Fallos del tipo CWE-20

4707 resultados
CVE-2023-29293LOWAdobe Commerce | Improper Input Validation (CWE-20)EPSS 0.9%CVE-2022-36023HIGHRemote denial of service in Hyperledger Fabric GatewayEPSS 0.9%CVE-2021-20302A flaw was found in OpenEXR's TiledInputFile functionality. This flaw allows an attacker who can submit a crafted single-part non-image to bEPSS 0.9%CVE-2021-43861HIGHIncorrect sanitisation function leads to `XSS`EPSS 0.9%CVE-2020-3474MEDIUMCisco IOS XE Software Web Management Framework VulnerabilitiesEPSS 0.9%CVE-2021-22277HIGHAC 800M MMS - Denial of Service vulnerability in MMS communicationEPSS 0.9%CVE-2022-28328A vulnerability has been identified in SCALANCE W1788-1 M12 (All versions < V3.0.0), SCALANCE W1788-2 EEC M12 (All versions < V3.0.0), SCALAEPSS 0.9%CVE-2023-0299HIGHImproper Input Validation in publify/publifyEPSS 0.9%CVE-2023-42449HIGHMalicious head initialiser can extract PTs from control of Hydra scripts, leading to locked participant commits or spoofed commitsEPSS 0.9%CVE-2023-28098MEDIUMOpenSIPS has vulnerability in the Digest Authentication ParserEPSS 0.9%CVE-2023-26125MEDIUMVersions of the package github.com/gin-gonic/gin before 1.9.0 are vulnerable to Improper Input Validation by allowing an attacker to use a sEPSS 0.9%CVE-2023-28099MEDIUMOpenSIPS has vulnerability in the ds_is_in_list() functionEPSS 0.9%CVE-2023-46285HIGHA vulnerability has been identified in Opcenter Execution Foundation (All versions < V2407), Opcenter Quality (All versions < V2312), SIMATIEPSS 0.9%CVE-2021-23044On BIG-IP version 16.x before 16.1.0, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.2, 13.1.x before 13.1.4.1, and all versions of 12.1.x andEPSS 0.9%CVE-2021-23045On BIG-IP version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.3, 13.1.x before 13.1.4.1, and all versions of 12.1.xEPSS 0.9%CVE-2021-23036On version 16.0.x before 16.0.1.2, when a BIG-IP ASM and DataSafe profile are configured on a virtual server, undisclosed requests can causeEPSS 0.9%CVE-2021-23028On version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.2, and 13.1.x before 13.1.4, when JSON content profiles are EPSS 0.9%CVE-2021-23032On version 16.x before 16.1.0, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.4, and all versions of 13.1.x and 12.1.x, when a BIG-IP DNS systEPSS 0.9%CVE-2021-23033On BIG-IP Advanced WAF and BIG-IP ASM version 16.x before 16.1.0x, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.3, 13.1.x before 13.1.4.1, aEPSS 0.9%CVE-2024-49087MEDIUMWindows Mobile Broadband Driver Information Disclosure VulnerabilityEPSS 0.9%