Falhas do tipo CWE-345
369 resultadosCVE-2023-23941HIGHSwagPayPal payment not sent to PayPal correctlyEPSS 0.3%CVE-2026-23656MEDIUMWindows App Installer Spoofing VulnerabilityEPSS 0.3%CVE-2023-41045LOWInsecure source port usage for DNS queries in GraylogEPSS 0.3%CVE-2025-27680CRITICALVasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.750 Application 20.0.1442 allows Insecure Firmware Image with InsuffiEPSS 0.3%CVE-2025-12245MEDIUMchatwoot Widget IFrameHelper.js initPostMessageCommunication origin validationEPSS 0.3%CVE-2024-34354MEDIUMCMSaasStarter: JWT Token Not Verified on Server SessionEPSS 0.3%CVE-2026-27510MEDIUMUnitree Go2 Mobile Program Tampering Enables Root RCEEPSS 0.3%CVE-2019-3875MEDIUMA vulnerability was found in keycloak before 6.0.2. The X.509 authenticator supports the verification of client certificates through the CRLEPSS 0.3%CVE-2025-9379HIGHBelkin AX1800 Firmware Update data authenticityEPSS 0.3%CVE-2022-3703HIGHETIC Telecom Remote Access Server Insufficient Verification of Data AuthenticityEPSS 0.3%CVE-2022-46139MEDIUMTP-Link TL-WR940N V4 3.16.9 and earlier allows authenticated attackers to cause a Denial of Service (DoS) via uploading a crafted firmware iEPSS 0.3%CVE-2026-30798HIGHRustDesk Client Accepts Unauthenticated stop-service Command via Strategy PayloadEPSS 0.3%CVE-2023-45586MEDIUMAn insufficient verification of data authenticity vulnerability [CWE-345] in Fortinet FortiOS SSL-VPN tunnel mode version 7.4.0 through 7.4.EPSS 0.3%CVE-2025-49199HIGHBackup files can be modified and uploadedEPSS 0.3%CVE-2022-41961MEDIUMBigBlueButton subject to Ineffective user bansEPSS 0.3%CVE-2021-4122—It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device. An attEPSS 0.3%CVE-2022-37928HIGHInsufficient Verification of Data Authenticity vulnerability in Hewlett Packard Enterprise HPE Nimble Storage Hybrid Flash Arrays and NimbleEPSS 0.3%CVE-2024-33494MEDIUMA vulnerability has been identified in SIMATIC RTLS Locating Manager (6GT2780-0DA00) (All versions < V3.0.1.1), SIMATIC RTLS Locating ManageEPSS 0.3%CVE-2022-27513HIGHRemote desktop takeover via phishingEPSS 0.3%CVE-2023-26481CRITICALInsufficient user check in FlowTokens by Email stageEPSS 0.3%