Fallos del tipo CWE-20

4743 resultados
CVE-2019-1910HIGHCisco IOS XR Software Intermediate System to Intermediate System Denial of Service VulnerabilityEPSS 0.4%CVE-2017-12301A vulnerability in the Python scripting subsystem of Cisco NX-OS Software could allow an authenticated, local attacker to escape the Python EPSS 0.4%CVE-2023-43073MEDIUM Dell SmartFabric Storage Software v1.4 (and earlier) contains an Improper Input Validation vulnerability in RADIUS configuration. An authenEPSS 0.4%CVE-2025-59028MEDIUMWhen sending invalid base64 SASL data, login process is disconnected from the auth server, causing all active authentication sessions to faiEPSS 0.4%CVE-2023-37241Input verification vulnerability in the WMS API. Successful exploitation of this vulnerability may cause the device to restart.EPSS 0.4%CVE-2022-44556HIGHMissing parameter type validation in the DRM module. Successful exploitation of this vulnerability may affect availability. EPSS 0.4%CVE-2025-26858HIGHA buffer overflow vulnerability exists in the Modbus TCP functionality of Socomec DIRIS Digiware M-70 1.6.9. A specially crafted set of netwEPSS 0.4%CVE-2024-43373HIGHwebcrack has an Arbitrary File Write Vulnerability on Windows when Parsing and Saving a Malicious BundleEPSS 0.4%CVE-2022-35171When a user opens manipulated JPEG 2000 (.jp2, jp2k.x3d) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the appliEPSS 0.4%CVE-2023-20132MEDIUMCisco Webex Meetings Web UI VulnerabilitiesEPSS 0.4%CVE-2026-38639HIGHAn issue in the parse_month function (/time/strptime.rs) of relibc commit ab6a2e allows attackers to cause a Denial of Service (DoS) via parEPSS 0.4%CVE-2026-29905MEDIUMKirby CMS through 5.1.4 allows an authenticated user with 'Editor' permissions to cause a persistent Denial of Service (DoS) via a malformedEPSS 0.4%CVE-2022-22384MEDIUMIBM Security Verify Privilege improper input validationEPSS 0.4%CVE-2023-26273MEDIUMIBM QRadar security bypassEPSS 0.4%CVE-2019-1839MEDIUMCisco Remote PHY Device Software Command Injection VulnerabilityEPSS 0.4%CVE-2020-3556HIGHCisco AnyConnect Secure Mobility Client Arbitrary Code Execution VulnerabilityEPSS 0.4%CVE-2022-25729CRITICALImproper Input Validation in MODEMEPSS 0.4%CVE-2025-3898HIGHCWE-20: Improper Input Validation vulnerability exists that could cause Denial of Service when an authenticated malicious user sends HTTPS rEPSS 0.4%CVE-2026-39850HIGHYii 2: Local file inclusion via view parameter name collisionEPSS 0.4%CVE-2025-20154HIGHCisco IOS, IOS XE and IOS XR Software TWAMP Denial of Service VulnerabilityEPSS 0.4%