Fallos del tipo CWE-653
54 resultadosCVE-2025-1974CRITICALingress-nginx admission controller RCE escalationEPSS 99.3%CVE-2025-57738HIGHApache Syncope: Remote Code Execution by delegated administratorsEPSS 23.1%CVE-2025-21590MEDIUMJunos OS: An local attacker with shell access can execute arbitrary codeEPSS 1.7%KEVCVE-2024-0135HIGHNVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted container image could lead to modification oEPSS 1.0%CVE-2024-33768CRITICALlunasvg v2.3.9 was discovered to contain a segmentation violation via the component composition_solid_source_over.EPSS 0.8%CVE-2023-1305HIGHRapid7 InsightCloudSec box object access EPSS 0.8%CVE-2026-42782HIGHApache Syncope: Post-auth RCE via Groovy staticEPSS 0.7%CVE-2024-0136HIGHNVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted container image could lead to untrusted codeEPSS 0.6%CVE-2026-0542CRITICALRemote Code Execution in ServiceNow AI PlatformEPSS 0.6%CVE-2025-41688HIGHHigh Privilege RCE via LUA Sandbox EscapeEPSS 0.6%CVE-2024-8118MEDIUMGrafana alerting wrong permission on datasource rule write endpointEPSS 0.6%CVE-2024-43803MEDIUMBMO can expose particularly named secrets from other namespaces via BMH CRDEPSS 0.6%CVE-2025-24986MEDIUMAzure Promptflow Remote Code Execution VulnerabilityEPSS 0.5%CVE-2023-1636MEDIUMIncomplete container isolationEPSS 0.5%CVE-2024-53855LOWUser can view tickets from organizations they're not apart of in centurion_erpEPSS 0.4%CVE-2026-4282HIGHKeycloak: keycloak: privilege escalation via forged authorization codes due to singleuseobjectprovider isolation flawEPSS 0.4%CVE-2024-47520HIGHA user with advanced report application access rights can perform actions for which they are not authorizedEPSS 0.4%CVE-2024-55456MEDIUMlunasvg v3.0.1 was discovered to contain a segmentation violation via the component gray_find_cellEPSS 0.4%CVE-2025-12805HIGHLlama-stack-k8s-operator: llama stack service exposed across namespaces due to missing networkpolicyEPSS 0.4%CVE-2024-49373MEDIUMCenturion ERP user can view projects from organizations they're not apart ofEPSS 0.4%