Falhas do tipo CWE-20

4.705 resultados
CVE-2025-43347CRITICALThis issue was addressed by removing the vulnerable code. This issue is fixed in iOS 26 and iPadOS 26, macOS Tahoe 26, tvOS 26, visionOS 26,EPSS 0.8%CVE-2023-35336MEDIUMWindows MSHTML Platform Security Feature Bypass VulnerabilityEPSS 0.8%CVE-2025-62164HIGHVLLM deserialization vulnerability leading to DoS and potential RCEEPSS 0.8%CVE-2021-26613HIGHtobesoft nexacro arbitrary file creation vulnerabilityEPSS 0.8%CVE-2021-36322MEDIUMDell Networking X-Series firmware versions prior to 3.0.1.8 contain a host header injection vulnerability. A remote unauthenticated attackerEPSS 0.8%CVE-2024-33700HIGHThe LevelOne WBR-6012 router firmware R0.40e6 suffers from an input validation vulnerability within its FTP functionality, enabling attackerEPSS 0.8%CVE-2024-42458CRITICALserver.c in Neat VNC (aka neatvnc) before 0.8.1 does not properly validate the security type, a related issue to CVE-2006-2369.EPSS 0.8%CVE-2025-0422HIGHAuthenticated Remote Code Execution via ScriptVarEPSS 0.8%CVE-2023-45161CRITICAL1E-Exchange-URLResponseTime instruction before v20.1 allows arbitrary code executionEPSS 0.8%CVE-2021-43850MEDIUMDenial of Service in discourseEPSS 0.8%CVE-2023-5964CRITICAL1E-Exchange-DisplayMessage instruction allows for arbitrary code executionEPSS 0.8%CVE-2024-38311MEDIUMApache Traffic Server: Request smuggling via pipelining after a chunked message bodyEPSS 0.8%CVE-2024-5138HIGHThe snapctl component within snapd allows a confined snap to interact with the snapd daemon to take certain privileged actions on behalf of EPSS 0.8%CVE-2025-21344HIGHMicrosoft SharePoint Server Remote Code Execution VulnerabilityEPSS 0.8%CVE-2026-47367CRITICALA malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in UID EnterpEPSS 0.8%CVE-2024-25583HIGHCrafted responses can lead to a denial of service in Recursor if recursive forwarding is configuredEPSS 0.8%CVE-2024-47823HIGHLivewire Remote Code Execution (RCE) on File UploadsEPSS 0.8%CVE-2025-21194HIGHMicrosoft Surface Security Feature Bypass VulnerabilityEPSS 0.8%CVE-2022-40266MEDIUMDenial-of-Service (DoS) Vulnerability in FTP Server Function on GOT2000 SeriesEPSS 0.8%CVE-2022-31036MEDIUMSymlink following allows leaking out-of-bounds YAML files from Argo CD repo-serverEPSS 0.8%