Weaknesses of type CWE-288
590 resultsCVE-2026-35634MEDIUMOpenClaw < 2026.3.23 - Authentication Bypass via Local-Direct Requests in Canvas GatewayEPSS 0.1%CVE-2025-40581HIGHA vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions with SINEMA Remote Connect Edge Client installed)EPSS 0.1%CVE-2025-12445MEDIUMPolicy bypass in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extensioEPSS 0.1%CVE-2025-14714LOWTCC Bypass via Inherited Permissions in Bundled InterpreterEPSS 0.1%CVE-2023-21098HIGHIn multiple functions of AccountManagerService.java, there is a possible loading of arbitrary code into the System Settings app due to a conEPSS 0.1%CVE-2025-48904MEDIUMVulnerability that cards can call unauthorized APIs in the FRS process
Impact: Successful exploitation of this vulnerability may affect avaiEPSS 0.1%CVE-2026-20460MEDIUMIn Modem, there is a possible information disclosure due to improper input validation. This could lead to remote information disclosure, if EPSS —CVE-2026-58172CRITICALOcelot - IP Allow/Block List Bypass for WebSocket Upgrade RequestsEPSS —CVE-2026-12579HIGHAS228T - Authentication Bypass VulnerabilityEPSS —CVE-2026-20459MEDIUMIn Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connecEPSS —