Weaknesses of type CWE-20
4,740 resultsCVE-2025-59895HIGHRemote denial-of-service (DoS) vulnerability in Sync Breeze Enterprise ServerEPSS 0.4%CVE-2025-37173HIGHImproper Input Handling Vulnerability in Authenticated Configuration API Endpoint (AOS-10/AOS-8 Web UI)EPSS 0.4%CVE-2024-7004MEDIUMInsufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced EPSS 0.4%CVE-2025-47982HIGHWindows Storage VSP Driver Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2024-23717CRITICALIn access_secure_service_from_temp_bond of btm_sec.cc, there is a possible way to achieve keystroke injection due to improper input validatiEPSS 0.4%CVE-2021-43548MEDIUMPhilips Patient Information Center iX (PIC iX) and Efficia CM Series Improper Input ValidationEPSS 0.4%CVE-2024-21590HIGHJunos OS Evolved: Packets which are not destined to the device can reach the REEPSS 0.4%CVE-2025-30151HIGHShopware allows Denial Of Service via password lengthEPSS 0.4%CVE-2022-40276MEDIUMZettlr version 2.3.0 allows an external attacker to remotely obtain arbitrary local files on any client that attempts to view a malicious maEPSS 0.4%CVE-2026-22255HIGHiccDEV has heap-buffer-overflow in CIccCLUT::Init() at IccProfLib/IccTagLut.cppEPSS 0.4%CVE-2024-13691MEDIUMUncode <= 2.9.1.6 - Authenticated (Subscriber+) Arbitrary File Read in uncode_recordMediaEPSS 0.4%CVE-2024-3676HIGHThe Proofpoint Encryption endpoint of Proofpoint Enterprise Protection contains an Improper Input Validation vulnerability that allows an unEPSS 0.4%CVE-2025-62571HIGHWindows Installer Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2026-48922HIGHJenkins Credentials Binding Plugin 720.v3f6decef43ea_ and earlier does not properly sanitize file names for file and zip file credentials, aEPSS 0.4%CVE-2026-42812CRITICALApache Polaris: No protection on `write.metadata.path`EPSS 0.4%CVE-2026-24204MEDIUMNVIDIA Flare SDK contains a vulnerability where an Attacker may cause an Improper Input Validation by path traversing. A successful exploit EPSS 0.4%CVE-2025-66902HIGHAn input validation issue in in Pithikos websocket-server v.0.6.4 allows a remote attacker to obtain sensitive information or cause unexpectEPSS 0.4%CVE-2025-41379MEDIUMInjection vulnerability in Iridium Certus 700EPSS 0.4%CVE-2019-15959MEDIUMCisco Small Business SPA500 Series IP Phones Local Script Execution VulnerabilityEPSS 0.4%CVE-2026-43944CRITICALelecterm: dangerous code can be run through links or command lineEPSS 0.4%