Falhas do tipo CWE-20

4.746 resultados
CVE-2022-34345Improper input validation in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 may allow a privileged user to potentiallyEPSS 0.3%CVE-2025-61613HIGHIn nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additionEPSS 0.3%CVE-2020-1682MEDIUMJunos OS: SRX1500, vSRX, SRX4K, NFX150, NFX250: Denial of service vulnerability executing local CLI commandEPSS 0.3%CVE-2022-35896MEDIUMAn issue SMM memory leak vulnerability in SMM driver (SMRAM was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. An attacker can EPSS 0.3%CVE-2021-0168MEDIUMImproper input validation in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in WinEPSS 0.3%CVE-2026-56140CRITICALApache Camel AWS2 SNS: An inbound Camel-namespace filter was added to Sns2HeaderFilterStrategy to align it with sibling componentsEPSS 0.3%CVE-2024-12355MEDIUMSourceCodester Phone Contact Manager System ContactBook.cpp adding input validationEPSS 0.3%CVE-2024-41565MEDIUMJustEnoughItems (JEI) 19.5.0.33 and before contains an Improper Validation of Specified Index, Position, or Offset in Input vulnerability. TEPSS 0.3%CVE-2026-11460MEDIUMBoost Serialization improper validation of specified type of inputEPSS 0.3%CVE-2026-24410HIGHiccDEV has Undefined Behavior and Null Pointer Deference in CIccProfileXml::ParseBasic()EPSS 0.3%CVE-2022-22214MEDIUMJunos OS and Junos OS Evolved: In an MPLS scenario upon receipt of a specific IPv6 packet an FPC will crashEPSS 0.3%CVE-2026-24409HIGHiccDEV has Undefined Behavior and Null Pointer Deference in CIccTagXmlFloatNum<>::ParseXml()EPSS 0.3%CVE-2026-49840CRITICALFreeSWITCH: Pre-authentication heap buffer overflow in libesl `Content-Length` parsingEPSS 0.3%CVE-2023-24463MEDIUMImproper input validation in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an unauthenticated user to poEPSS 0.3%CVE-2023-32641HIGHImproper input validation in firmware for Intel(R) QAT before version QAT20.L.1.0.40-00004 may allow escalation of privilege and denial of sEPSS 0.3%CVE-2021-4041A flaw was found in ansible-runner. An improper escaping of the shell command, while calling the ansible_runner.interface.run_command, can lEPSS 0.3%CVE-2022-29213MEDIUMIncomplete validation in signal ops leads to crashes in TensorFlowEPSS 0.3%CVE-2026-24411HIGHiccDEV has Undefined Behavior and Null Pointer Deference in CIccTagXmlSegmentedCurve::ToXml()EPSS 0.3%CVE-2026-2555LOWJeecgBoot Retrieval-Augmented Generation AiragKnowledgeController.java importDocumentFromZip deserializationEPSS 0.3%CVE-2025-5455HIGHPossible denial of service when passing malformed data in a URL to qDecodeDataUrlEPSS 0.3%