Falhas do tipo CWE-648
64 resultadosCVE-2023-4993HIGHSensetive Data Exposure in Utarit's SoliclubEPSS 0.4%CVE-2024-37018CRITICALThe OpenDaylight 0.15.3 controller allows topology poisoning via API requests because an application can manipulate the path that is taken bEPSS 0.4%CVE-2026-22922MEDIUMApache Airflow: Airflow externalLogUrl Permission BypassEPSS 0.4%CVE-2025-5997HIGHPrivilege Escalation in Beamsec PhishProEPSS 0.3%CVE-2025-0589MEDIUMIn affected versions of Octopus Deploy where customers are using Active Directory for authentication it was possible for an unauthenticated EPSS 0.3%CVE-2026-41386CRITICALOpenClaw < 2026.3.22 - Privilege Escalation via Unbound Bootstrap Setup CodesEPSS 0.3%CVE-2023-6522HIGHInformation Disclosure in ExtremePacs's Extreme XDSEPSS 0.3%CVE-2026-20126HIGHCisco Catalyst SD-WAN Manager Privilege Escalation VulnerabilityEPSS 0.3%CVE-2026-35669HIGHOpenClaw < 2026.3.25 - Privilege Escalation via Gateway Plugin HTTP Authentication ScopeEPSS 0.3%CVE-2026-41329CRITICALOpenClaw < 2026.3.31 - Sandbox Bypass via Heartbeat Context Inheritance and senderIsOwner EscalationEPSS 0.3%CVE-2022-26323HIGHIncorrect Use of Privileged vulnerability has been discovered on OpenText™ UCMDB and Operation Bridge Manager product.EPSS 0.3%CVE-2026-35645MEDIUMOpenClaw < 2026.3.25 - Privilege Escalation via Synthetic operator.admin in deleteSessionEPSS 0.3%CVE-2026-35663HIGHOpenClaw < 2026.3.25 - Privilege Escalation via Backend Reconnect Scope Self-ClaimEPSS 0.3%CVE-2026-41225HIGHiControl REST vulnerabilityEPSS 0.3%CVE-2022-23720HIGHPingID Windows Login prior to 2.8 does not alert or halt operation if it has been provisioned with the full permissions PingID properties fileEPSS 0.2%CVE-2025-63291MEDIUMWhen processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs to uniquely identify the data being requeEPSS 0.2%CVE-2026-11877MEDIUMMissing Authorization Vulnerability in OpenText Access ManagerEPSS 0.2%CVE-2026-35625HIGHOpenClaw < 2026.3.25 - Privilege Escalation via Silent Local Shared-Auth ReconnectEPSS 0.2%CVE-2025-1161HIGHImproper Authorization in Nomysoft Informatics' NomysemEPSS 0.2%CVE-2025-2311CRITICALAuthentication Bypass in Sechard Information Technologies' SecHardEPSS 0.2%