Falhas do tipo CWE-20

4.751 resultados
CVE-2022-28190MEDIUMNVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where imprEPSS 0.3%CVE-2022-30711HIGHImproper validation vulnerability in FeedsInfo prior to SMR Jun-2022 Release 1 allows attackers to launch certain activities.EPSS 0.3%CVE-2025-58361CRITICALPromptcraft Forge Studio's incomplete URL check is vulnerable to XSS via SVGEPSS 0.3%CVE-2026-25723HIGHClaude Code Vulnerable to Command Injection via Piped sed Command Bypasses File Write RestrictionsEPSS 0.3%CVE-2026-45291HIGHCloudburst Network erroneously handles invalid connectionsEPSS 0.3%CVE-2026-54405HIGHA malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi Network Application to EPSS 0.3%CVE-2024-5533MEDIUMDivi <= 4.25.1 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2026-3545CRITICALInsufficient data validation in Navigation in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to potentially perform a sandbEPSS 0.3%CVE-2021-34752MEDIUMCisco Firepower Threat Defense Command Injection VulnerabilitiesEPSS 0.3%CVE-2026-32629MEDIUMphpMyFAQ: Stored XSS via Unsanitized Email Field in Admin FAQ EditorEPSS 0.3%CVE-2021-34756MEDIUMCisco Firepower Threat Defense Software Command Injection VulnerabilitiesEPSS 0.3%CVE-2021-34755MEDIUMCisco Firepower Threat Defense Software Command Injection VulnerabilitiesEPSS 0.3%CVE-2026-49095HIGHImproper Input Validation in Kibana Fleet Leading to Privilege EscalationEPSS 0.3%CVE-2026-9124MEDIUMInsufficient validation of untrusted input in Input in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker who had compromiseEPSS 0.3%CVE-2020-12487HIGHCommand Execution Vulnerability in ABE serviceEPSS 0.3%CVE-2020-1986MEDIUMSecdo: Local authenticated users can cause Windows system crashEPSS 0.3%CVE-2021-25401Intent redirection vulnerability in Samsung Health prior to version 6.16 allows attacker to execute privileged action.EPSS 0.3%CVE-2022-47924MEDIUMArbitrary Code Execution using the validate function of csaf-validator-libEPSS 0.3%CVE-2021-3675MEDIUMsynaTEE.signed.dll Out-Of-Bounds Heap WriteEPSS 0.3%CVE-2025-63785MEDIUMA DOM-based Cross-Site Scripting (XSS) vulnerability exists in the text editor feature of the Onlook web application 0.2.32. This vulnerabilEPSS 0.3%