Falhas do tipo CWE-20
4.586 resultadosCVE-2025-34100CRITICALBuilderEngine 3.5.0 RCE via Unauthenticated Arbitrary File UploadEPSS 2.3%CVE-2022-34916—Improper Input Validation (JNDI Injection) in JMSMessageConsumerEPSS 2.3%CVE-2018-18999—WebAccess/SCADA, WebAccess/SCADA Version 8.3.2 installed on Windows 2008 R2 SP1. Lack of proper validation of user supplied input may allow EPSS 2.3%CVE-2024-20670HIGHOutlook for Windows Spoofing VulnerabilityEPSS 2.3%CVE-2019-1711MEDIUMCisco IOS XR gRPC Software Denial of Service VulnerabilityEPSS 2.3%CVE-2018-0369—A vulnerability in the reassembly logic for fragmented IPv4 packets of Cisco StarOS running on virtual platforms could allow an unauthenticaEPSS 2.3%CVE-2021-3482—A flaw was found in Exiv2 in versions before and including 0.27.4-RC1. Improper input validation of the rawData.size property in Jp2Image::rEPSS 2.3%CVE-2021-36030HIGHMagento Commerce Improper Input Validation During Checkout Process Could Lead To Privilege EscalationEPSS 2.3%CVE-2020-10693MEDIUMA flaw was found in Hibernate Validator version 6.1.2.Final. A bug in the message interpolation processor enables invalid EL expressions to EPSS 2.3%CVE-2022-32534HIGHOS Command InjectionEPSS 2.3%CVE-2018-15453HIGHCisco Email Security Appliance Memory Corruption Denial of Service VulnerabilityEPSS 2.3%CVE-2022-24818HIGHUnchecked JNDI lookups in GeoToolsEPSS 2.3%CVE-2020-3147HIGHCisco Small Business Switches Denial of Service VulnerabilityEPSS 2.3%CVE-2024-1369CRITICALCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement ConsoleEPSS 2.3%CVE-2024-1359CRITICALCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement ConsoleEPSS 2.3%CVE-2024-1372CRITICALCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement ConsoleEPSS 2.3%CVE-2020-7526—Improper Input Validation vulnerability exists in PowerChute Business Edition (software V9.0.x and earlier) which could cause remote code exEPSS 2.3%CVE-2018-0113—A vulnerability in an operations script of Cisco UCS Central could allow an authenticated, remote attacker to execute arbitrary shell commanEPSS 2.3%CVE-2019-3581HIGHMcAfee Web Gateway denial of service attack due to Improper Input ValidationEPSS 2.3%CVE-2021-26624HIGHeScan Anti-Virus Local privilege escalation VulnerabilityEPSS 2.3%