Falhas do tipo CWE-284
4.335 resultadosCVE-2013-2423LOWUnspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 7, allows rEPSS 85.3%KEVCVE-2022-23134LOWPossible view of the setup pages by unauthenticated users if config file already existsEPSS 84.7%KEVCVE-2019-1619CRITICALCisco Data Center Network Manager Authentication Bypass VulnerabilityEPSS 82.8%CVE-2023-22232MEDIUMAdobe Connect Improper Access Control Security feature bypassEPSS 81.9%CVE-2022-31704CRITICALThe vRealize Log Insight contains a broken access control vulnerability. An unauthenticated malicious actor can remotely inject code into seEPSS 81.0%CVE-2021-20034—An improper access control vulnerability in SMA100 allows a remote unauthenticated attacker to bypass the path traversal checks and delete aEPSS 80.7%CVE-2021-21425CRITICALUnauthenticated Arbitrary YAML Write/Update leads to Code ExecutionEPSS 80.5%CVE-2026-48907CRITICALJoomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla < 2.9.99.5EPSS 80.4%KEVCVE-2019-1622MEDIUMCisco Data Center Network Manager Information Disclosure VulnerabilityEPSS 78.9%CVE-2025-30208MEDIUMVite bypasses server.fs.deny when using `?raw??`EPSS 78.6%CVE-2024-25723HIGHZenML Server in the ZenML machine learning package before 0.46.7 for Python allows remote privilege escalation because the /api/v1/users/{usEPSS 70.6%CVE-2025-33073HIGHWindows SMB Client Elevation of Privilege VulnerabilityEPSS 64.3%KEVCVE-2025-4901MEDIUMD-Link DI-7003GV2 HTTP Endpoint state_view.data sub_41E304 information disclosureEPSS 63.8%CVE-2025-31125MEDIUMVite has a `server.fs.deny` bypassed for `inline` and `raw` with `?import` queryEPSS 62.1%KEVCVE-2024-20931HIGHVulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected areEPSS 59.7%CVE-2023-21742HIGHMicrosoft SharePoint Server Remote Code Execution VulnerabilityEPSS 55.8%CVE-2017-5254—In version 3.5 and prior of Cambium Networks ePMP firmware, the non-administrative users 'installer' and 'home' have the capability of changEPSS 53.7%CVE-2021-22941CRITICALImproper Access Control in Citrix ShareFile storage zones controller before 5.11.20 may allow an unauthenticated attacker to remotely comproEPSS 53.6%KEVCVE-2026-2699CRITICALEAR vulnerability in Progress ShareFile Storage Zones Controller (SZC)EPSS 49.4%CVE-2024-39943CRITICALrejetto HFS (aka HTTP File Server) 3 before 0.52.10 on Linux, UNIX, and macOS allows OS command execution by remote authenticated users (if EPSS 48.8%