Falhas do tipo CWE-23

424 resultados
CVE-2021-34605HIGHXinje XD/E Series PLC Program Tool Zip SlipEPSS 2.3%CVE-2024-30010HIGHWindows Hyper-V Remote Code Execution VulnerabilityEPSS 2.3%CVE-2020-12026Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple relative path traversal vulnerabilities exist that may allow a loEPSS 2.3%CVE-2021-29101HIGHArcGIS GeoEvent Server has a Directory Traversal security vulnerability.EPSS 2.3%CVE-2018-14795DeltaV Versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, and R5 is vulnerable due to improper path validation which may allow an attacker to replace EPSS 2.2%CVE-2021-32954Advantech WebAccess/SCADA Versions 9.0.1 and prior is vulnerable to a directory traversal, which may allow an attacker to remotely read arbiEPSS 2.1%CVE-2020-8254A vulnerability in the Pulse Secure Desktop Client < 9.1R9 has Remote Code Execution (RCE) if users can be convinced to connect to a malicioEPSS 2.0%CVE-2020-25172B. Braun OnlineSuiteEPSS 2.0%CVE-2022-20790MEDIUMCisco Unified Communications Products Arbitrary File Read VulnerabilityEPSS 2.0%CVE-2019-17640In Eclipse Vert.x 3.4.x up to 3.9.4, 4.0.0.milestone1, 4.0.0.milestone2, 4.0.0.milestone3, 4.0.0.milestone4, 4.0.0.milestone5, 4.0.0.Beta1, EPSS 2.0%CVE-2019-13408Advan VD-1 allows users to download arbitrary filesEPSS 1.9%CVE-2026-54066HIGHSiYuan: Path Traversal via Double URL Encoding in /assets/*path (publish mode arbitrary file─read)EPSS 1.9%CVE-2020-7008VISAM VBASE Editor version 11.5.0.2 and VBASE Web-Remote Module may allow input passed in the URL that is not properly verified before use, EPSS 1.9%CVE-2025-27410MEDIUMPwnDoc Arbitrary File Write to RCE using Path Traversal in backup restore as adminEPSS 1.8%CVE-2018-12473LOWpath traversal in obs-service-tar_scmEPSS 1.8%CVE-2022-31163HIGHTZInfo relative path traversal vulnerability allows loading of arbitrary filesEPSS 1.8%CVE-2019-3976RouterOS 6.45.6 Stable, RouterOS 6.44.5 Long-term, and below are vulnerable to an arbitrary directory creation vulnerability via the upgradeEPSS 1.7%CVE-2021-41178HIGHFile Traversal affecting SVG files on Nextcloud ServerEPSS 1.7%CVE-2023-20066MEDIUMCisco IOS XE Software Web UI Path Traversal VulnerabilityEPSS 1.7%CVE-2022-23732Path traversal in GitHub Enterprise Server management console leading to a bypass of CSRF protectionsEPSS 1.7%