Falhas do tipo CWE-20

4.752 resultados
CVE-2026-14117MEDIUMInsufficient validation of untrusted input in DevTools in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who convEPSS 0.2%CVE-2022-28195MEDIUMNVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot ext4_read_file function, where insufficient validation of untrustedEPSS 0.2%CVE-2024-23198MEDIUMImproper input validation in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi products before version 23.40EPSS 0.2%CVE-2025-8582MEDIUMInsufficient validation of untrusted input in Core in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to spoof the contents oEPSS 0.2%CVE-2022-24418HIGHDell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerabiliEPSS 0.2%CVE-2026-29133MEDIUMUID Regex BypassEPSS 0.2%CVE-2024-27385MEDIUMA vulnerability was discovered in the slsi_handle_nan_rx_event_log_ind function in Samsung Mobile Processor Exynos 1380 and Exynos 1480 relaEPSS 0.2%CVE-2022-28196MEDIUMNVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot blob_decompress function, where insufficient validation of untrusteEPSS 0.2%CVE-2022-24417HIGHDell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerabiliEPSS 0.2%CVE-2024-27386MEDIUMA vulnerability was discovered in the slsi_handle_nan_rx_event_log_ind function in Samsung Mobile Processor Exynos 1380 and Exynos 1480 relaEPSS 0.2%CVE-2024-28049MEDIUMImproper input validation in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi wireless products before versEPSS 0.2%CVE-2025-3885MEDIUMHarman Becker MGU21 Bluetooth Improper Input Validation Denial-of-Service VulnerabilityEPSS 0.2%CVE-2023-43570MEDIUM A potential vulnerability was reported in the SMI callback function of the OemSmi driver that may allow a local attacker with elevated permEPSS 0.2%CVE-2026-45628CRITICALDokploy: Command Injection via Unescaped Branch Fields in Deployment PipelineEPSS 0.2%CVE-2026-11676HIGHInsufficient validation of untrusted input in Dawn in Google Chrome on Linux and ChromeOS prior to 149.0.7827.103 allowed a remote attacker EPSS 0.2%CVE-2026-26170HIGHPowerShell Elevation of Privilege VulnerabilityEPSS 0.2%CVE-2026-33587CRITICALRemote Code Execution (RCE) via Server-Side Template Injection (SSTI)EPSS 0.2%CVE-2022-3169A flaw was found in the Linux kernel. A denial of service flaw may occur if there is a consecutive request of the NVME_IOCTL_RESET and the NEPSS 0.2%CVE-2026-13865MEDIUMInsufficient validation of untrusted input in Enterprise in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoEPSS 0.2%CVE-2026-13995MEDIUMInsufficient validation of untrusted input in Autofill in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to perfoEPSS 0.2%