Weaknesses of type CWE-1284
243 resultsCVE-2023-20508MEDIUMImproper access control in the ASP could allow a privileged attacker to perform an out-of-bounds write to a memory location not controlled bEPSS 0.1%CVE-2026-46033HIGHcrypto: authencesn - reject short ahash digests during instance creationEPSS 0.1%CVE-2024-36346MEDIUMImproper input validation in AMD Power Management Firmware (PMFW) could allow a privileged attacker from Guest VM to send arbitrary input daEPSS 0.1%CVE-2022-20488HIGHIn NotificationChannel of NotificationChannel.java, there is a possible failure to persist permissions settings due to resource exhaustion. EPSS 0.1%CVE-2026-57053MEDIUMGNU libidn before 1.44 is prone to out-of-bounds reads of uninitialized memory in the ToUnicode APIs because of mishandling in idna_to_unicoEPSS 0.1%CVE-2025-0038MEDIUMIn AMD Zynq UltraScale+ devices, the lack of address validation when executing CSU runtime services through the PMU Firmware can allow accesEPSS 0.1%CVE-2023-20708MEDIUMIn keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with SEPSS 0.1%CVE-2026-57062LOWCMS (Cryptographic Message Syntax) parsing in gpgsm in GnuPG through 2.5.20 mishandles the CMS format for AES-GCM because aes-ICVlen is suppEPSS 0.1%CVE-2025-54515LOWThe Secure Flag passed to Versal™ Adaptive SoC’s Trusted Firmware for Cortex®-A processors (TF-A) for Arm’s Power State Coordination InterfaEPSS 0.1%CVE-2026-55392MEDIUMNILFS utilities - Undefined Behavior and Out-of-Memory via Unvalidated s_log_block_sizeEPSS 0.1%CVE-2026-6839MEDIUMImproper validation of STRING tensor offsets could allows malformed string metadata to trigger out of bounds access during constant tensor iEPSS 0.1%CVE-2025-66660LOWInsufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_SRIOV_CHECK_TA_COMPAT to cEPSS 0.1%CVE-2026-0428LOWInsufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_SRIOV_COPY_VF_CHIPLET_REGSEPSS 0.1%CVE-2023-20707MEDIUMIn ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System EPSS 0.1%CVE-2025-11568MEDIUMLuksmeta: data corruption when handling luks1 partitions with luksmetaEPSS 0.1%CVE-2023-20710MEDIUMIn keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with SyEPSS 0.1%CVE-2023-20709MEDIUMIn keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with SyEPSS 0.1%CVE-2026-47329LOWIncorrect validation of field size in Ubuntu Linux AppArmor notification responsesEPSS 0.1%CVE-2023-20722MEDIUMIn m4u, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with SystEPSS 0.1%CVE-2021-0934MEDIUMIn findAllDeAccounts of AccountsDb.java, there is a possible denial of service due to resource exhaustion. This could lead to local denial oEPSS 0.1%