Falhas do tipo CWE-22

4.873 resultados
CVE-2023-35670HIGHIn computeValuesFromData of FileUtils.java, there is a possible way to insert files to other apps' external private directories due to a patEPSS 0.1%CVE-2025-48550MEDIUMIn testGrantSlicePermission of SliceManagerTest.java, there is a possible permanent denial of service due to a path traversal error. This coEPSS 0.1%CVE-2024-47027HIGHIn sm_mem_compat_get_vmm_obj of lib/sm/shared_mem.c, there is a possible arbitrary physical memory access due to improper input validation. EPSS 0.1%CVE-2026-53766MEDIUMchrome-devtools-mcp: validatePath() does not canonicalize symlinks before enforcing rootsEPSS 0.1%CVE-2025-48636HIGHIn openFile of BugreportContentProvider.java, there is a possible way to read and write unauthorized files due to a path traversal error. ThEPSS 0.1%CVE-2026-0055MEDIUMIn createSessionInternal of PackageInstallerService.java, there is a possible to update a Device Policy Controller (DPC) into an invalid dirEPSS 0.1%CVE-2025-9142HIGHLocal privilege escalation in Harmony SASE Windows AgentEPSS 0.1%CVE-2026-26396HIGHOpenBMB XAgent v1.0.0 and before is vulnerable to path traversal in the file() function in XAgent/XAgentServer/application/routers/workspaceEPSS CVE-2026-15626MEDIUMnextlevelbuilder GoClaw ACP ToolBridge Workspace tool_bridge.go writeFile path traversalEPSS CVE-2026-61505MEDIUMRejetto HFS < 3.2.1 Limited File Disclosure via Path Traversal in lang ParameterEPSS CVE-2026-57856HIGHCockpit CMS Path Traversal via Bucket Name in Bucket File Storage APIEPSS CVE-2026-49970HIGHLaravel-Mediable < 7.0.0 Path Traversal via File::sanitizePath()EPSS CVE-2026-12482LOWPath Traversal via Symlink Name Validation Bypass in keras-team/kerasEPSS