Falhas do tipo CWE-134
134 resultadosCVE-2022-34747CRITICALA format string vulnerability in Zyxel NAS326 firmware versions prior to V5.21(AAZF.12)C0 could allow an attacker to achieve unauthorized reEPSS 1.5%CVE-2022-40604HIGHFormat String VulnerabilityEPSS 1.5%CVE-2020-15634MEDIUMThis vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 routers with firmwEPSS 1.4%CVE-2025-64157MEDIUMA use of externally-controlled format string vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4, FortiOS 7.4.0 through 7.4.9, FortiOS 7.2EPSS 1.4%CVE-2022-35244CRITICALA format string injection vulnerability exists in the XCMD getVarHA functionality of abode systems, inc. iota All-In-One Security Kit 6.9X aEPSS 1.3%CVE-2022-35884HIGHFour format string injection vulnerabilities exist in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota AlEPSS 1.3%CVE-2022-35887HIGHFour format string injection vulnerabilities exist in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota AlEPSS 1.3%CVE-2025-46121CRITICALAn issue was discovered in CommScope Ruckus Unleashed prior to 200.15.6.212.14 and 200.17.7.0.139, where the functions `stamgr_cfg_adpt_addSEPSS 1.2%CVE-2022-35886HIGHFour format string injection vulnerabilities exist in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota AlEPSS 1.2%CVE-2022-35885HIGHFour format string injection vulnerabilities exist in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota AlEPSS 1.2%CVE-2024-6145HIGHActiontec WCB6200Q Cookie Format String Remote Code Execution VulnerabilityEPSS 1.2%CVE-2023-39238HIGHASUS RT-AX55、RT-AX56U_V2 - Format String - 1EPSS 1.2%CVE-2024-35845CRITICALwifi: iwlwifi: dbg-tlv: ensure NUL terminationEPSS 1.2%CVE-2023-39240HIGHASUS RT-AX55、RT-AX56U_V2 - Format String - 3EPSS 1.2%CVE-2023-39239HIGHASUS RT-AX55、RT-AX56U_V2、RT-AC86U - Format String - 2EPSS 1.2%CVE-2019-6840—A Format String: CWE-134 vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server PluEPSS 1.1%CVE-2025-46123HIGHAn issue was discovered in CommScope Ruckus Unleashed prior to 200.15.6.212.14 and 200.17.7.0.139, and in Ruckus ZoneDirector prior to 10.5.EPSS 1.1%CVE-2023-36639HIGHA use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4, 7.0.0 through 7.0.10, FortiOS versions 7.4EPSS 1.1%CVE-2023-25815LOWGit looks for localized messages in the wrong placeEPSS 1.1%CVE-2022-43619MEDIUMThis vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-1935 1.03 routers. AlEPSS 1.0%