Falhas do tipo CWE-94

3.754 resultados
CVE-2023-24835HIGHSoftnext SPAM SQR - Code InjectionEPSS 0.9%CVE-2024-24421CRITICALA type confusion in the nas_message_decode function of Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allowsEPSS 0.9%CVE-2026-47117CRITICALOpenMed < 1.5.2 Remote Code Execution via PII Model LoadingEPSS 0.9%CVE-2021-47935HIGHSentry 8.2.0 Remote Code Execution via Pickle DeserializationEPSS 0.9%CVE-2022-22756HIGHIf a user was convinced to drag and drop an image to their desktop or other folder, the resulting object could have been changed into an exeEPSS 0.9%CVE-2021-47736HIGHCMSimple_XH 1.7.4 Authenticated Remote Code Execution via Content EditingEPSS 0.9%CVE-2026-30460HIGHDaylight Studio FuelCMS v1.5.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability in the Blocks module.EPSS 0.9%CVE-2026-39842CRITICALOpenRemote is Vulnerable to Expression InjectionEPSS 0.9%CVE-2024-1885MEDIUMRemote Code Execution attack on LG SignageEPSS 0.9%CVE-2024-37014HIGHLangflow through 0.6.19 allows remote code execution if untrusted users are able to reach the "POST /api/v1/custom_component" endpoint and pEPSS 0.9%CVE-2023-36591HIGHMicrosoft Message Queuing (MSMQ) Remote Code Execution VulnerabilityEPSS 0.9%CVE-2025-46295CRITICALApache Commons Text versions prior to 1.10.0 included interpolation features that could be abused when applications passed untrusted input iEPSS 0.9%CVE-2025-34159CRITICALCoolify Docker Compose Directive Injection in Application Deployment WorkflowEPSS 0.9%CVE-2026-24118CRITICALVM2 Sandbox Breakout Through __lookupGetter__EPSS 0.9%CVE-2023-42833HIGHA correctness issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14, Safari 17, iOS 17 and iPadOS 17. Processing EPSS 0.9%CVE-2021-32834HIGHArbitrary Groovy script evaluation in Eclipse KetiEPSS 0.9%CVE-2025-28386CRITICALA remote code execution (RCE) vulnerability in the Plugin Management component of OpenC3 COSMOS v6.0.0 allows attackers to execute arbitraryEPSS 0.9%CVE-2023-44857HIGHAn issue in Cobham SAILOR VSAT Ku v.164B019, allows a remote attacker to execute arbitrary code via a crafted script to the sub_21D24 functiEPSS 0.9%CVE-2026-41900HIGHOpenLearnX has Critical Remote Code Execution Through Python Sandbox Escape via Code Execution EnvironmentEPSS 0.9%CVE-2023-6851MEDIUMkalcaddle KodExplorer ZIP Archive app.php unzipList code injectionEPSS 0.9%