Falhas do tipo CWE-20

4.706 resultados
CVE-2023-47161MEDIUMIBM UrbanCode Deploy denial of serviceEPSS 0.8%CVE-2024-43561MEDIUMWindows Mobile Broadband Driver Denial of Service VulnerabilityEPSS 0.8%CVE-2024-43558MEDIUMWindows Mobile Broadband Driver Denial of Service VulnerabilityEPSS 0.8%CVE-2024-43557MEDIUMWindows Mobile Broadband Driver Denial of Service VulnerabilityEPSS 0.8%CVE-2023-21749HIGHWindows Kernel Elevation of Privilege VulnerabilityEPSS 0.8%CVE-2020-15199MEDIUMDenial of Service in TensorflowEPSS 0.8%CVE-2019-12626MEDIUMCisco Unified Contact Center Express Stored Cross-Site Scripting VulnerabilityEPSS 0.8%CVE-2024-31841HIGHAn issue was discovered in Italtel Embrace 1.6.4. The web server fails to sanitize input data, allowing remote unauthenticated attackers to EPSS 0.8%CVE-2022-2529HIGHMultiple DoS Attack Vectors in sflow packet handlingEPSS 0.8%CVE-2024-24696MEDIUMZoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows - Improper Input ValidationEPSS 0.8%CVE-2025-27224CRITICALTRUfusion Enterprise through 7.10.4.0 uses the /trufusionPortal/fileupload endpoint to upload files. However, the application doesn't properEPSS 0.8%CVE-2024-24695MEDIUM Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows - Improper Input ValidationEPSS 0.8%CVE-2020-1727MEDIUMA vulnerability was found in Keycloak before 9.0.2, where every Authorization URL that points to an IDP server lacks proper input validationEPSS 0.8%CVE-2022-22658MEDIUMAn input validation issue was addressed with improved input validation. This issue is fixed in iOS 16.0.3. Processing a maliciously crafted EPSS 0.8%CVE-2020-16099MEDIUMIn Gallagher Command Centre v8.20 prior to v8.20.1093(MR2) it is possible to create Guard Tour events that when accessed via things like repEPSS 0.8%CVE-2020-15233MEDIUMOAuth2 Redirect URL validity does not respect query parameters and character casing for loopback addressesEPSS 0.8%CVE-2023-27483MEDIUMfieldpath's Paved.SetValue allows growing arrays up to arbitrary sizes in crossplane-runtimeEPSS 0.8%CVE-2025-27151MEDIUMredis-check-aof may lead to stack overflow and potential RCEEPSS 0.8%CVE-2023-26159HIGHVersions of the package follow-redirects before 1.15.4 are vulnerable to Improper Input Validation due to the improper handling of URLs by tEPSS 0.8%CVE-2019-1920HIGHCisco IOS Access Points Software 802.11r Fast Transition Denial of Service VulnerabilityEPSS 0.8%