Weaknesses of type CWE-502

2,250 results
CVE-2022-2561HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of OPC Labs QuickOPC 2022.1. User interactionEPSS 0.8%CVE-2023-49566HIGHApache Linkis DataSource: JDBC Datasource Module with DB2 has JNDI Injection vulnerabilityEPSS 0.8%CVE-2025-27781HIGHApplio allows unsafe deserialization in inference.pyEPSS 0.8%CVE-2023-5391CRITICAL A CWE-502: Deserialization of untrusted data vulnerability exists that could allow an attacker to execute arbitrary code on the targeted EPSS 0.8%CVE-2023-30262HIGHAn issue found in MIM software Inc MIM License Server and MIMpacs services v.6.9 thru v.7.0 fixed in v.7.0.10 allows a remote unauthenticateEPSS 0.8%CVE-2025-35050CRITICALNewforma Info Exchange (NIX) .NET unauthenticated deserializationEPSS 0.8%CVE-2025-0465MEDIUMAquilaCMS categories deserializationEPSS 0.8%CVE-2026-33819CRITICALMicrosoft Bing Remote Code Execution VulnerabilityEPSS 0.8%CVE-2023-26234MEDIUMJD-GUI 1.6.6 allows deserialization via UIMainWindowPreferencesProvider.singleInstance.EPSS 0.8%CVE-2025-6544CRITICALDeserialization Vulnerability in h2oai/h2o-3EPSS 0.8%CVE-2024-29433CRITICALA deserialization vulnerability in the FASTJSON component of Alldata v0.4.6 allows attackers to execute arbitrary commands via supplying craEPSS 0.8%CVE-2025-32144HIGHWordPress Job Board Manager Plugin <= 2.1.61 - PHP Object Injection vulnerabilityEPSS 0.8%CVE-2025-32143HIGHWordPress Accordion plugin <= 2.3.11 - PHP Object Injection vulnerabilityEPSS 0.8%CVE-2025-62164HIGHVLLM deserialization vulnerability leading to DoS and potential RCEEPSS 0.8%CVE-2025-14931CRITICALHugging Face smolagents Remote Python Executor Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 0.8%CVE-2024-8255HIGHPath Traversal in Ocean Data Systems Dream ReportEPSS 0.8%CVE-2024-8003MEDIUMGo-Tribe gotribe-admin Log routes.go InitRoutes deserializationEPSS 0.8%CVE-2023-46615MEDIUMWordPress KD Coming Soon Plugin <= 1.7 is vulnerable to PHP Object InjectionEPSS 0.8%CVE-2021-32568HIGHDeserialization of Untrusted Data in zmister2016/mrdocEPSS 0.8%CVE-2024-1859HIGHSlider Responsive Slideshow – Image slider, Gallery slideshow <= 1.3.8 - Authenticated (Contributor+) PHP Object InjectionEPSS 0.8%