Falhas do tipo CWE-20

4.753 resultados
CVE-2024-54100MEDIUMVulnerability of improper access control in the secure input module Impact: Successful exploitation of this vulnerability may cause featuresEPSS 0.2%CVE-2022-28791MEDIUMImproper input validation vulnerability in InstallAgent in Galaxy Store prior to version 4.5.41.8 allows attacker to overwrite files stored EPSS 0.2%CVE-2026-28821HIGHA validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement. ThEPSS 0.2%CVE-2024-54140LOWsigstore-java has a vulnerability with bundle verificationEPSS 0.2%CVE-2023-49615HIGHImproper input validation in some Intel(R) System Security Report and System Resources Defense firmware may allow a privileged user to potenEPSS 0.2%CVE-2025-43195MEDIUMAn issue existed in the handling of environment variables. This issue was addressed with improved validation. This issue is fixed in macOS SEPSS 0.2%CVE-2024-45441MEDIUMInput verification vulnerability in the system service module Impact: Successful exploitation of this vulnerability will affect availabilityEPSS 0.2%CVE-2026-11069MEDIUMInsufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin pEPSS 0.2%CVE-2021-33161HIGHImproper input validation in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware may allow a privilEPSS 0.2%CVE-2025-41378MEDIUMInjection vulnerability in Iridium Certus 700EPSS 0.2%CVE-2026-3230LOWImproper key_share validation in TLS 1.3 HelloRetryRequestEPSS 0.2%CVE-2024-22429HIGHDell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with admin privileges could potentially EPSS 0.2%CVE-2025-11497MEDIUMAdvanced Database Cleaner <= 3.1.6 - Cross-Site Request Forgery to Settings ManipulationEPSS 0.2%CVE-2026-12017LOWInappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderEPSS 0.2%CVE-2026-6779MEDIUMOther issue in the JavaScript Engine componentEPSS 0.2%CVE-2022-24379HIGHImproper input validation in some Intel(R) Server System M70KLP Family BIOS firmware before version 01.04.0029 may allow a privileged user tEPSS 0.2%CVE-2025-30648HIGHJunos OS and Junos OS Evolved: Receipt of a specifically malformed DHCP packet causes jdhcpd process to crashEPSS 0.2%CVE-2026-7965LOWInsufficient validation of untrusted input in DevTools in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromisedEPSS 0.2%CVE-2025-21477HIGHImproper Input Validation in ModemEPSS 0.2%CVE-2026-24347MEDIUMArbitrary file write to /tmp directory in EZCast Pro II DongleEPSS 0.2%