Falhas do tipo CWE-20

4.745 resultados
CVE-2026-45642LOWMicrosoft Azure Attestation service and Device Health Attestation Service Spoofing VulnerabilityEPSS 0.3%CVE-2026-22047HIGHiccDEV has heap-buffer-overflow in SIccCalcOp::Describe() at IccProfLib/IccMpeCalc.cppEPSS 0.3%CVE-2026-13847MEDIUMInsufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to leaEPSS 0.3%CVE-2025-43375HIGHThe issue was addressed with improved checks. This issue is fixed in Xcode 26. Processing an overly large path value may crash a process.EPSS 0.3%CVE-2019-15265HIGHCisco Aironet Access Points Bridge Protocol Data Unit Port Disable Denial of Service VulnerabilityEPSS 0.3%CVE-2025-59940MEDIUMmkdocs-include-markdown-plugin susceptible to unvalidated input colliding with substitution placeholdersEPSS 0.3%CVE-2025-0514HIGHExecutable hyperlink Windows path targets executed unconditionally on activationEPSS 0.3%CVE-2022-29200MEDIUMMissing validation causes denial of service in TensorFlow via `LSTMBlockCell`EPSS 0.3%CVE-2025-63397MEDIUMImproper input validation in OneFlow v0.9.0 allows attackers to cause a segmentation fault via adding a Python sequence to the native code dEPSS 0.3%CVE-2022-29198MEDIUMMissing validation causes denial of service in TensorFlow via `SparseTensorToCSRSparseMatrix`EPSS 0.3%CVE-2022-29197MEDIUMMissing validation causes denial of service in TensorFlow via `UnsortedSegmentJoin`EPSS 0.3%CVE-2022-29207MEDIUMUndefined behavior when users supply invalid resource handles in TensorFlowEPSS 0.3%CVE-2024-0045HIGHIn smp_proc_sec_req of smp_act.cc, there is a possible out of bounds read due to improper input validation. This could lead to remote (proxiEPSS 0.3%CVE-2022-36448HIGHAn issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. There is an SMM memory corruption vulnerability in the Software SMIEPSS 0.3%CVE-2022-29195MEDIUMMissing validation causes denial of service in TensorFlow via `StagePeek`EPSS 0.3%CVE-2022-29193MEDIUMMissing validation causes `TensorSummaryV2` in TensorFlow to crashEPSS 0.3%CVE-2025-56404HIGHAn issue was discovered in MariaDB MCP 0.1.0 allowing attackers to gain sensitive information via the SSE service as the SSE service lacks uEPSS 0.3%CVE-2025-8571MEDIUMConcrete CMS 9 through 9.4.2 and below 8.5.21 is vulnerable to Reflected Cross-Site Scripting (XSS) in Conversation Messages Dashboard PageEPSS 0.3%CVE-2026-32149HIGHWindows Hyper-V Remote Code Execution VulnerabilityEPSS 0.3%CVE-2023-7248MEDIUMOpenText Vertica Management console might be prone to bypass via crafted requestsEPSS 0.3%