Falhas do tipo CWE-20

4.743 resultados
CVE-2026-13843CRITICALInsufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who haEPSS 0.3%CVE-2023-36466LOWTopic Title Validation Skipped When Changing Category in DiscourseEPSS 0.3%CVE-2024-35212MEDIUMA vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V1.2). The affected application lacks inpEPSS 0.3%CVE-2026-13901CRITICALInsufficient policy enforcement in Serial in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the rendererEPSS 0.3%CVE-2024-1714HIGHAccess Request for Entitlement Values with Leading/Trailing WhitespaceEPSS 0.3%CVE-2026-41890MEDIUMCI4MS: Arbitrary Database Table Drop via Theme deleteProcessEPSS 0.3%CVE-2025-32079MEDIUMSaving the right content to MediaWiki:GrowthMentors.json can take down the siteEPSS 0.3%CVE-2025-7693CRITICALRockwell Automation Micro800 VulnerabilityEPSS 0.3%CVE-2026-54234HIGHvLLM: Remote DoS in vLLM via Invalid Recovered Token ReinjectionEPSS 0.3%CVE-2025-26780HIGHAn issue was discovered in L2 in Samsung Mobile Processor and Modem Exynos 2400 and Modem 5400. The lack of a length check leads to a DenialEPSS 0.3%CVE-2026-38891HIGHAn improper input validation in the gazebo_ros_diff_drive.cpp component of gazebo_plugins v3.9.0 allows attackers to cause a Denial of ServiEPSS 0.3%CVE-2019-1588MEDIUMCisco Nexus 9000 Series Fabric Switches Application-Centric Infrastructure Mode Arbitrary File Read VulnerabilityEPSS 0.3%CVE-2023-42431LOWPotential XSS on user preferences pageEPSS 0.3%CVE-2022-42800HIGHThis issue was addressed with improved checks. This issue is fixed in iOS 15.7.1 and iPadOS 15.7.1, macOS Ventura 13, watchOS 9.1, iOS 16.1 EPSS 0.3%CVE-2022-38435HIGHAdobe Illustrator PCX File Parsing Memory Corruption Remote Code Execution VulnerabilityEPSS 0.3%CVE-2024-7977HIGHInsufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84 allowed a local attacker to perform privilege eEPSS 0.3%CVE-2023-25651MEDIUMSQL Injection Vulnerability in Some ZTE Mobile Internet ProductsEPSS 0.3%CVE-2023-21596HIGHAdobe InCopy Improper Input Validation Remote Code Execution VulnerabilityEPSS 0.3%CVE-2026-22615MEDIUMDue to improper input validation in one of the Eaton Intelligent Power Protector (IPP) XML, it is possible for an attacker with admin privilEPSS 0.3%CVE-2024-35384MEDIUMAn issue in Cesanta mjs 2.20.0 allows a remote attacker to cause a denial of service via the mjs_array_length function in the mjs.c file.EPSS 0.3%