Falhas do tipo CWE-426
282 resultadosCVE-2024-20693HIGHWindows Kernel Elevation of Privilege VulnerabilityEPSS 0.8%CVE-2023-36422HIGHMicrosoft Windows Defender Elevation of Privilege VulnerabilityEPSS 0.8%CVE-2021-21055MEDIUMAdobe Dreamweaver Untrusted Search Path Vulnerability Could Lead To Information DisclosureEPSS 0.8%CVE-2024-23304HIGHCybozu KUNAI for Android 3.0.20 to 3.0.21 allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by performinEPSS 0.8%CVE-2025-27743HIGHMicrosoft System Center Elevation of Privilege VulnerabilityEPSS 0.8%CVE-2024-43616HIGHMicrosoft Office Remote Code Execution VulnerabilityEPSS 0.7%CVE-2024-6473HIGHDLL Hijacking in Yandex BrowserEPSS 0.7%CVE-2018-7365MEDIUMAll versions up to ZXCLOUD iRAI V5.01.05 of the ZTE uSmartView product are impacted by untrusted search path vulnerability, which may allow EPSS 0.7%CVE-2023-36898HIGHTablet Windows User Interface Application Core Remote Code Execution VulnerabilityEPSS 0.7%CVE-2025-21399HIGHMicrosoft Edge (Chromium-based) Update Elevation of Privilege VulnerabilityEPSS 0.7%CVE-2019-17099MEDIUMUntrusted Search Path vulnerability in EPSecurityService.exe (VA-3500)EPSS 0.7%CVE-2026-20943HIGHMicrosoft Office Click-To-Run Remote Code Execution VulnerabilityEPSS 0.6%CVE-2023-35343HIGHWindows Geolocation Service Remote Code Execution VulnerabilityEPSS 0.6%CVE-2024-38462CRITICALiRODS before 4.3.2 provides an msiSendMail function with a problematic dependency on the mail binary, such as in the mailMS.cpp#L94-L106 refEPSS 0.6%CVE-2023-21763HIGHMicrosoft Exchange Server Elevation of Privilege VulnerabilityEPSS 0.6%CVE-2025-59489HIGHUnity Runtime before 2025-10-02 on Android, Windows, macOS, and Linux allows argument injection that can result in loading of library code fEPSS 0.6%CVE-2022-3734MEDIUMRedis on Windows dbghelp.dll uncontrolled search pathEPSS 0.6%CVE-2024-49043HIGHMicrosoft.SqlServer.XEvent.Configuration.dll Remote Code Execution VulnerabilityEPSS 0.6%CVE-2018-10875HIGHA flaw was found in ansible. ansible.cfg is read from the current working directory which can be altered to make it point to a plugin or a mEPSS 0.6%CVE-2023-21764HIGHMicrosoft Exchange Server Elevation of Privilege VulnerabilityEPSS 0.6%