Falhas do tipo CWE-20
4.753 resultadosCVE-2024-23487HIGHImproper input validation in UserAuthenticationSmm driver in UEFI firmware for some Intel(R) Server D50DNP Family products may allow a priviEPSS 0.2%CVE-2022-30720LOWImproper input validation check logic vulnerability in libsmkvextractor prior to SMR Jun-2022 Release 1 allows attackers to trigger crash.EPSS 0.2%CVE-2026-2695MEDIUMLack of Server-side validation in Instruction Input in TeamViewer DEX Platform (On-Premises)EPSS 0.2%CVE-2026-11078MEDIUMInappropriate implementation in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the rendereEPSS 0.2%CVE-2026-14045MEDIUMInsufficient validation of untrusted input in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised EPSS 0.2%CVE-2022-30721LOWImproper input validation check logic vulnerability in libsmkvextractor prior to SMR Jun-2022 Release 1 allows attackers to trigger crash.EPSS 0.2%CVE-2026-22611LOWAWS SDK for .NET V4 adopted defense in depth enhancement for region parameter valueEPSS 0.2%CVE-2022-34460HIGH
Prior Dell BIOS versions contain an improper input validation vulnerability. A local authenticated malicious user may potentially exploit tEPSS 0.2%CVE-2026-11283MEDIUMInsufficient validation of untrusted input in Shortcuts in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to bypass nEPSS 0.2%CVE-2026-7944LOWInsufficient validation of untrusted input in Persistent Cache in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had comEPSS 0.2%CVE-2026-11675LOWOut of bounds read in Skia in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to leEPSS 0.2%CVE-2026-7945LOWInsufficient validation of untrusted input in COOP in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised theEPSS 0.2%CVE-2023-41782LOWDLL Hijacking Vulnerability in ZTE ZXCLOUD iRAIEPSS 0.2%CVE-2026-11218MEDIUMInappropriate implementation in PlatformIntegration in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who convincEPSS 0.2%CVE-2023-43799MEDIUMThe Altair Desktop Client Does Not Sanitize External URLs before passing them to the underlying systemEPSS 0.2%CVE-2025-47888MEDIUMJenkins DingTalk Plugin 2.7.3 and earlier unconditionally disables SSL/TLS certificate and hostname validation for connections to the configEPSS 0.2%CVE-2024-54121MEDIUMStartup control vulnerability in the ability module
Impact: Successful exploitation of this vulnerability may cause features to perform abnoEPSS 0.2%CVE-2026-9950LOWInsufficient validation of untrusted input in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who had compromiEPSS 0.2%CVE-2022-32492HIGHDell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerabiliEPSS 0.2%CVE-2026-6328HIGHXQUIC Improper STREAM Frame Validation in Initial/Handshake PacketsEPSS 0.2%