Weaknesses of type CWE-233
30 resultsCVE-2026-22626MEDIUMDue to insufficient input parameter validation on the interface, authenticated users of certain HIKSEMI NAS products can cause abnormal deviEPSS 0.4%CVE-2023-40819MEDIUMID4Portais in version < V.2022.837.002a returns message parameter unsanitized in the response, resulting in a HTML Injection vulnerability.EPSS 0.3%CVE-2023-28898MEDIUMHead Unit Denial-of-Service via Apple CarPlay serviceEPSS 0.2%CVE-2018-25233MEDIUMWebDrive 18.00.5057 Denial of Service via Secure WebDAVEPSS 0.2%CVE-2024-20306MEDIUMA vulnerability in the Unified Threat Defense (UTD) configuration CLI of Cisco IOS XE Software could allow an authenticated, local attacker EPSS 0.2%CVE-2023-7261HIGHInappropriate implementation in Google Updator prior to 1.3.36.351 in Google Chrome allowed a local attacker to perform privilege escalationEPSS 0.2%CVE-2025-55078MEDIUMIncomplete validation of kernel object pointers in system callsEPSS 0.2%CVE-2023-20514HIGHImproper handling of parameters in the AMD Secure Processor (ASP) could allow a privileged attacker to pass an arbitrary memory value to funEPSS 0.1%CVE-2026-33585LOWArqit SKA-Platform Improper Handling of Parameters VulnerabilityEPSS 0.1%CVE-2025-55080HIGHImproper Parameter Check in ThreadX Syscall ImplementationEPSS 0.1%