Falhas do tipo CWE-20

4.713 resultados
CVE-2026-26314HIGHGo Ethereum affected by DoS via malicious p2p messageEPSS 0.6%CVE-2024-13136MEDIUMwangl1989 mysiteforme ShiroConfig.java rememberMeManager deserializationEPSS 0.6%CVE-2026-26147HIGHAzure Stack HCI Information Disclosure VulnerabilityEPSS 0.6%CVE-2024-3584CRITICALPath Traversal in qdrant/qdrantEPSS 0.6%CVE-2025-66259CRITICALAuthenticated Root Remote Code Execution through improper filtering of HTTP post request parametersEPSS 0.6%CVE-2026-45505HIGHApache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Jolokia `addNetworkConnector` Discovery Wrapper BypassEPSS 0.6%CVE-2026-1315HIGHUnauthenticated Denial of Service via Firmware Update Endpoint on TP-Link Tapo C220 & C520WSEPSS 0.6%CVE-2025-54385HIGHXWiki Platform's searchDocuments API allows for SQL injectionEPSS 0.6%CVE-2023-4241HIGHlol-html panics on certain HTML inputsEPSS 0.6%CVE-2022-23549MEDIUMDiscourse vulnerable to bypass of post max_length using HTML commentsEPSS 0.6%CVE-2023-32484CRITICAL Dell Networking Switches running Enterprise SONiC versions 4.1.0, 4.0.5, 3.5.4 and below contains an improper input validation vulnerabilitEPSS 0.6%CVE-2024-4027HIGHUndertow: outofmemoryerror in httpservletrequestimpl.getparameternames() can cause remote dos attacksEPSS 0.6%CVE-2023-38060MEDIUMHost header injection by attachments in web serviceEPSS 0.6%CVE-2026-31378MEDIUMApache OFBiz: JSON Attribute Override and URL Allowlist Bypass Leads to Remote Code ExecutionEPSS 0.6%CVE-2024-21544HIGHVersions of the package spatie/browsershot before 5.0.1 are vulnerable to Improper Input Validation due to improper URL validation in the seEPSS 0.6%CVE-2022-22247HIGHJunos OS Evolved: Kernel processing of unvalidated TCP segments could lead to a Denial of Service (DoS)EPSS 0.6%CVE-2024-38359MEDIUMLightning Network Daemon Onion BombEPSS 0.6%CVE-2022-32253MEDIUMA vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). Due to improper input validation, the OpenSSL cerEPSS 0.6%CVE-2020-3486HIGHCisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Denial of Service VulnerabilitiesEPSS 0.6%CVE-2026-22868HIGHgo-ethereum has a DoS via malicious p2p messageEPSS 0.6%