Falhas do tipo CWE-20

4.743 resultados
CVE-2026-10938HIGHInappropriate implementation in Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer proEPSS 0.4%CVE-2026-48569HIGHVisual Studio Code Security Feature Bypass VulnerabilityEPSS 0.4%CVE-2023-3034MEDIUMReflected XSS in BKG Ntrip Professional Caster version <=2.0.44EPSS 0.4%CVE-2024-45761MEDIUMDell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains an improper input validation vulnerability. A remote low-privileEPSS 0.3%CVE-2026-59509CRITICALUnauthenticated arbitrary MongoDB collection read in cve-searchEPSS 0.3%CVE-2024-5969MEDIUMAIomatic - Automatic AI Content Writer <= 2.0.5 - Unauthenticated Arbitrary Email SendingEPSS 0.3%CVE-2024-4787MEDIUMCost Calculator Builder PRO <= 3.1.75 - Unauthenticated Arbitrary Email SendingEPSS 0.3%CVE-2025-1514HIGHActive Products Tables for WooCommerce <= 1.0.6.7 - Unauthenticated Arbitrary Filter CallEPSS 0.3%CVE-2025-32077MEDIUMXSSes in Extension:SimpleCalendarEPSS 0.3%CVE-2026-48206MEDIUMApache Camel JIRA: A set of non-Camel-prefixed Exchange header constants bypass the HTTP header filter, allowing an HTTP client to drive arbitrary JIRA issue operations using the endpoint's configured credentialsEPSS 0.3%CVE-2022-44611MEDIUMImproper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of EPSS 0.3%CVE-2025-4635MEDIUMRemote Code ExecutionEPSS 0.3%CVE-2022-29204MEDIUMMissing validation causes denial of service in TensorFlow via `Conv3DBackpropFilterV2`EPSS 0.3%CVE-2024-11985MEDIUMAn improper input validation vulnerability leads to device crashes in certain ASUS router models. Refer to the '12/03/2024 ASUS Router ImprEPSS 0.3%CVE-2025-30480MEDIUMDell PowerProtect Data Manager, versions prior to 19.19, contain(s) an Improper Input Validation vulnerability in PowerProtect Data Manager.EPSS 0.3%CVE-2023-25879HIGHZDI-CAN-19389: Adobe Dimension OBJ File Improper Input Validation Remote Code ExecutionEPSS 0.3%CVE-2026-49218HIGHImageMagick: Policy Bypass in DCM decoder could result in image with invalid dimensionsEPSS 0.3%CVE-2021-21557HIGHDell PowerEdge Server BIOS and select Dell Precision Rack BIOS contain an out-of-bounds array access vulnerability. A local malicious user wEPSS 0.3%CVE-2023-25881HIGHZDI-CAN-19390: Adobe Dimension OBJ File Improper Input Validation Remote Code ExecutionEPSS 0.3%CVE-2025-52891MEDIUMModSecurity empty XML tag causes segmentation faultEPSS 0.3%