Falhas do tipo CWE-20
4.735 resultadosCVE-2022-40277HIGHJoplin version 2.8.8 allows an external attacker to execute arbitrary commands remotely on any client that opens a link in a malicious markdEPSS 0.5%CVE-2023-34422MEDIUMA valid, authenticated LXCA user with elevated privileges may be able to delete folders in the LXCA filesystem through a specifically crafteEPSS 0.5%CVE-2023-34421MEDIUMA valid, authenticated LXCA user with elevated privileges may be able to replace filesystem data through a specifically crafted web API callEPSS 0.5%CVE-2024-21978MEDIUMImproper input validation in SEV-SNP could allow a malicious hypervisor to read or overwrite guest memory potentially leading to data leakagEPSS 0.5%CVE-2024-22117LOWValue of sysmap_element_url can be de-synchronized causing the map element to crash when new URLs is addedEPSS 0.5%CVE-2022-3429MEDIUMA denial-of-service vulnerability was found in the firmware used in Lenovo printers, where users send illegal or malformed strings to an opeEPSS 0.5%CVE-2023-7060HIGHMissing Security Control in Zephyr OS IP Packet HandlingEPSS 0.5%CVE-2024-39950HIGHA vulnerability has been found in Dahua products. Attackers can send carefully crafted data packets to the interface with vulnerabilities toEPSS 0.5%CVE-2024-49774HIGHModuleScanner flaws in SuiteCRMEPSS 0.5%CVE-2023-49796MEDIUMMindsDB Arbitrary File Write vulnerabilityEPSS 0.5%CVE-2020-10068MEDIUMZephyr Bluetooth DLE duplicate requests vulnerabilityEPSS 0.5%CVE-2022-34436LOW
Dell iDRAC8 version 2.83.83.83 and prior contain an improper input validation vulnerability in Racadm when the firmware lock-down configuraEPSS 0.5%CVE-2024-48919CRITICALRCE via Prompt Injection Into Cursor's Terminal Cmd-KEPSS 0.5%CVE-2022-39016HIGHJavascript injection in PDFtron in M-Files HubshareEPSS 0.5%CVE-2024-27931MEDIUMInsufficient permission checking in `Deno.makeTemp*` APIsEPSS 0.5%CVE-2018-15431—Cisco Webex Network Recording Player and Cisco Webex Player Remote Code Execution VulnerabilitiesEPSS 0.5%CVE-2023-35163MEDIUMVega's validators able to submit duplicate transactions EPSS 0.5%CVE-2022-41909MEDIUMSegfault in `CompositeTensorVariantToComponents` in TensorflowEPSS 0.5%CVE-2023-22963MEDIUMThe personnummer implementation before 3.0.3 for Dart mishandles numbers in which the last four digits match the ^000[0-9]$ regular expressiEPSS 0.5%CVE-2023-42503—Apache Commons Compress: Denial of service via CPU consumption for malformed TAR fileEPSS 0.5%