Falhas do tipo CWE-20
4.705 resultadosCVE-2023-2727MEDIUMBypassing policies imposed by the ImagePolicyWebhook admission pluginEPSS 1.1%CVE-2022-28763HIGHImproper URL parsing in Zoom ClientsEPSS 1.1%CVE-2024-11234MEDIUMConfiguring a proxy in a stream context might allow for CRLF injection in URIsEPSS 1.1%CVE-2021-1465MEDIUMA vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to condEPSS 1.1%CVE-2022-22241HIGHJunos OS: Vulnerability in J-Web may allow deserialization without authenticationEPSS 1.1%CVE-2019-15613—A bug in Nextcloud Server 17.0.1 causes the workflow rules to depend their behaviour on the file extension when checking file mimetypes.EPSS 1.1%CVE-2023-30448MEDIUMIBM Db2 denial of serviceEPSS 1.1%CVE-2020-35493—A flaw exists in binutils in bfd/pef.c. An attacker who is able to submit a crafted PEF file to be parsed by objdump could cause a heap buffEPSS 1.1%CVE-2025-31281CRITICALAn input validation issue was addressed with improved memory handling. This issue is fixed in iOS 18.6 and iPadOS 18.6, macOS Sequoia 15.6, EPSS 1.1%CVE-2022-46836CRITICALPHP code injection in watolibEPSS 1.1%CVE-2020-8475MEDIUMABB Central Licensing System - Denial of Service VulnerabilityEPSS 1.1%CVE-2022-20750MEDIUMCisco Redundancy Configuration Manager for Cisco StarOS Software TCP Denial of Service VulnerabilityEPSS 1.1%CVE-2021-32697MEDIUMForm validation can be skippedEPSS 1.1%CVE-2021-36335MEDIUMDell EMC CloudLink 7.1 and all prior versions contain an Improper Input Validation Vulnerability. A remote low privileged attacker, may poteEPSS 1.1%CVE-2023-48631MEDIUMDenial of Service of regular expression in package @adobe/css-toolsEPSS 1.1%CVE-2023-22934HIGHSPL Command Safeguards Bypass via the ‘pivot’ SPL Command in Splunk EnterpriseEPSS 1.1%CVE-2020-7518—A CWE-20: Improper input validation vulnerability exists in Easergy Builder (Version 1.4.7.2 and older) which could allow an attacker to modEPSS 1.1%CVE-2020-5403MEDIUMDoS Via Malformed URL with Reactor Netty HTTP ServerEPSS 1.1%CVE-2018-15429—Cisco HyperFlex HX Data Platform Software Unauthorized Directory Access VulnerabilityEPSS 1.1%CVE-2026-20812MEDIUMLDAP Tampering VulnerabilityEPSS 1.1%