Falhas do tipo CWE-494
159 resultadosCVE-2026-9037CRITICALDownload of code without integrity check in XCharge C6EPSS 0.2%CVE-2026-45058CRITICALelecterm: Import unsafe bookmark data could lead to unsafe operation when click local type bookmarkEPSS 0.2%CVE-2026-34841CRITICALAxios npm Supply Chain Incident Impacting @usebruno/cliEPSS 0.2%CVE-2025-69263HIGHpnpm Lockfile Integrity Bypass Allows Remote Dynamic DependenciesEPSS 0.2%CVE-2023-28317MEDIUMA vulnerability has been discovered in Rocket.Chat, where editing messages can change the original timestamp, causing the UI to display messEPSS 0.2%CVE-2022-37908MEDIUMAn authenticated attacker can impact the integrity of the ArubaOS bootloader on 7xxx series controllers. Successful exploitation can compromEPSS 0.2%CVE-2019-9534—The Cobham EXPLORER 710, firmware version 1.07, does not validate its firmware imageEPSS 0.2%CVE-2025-1058HIGHCWE-494: Download of Code Without Integrity Check vulnerability exists that could render the device
inoperable when malicious firmware is doEPSS 0.2%CVE-2024-55459MEDIUMAn issue in keras 3.7.0 allows attackers to write arbitrary files to the user's machine via downloading a crafted tar file through the get_fEPSS 0.2%CVE-2025-55582MEDIUMD-Link DCS-825L firmware v1.08.01 contains a vulnerability in the watchdog script `mydlink-watch-dog.sh`, which blindly respawns binaries suEPSS 0.2%CVE-2025-35115CRITICALAgiloft insecure download of system packagesEPSS 0.2%CVE-2025-11493HIGHSelf-Update Verification Mechanism Process in ConnectWise AutomateEPSS 0.2%CVE-2024-52331HIGHECOVACS lawnmowers and vacuums deterministic firmware encryption keyEPSS 0.2%CVE-2024-50696HIGHSunGrow WiNet-S V200.001.00.P025 and earlier versions is missing integrity checks for firmware upgrades. Sending a specific MQTT message allEPSS 0.2%CVE-2023-45821MEDIUMIncorrect Docker Hub registry check in Artifact HubEPSS 0.2%CVE-2024-52583HIGHWesHacks code includes links to Leostop tracking spyware infested filesEPSS 0.2%CVE-2026-32148HIGHLockfile checksums not verified in Hex allows dependency integrity bypassEPSS 0.2%CVE-2025-53520HIGHEG4 Electronics EG4 Inverters Download of Code Without Integrity CheckEPSS 0.2%CVE-2025-9319HIGHA potential vulnerability was reported in the Lenovo Wallpaper Client that could allow arbitrary code execution under certain conditions.EPSS 0.2%CVE-2025-10539MEDIUMImproper TLS Certificate Validation RCE via Malicious Update in DeskTime Time Tracking AppEPSS 0.2%