Weaknesses of type CWE-502

2,282 results
CVE-2025-14924HIGHHugging Face Transformers megatron_gpt2 Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 0.3%CVE-2025-14920HIGHHugging Face Transformers Perceiver Model Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 0.3%CVE-2025-14921HIGHHugging Face Transformers Transformer-XL Model Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 0.3%CVE-2025-65035MEDIUMGLPI Database Inventory Plugin Vulnerable to Stored Object InjectionEPSS 0.3%CVE-2025-53416HIGHFile Parsing Deserialization of Untrusted Data in DTN SoftEPSS 0.3%CVE-2026-24156HIGHNVIDIA DALI contains a vulnerability where an attacker could cause a deserialization of untrusted data. A successful exploit of this vulneraEPSS 0.3%CVE-2025-69276LOWSpectrum insecure deserialiationEPSS 0.3%CVE-2026-3048MEDIUMNexus Repository 3 - Improper LDAP Referral HandlingEPSS 0.3%CVE-2026-7584HIGHArbitrary Code Execution via Unsafe Deserialization in LabOne QEPSS 0.3%CVE-2026-48502HIGHMessagePack-CSharp: Denial of service vulnerabilities can swamp the CPU or crash the process with stack and heap overflowsEPSS 0.3%CVE-2026-39555HIGHWordPress Askka theme <= 1.3.1 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2025-71354HIGHpicklescan - Remote Code Execution via idlelib.debugobj.ObjectTreeItem.SetTextEPSS 0.3%CVE-2026-37552HIGHUnsafe deserialization vulnerability in MixPHP Framework 2.x thru 2.2.17. The sync-invoke TCP server (Server.php:87) receives data from a TCEPSS 0.3%CVE-2025-43489LOWPoly Clariti Manager - Multiple Security VulnerabilitiesEPSS 0.3%CVE-2026-27410MEDIUMWordPress Slimstat Analytics plugin < 5.4.0 - Deserialization of untrusted data vulnerabilityEPSS 0.3%CVE-2026-40755HIGHWordPress TechLink theme <= 1.3 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-40756HIGHWordPress Zoya theme <= 1.4 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-39580HIGHWordPress Micdrop theme <= 1.3.1 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-40757HIGHWordPress Château theme <= 1.2.1 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-40760HIGHWordPress Behold theme <= 1.5 - PHP Object Injection vulnerabilityEPSS 0.3%