Weaknesses of type CWE-20
4,743 resultsCVE-2026-45678HIGHOpenTelemetry eBPF Instrumentation: Postgres BIND parsing can panic on malformed payloadsEPSS 0.3%CVE-2014-0762—CG Automation ePAQ-9410 Substation Gateway Improper Input ValidationEPSS 0.3%CVE-2024-35384MEDIUMAn issue in Cesanta mjs 2.20.0 allows a remote attacker to cause a denial of service via the mjs_array_length function in the mjs.c file.EPSS 0.3%CVE-2025-0958MEDIUMUltimate WordPress Auction Plugin <= 4.2.9 - Missing Authorization to Arbitrary Post DeletionEPSS 0.3%CVE-2024-2536MEDIUMRank Math SEO with AI SEO Tools <= 1.0.214 - Authenticated(Contributor+) Stored Cross-Site Scripting via HowTo block attributesEPSS 0.3%CVE-2022-29192MEDIUMMissing validation crashes `QuantizeAndDequantizeV4Grad` in TensorFlowEPSS 0.3%CVE-2021-1432HIGHCisco IOS XE SD-WAN Software Arbitrary Command Execution VulnerabilityEPSS 0.3%CVE-2026-55602MEDIUMhttp-proxy-middleware `router` host+path substring matching allows Host-header-driven backend routing bypassEPSS 0.3%CVE-2014-2346—COPA-DATA zenon DNP3 Improper Input ValidationEPSS 0.3%CVE-2023-38654HIGHImproper input validation for some some Intel(R) PROSet/Wireless WiFi software for Windows before version 23.20 may allow an unauthenticatedEPSS 0.3%CVE-2025-40831HIGHA vulnerability has been identified in SINEC Security Monitor (All versions < V4.10.0). The affected application lacks input validation of dEPSS 0.3%CVE-2026-33894HIGHForge has signature forgery in RSA-PKCS due to ASN.1 extra fieldEPSS 0.3%CVE-2026-22598HIGHManageIQ vulnerable to DoS Attack when creating TimeProfilesEPSS 0.3%CVE-2026-25126HIGHPolarLearn's unvalidated vote direction allows vote count manipulationEPSS 0.3%CVE-2026-50196HIGHSteeltoe.Discovery.Eureka: Unrecognized DataCenterInfo.Name poisons entire registry fetchEPSS 0.3%CVE-2024-0126HIGHNVIDIA GPU Display Driver for Windows and Linux contains a vulnerability which could allow a privileged attacker to escalate permissions. A EPSS 0.3%CVE-2026-9497MEDIUMchangmingxie tcc-transaction Fastjson AutoType REST API Fastjson.parseObject deserializationEPSS 0.3%CVE-2022-29206MEDIUMMissing validation results in undefined behavior in `SparseTensorDenseAdd` in TensorFlowEPSS 0.3%CVE-2025-43464MEDIUMA denial-of-service issue was addressed with improved input validation. This issue is fixed in macOS Tahoe 26.1. Visiting a website may leadEPSS 0.3%CVE-2020-3435MEDIUMCisco AnyConnect Secure Mobility Client for Windows Profile Modification VulnerabilityEPSS 0.3%