Falhas do tipo CWE-20

4.705 resultados
CVE-2017-12273A vulnerability in 802.11 association request frame processing for the Cisco Aironet 1560, 2800, and 3800 Series Access Points could allow aEPSS 0.9%CVE-2024-50557HIGHA vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2), RUGGEDCOM RM1224 LTE(4G) NAM EPSS 0.9%CVE-2024-28897MEDIUMSecure Boot Security Feature Bypass VulnerabilityEPSS 0.9%CVE-2023-27491MEDIUMEnvoy forwards invalid Http2/Http3 downstream headersEPSS 0.9%CVE-2022-0550HIGHAuthenticated RCE on logo report upload in Guardian/CMC before 22.0.0EPSS 0.9%CVE-2025-52907HIGHTOTOLINK X6000R Security Bypass VulnerabilityEPSS 0.9%CVE-2024-55952HIGHDataease Redshift Data Source JDBC Connection Parameters Not Verified Leads to RCE VulnerabilityEPSS 0.9%CVE-2022-0551HIGHAuthenticated RCE on project configuration import in Guardian/CMC before 22.0.0EPSS 0.9%CVE-2022-3095CRITICALIncorrect parsing of the backslash characters in Dart libraryEPSS 0.9%CVE-2022-36362HIGHA vulnerability has been identified in LOGO! 12/24RCE (6ED1052-1MD08-0BA1) (All versions), LOGO! 12/24RCE (6ED1052-1MD08-0BA2) (All versionsEPSS 0.9%CVE-2023-6012HIGHIncorrect input data validation in Lanaccess ONSAFE MonitorHM Web ConsoleEPSS 0.9%CVE-2023-1289A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault. This flaw allEPSS 0.9%CVE-2020-7871HIGHA vulnerability of Helpcom could allow an unauthenticated attacker to execute arbitrary command. This vulnerability exists due to insufficieEPSS 0.9%CVE-2018-10922HIGHAn input validation flaw exists in ttembed. With a crafted input file, an attacker may be able to trigger a denial of service condition due EPSS 0.9%CVE-2025-34108HIGHDisk Pulse Enterprise 9.0.34 Login Stack Buffer OverflowEPSS 0.9%CVE-2022-47392MEDIUMCODESYS: Multiple products prone to Improper Input ValidationEPSS 0.9%CVE-2022-4504HIGHImproper Input Validation in openemr/openemrEPSS 0.9%CVE-2017-16005Http-signature is a "Reference implementation of Joyent's HTTP Signature Scheme". In versions <=0.9.11, http-signature signs only the headerEPSS 0.9%CVE-2024-44808CRITICALAn issue in Vypor Attack API System v.1.0 allows a remote attacker to execute arbitrary code via the user GET parameter.EPSS 0.9%CVE-2018-0395HIGHCisco FXOS and NX-OS Software Link Layer Discovery Protocol Denial of Service VulnerabilityEPSS 0.9%