Falhas do tipo CWE-20
4.678 resultadosCVE-2025-24446CRITICALColdFusion | Improper Input Validation (CWE-20)EPSS 1.5%CVE-2022-26336—A carefully crafted TNEF file can cause an out of memory exceptionEPSS 1.5%CVE-2021-36742HIGHA improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG and Worry-Free Business Security 10.EPSS 1.5%KEVCVE-2017-2658LOWIt was discovered that the Dashbuilder login page as used in Red Hat JBoss BPM Suite before 6.4.2 and Red Hat JBoss Data Virtualization & SeEPSS 1.5%CVE-2024-3096MEDIUMPHP function password_verify can erroneously return true when argument contains NULEPSS 1.5%CVE-2024-7988CRITICALThinManager® ThinServer™ Information Disclosure and Remote Code Execution VulnerabilitiesEPSS 1.5%CVE-2020-7863HIGHRaonwiz RAON K Upload Arbitrary Command Execution VulnerabilityEPSS 1.5%CVE-2018-0462—Cisco Enterprise NFV Infrastructure Software Denial of Service VulnerabilityEPSS 1.5%CVE-2020-3444MEDIUMCisco SD-WAN Software Packet Filtering Bypass VulnerabilityEPSS 1.5%CVE-2021-36007LOWAdobe Prelude MP4 File Parsing Uninitialized Variable Information Disclosure VulnerabilityEPSS 1.5%CVE-2024-21316MEDIUMWindows Server Key Distribution Service Security Feature BypassEPSS 1.5%CVE-2022-46365CRITICALApache StreamPark (incubating): Logic error causing any account resetEPSS 1.5%CVE-2024-41115CRITICALRemote code execution in streamlit geospatial in pages/1_📷_Timelapse.py MODIS Ocean Color SMI option paletteEPSS 1.5%CVE-2022-39312CRITICALDataease Mysql Data Source JDBC Connection Parameters Not Verified Leads to Deserialization VulnerabilityEPSS 1.5%CVE-2022-21646HIGHLookup operations do not take into account wildcards in SpiceDBEPSS 1.5%CVE-2023-39913HIGHApache UIMA Java SDK Core, Apache UIMA Java SDK CPE, Apache UIMA Java SDK Vinci adapter, Apache UIMA Java SDK tools: Potential untrusted code execution when deserializing certain binary CAS formatsEPSS 1.5%CVE-2023-29246HIGHApache OpenMeetings: allows null-byte InjectionEPSS 1.5%CVE-2023-50262MEDIUMDompdf possible DoS caused by infinite recursion when parsing SVG imagesEPSS 1.5%CVE-2022-24093CRITICALAdobe Commerce post-auth improper input validation leads to remote code executionEPSS 1.5%CVE-2019-10937—A vulnerability has been identified in SIMATIC TDC CP51M1 (All versions < V1.1.7). An attacker with network access to the device could causeEPSS 1.5%