Verification Vulnerability in TP-Link Archer C50EPSS 0.1%CVE-2026-30603MEDIUMAn issue in the firmware update mechanism of Qianniao QN-L23PA0904 v20250721.1640 allows attackers to gain root access, install backdoors, aEPSS 0.1%CVE-2026-22865HIGHGradle's failure to disable repositories failing to answer can expose builds to malicious artifactsEPSS 0.1%