Falhas do tipo CWE-345
369 resultadosCVE-2020-3174MEDIUMCisco NX-OS Software Anycast Gateway Invalid ARP VulnerabilityEPSS 0.3%CVE-2026-4478CRITICALYi Technology YI Home Camera HTTP Firmware Update ipc signature verificationEPSS 0.3%CVE-2023-41896HIGHFake websocket server installation permits full takeover in Home Assistant CoreEPSS 0.3%CVE-2024-2384MEDIUMWooCommerce POS <= 1.4.11 - Insufficient Verification of Data Authenticity to Authenticated (Customer+) Information DisclosureEPSS 0.3%CVE-2026-39324CRITICALRack::Session::Cookie secrets: decrypt failure fallback enables secretless session forgery and Marshal deserializationEPSS 0.3%CVE-2025-27558CRITICALIEEE P802.11-REVme D1.1 through D7.0 allows FragAttacks against mesh networks. In mesh networks using Wi-Fi Protected Access (WPA, WPA2, or EPSS 0.3%CVE-2019-1932MEDIUMCisco Advanced Malware Protection for Endpoints Windows Command Injection VulnerabilityEPSS 0.3%CVE-2023-4589CRITICALInsufficient verification of data authenticity vulnerability in Delinea Secret ServerEPSS 0.3%CVE-2022-46422MEDIUMAn issue in Netgear WNR2000 v1 1.2.3.7 and earlier allows authenticated attackers to cause a Denial of Service (DoS) via uploading a craftedEPSS 0.3%CVE-2026-30792HIGHRustDesk Client Blindly Merges Unauthenticated Strategy Payloads, Bypassing Local Security SettingsEPSS 0.3%CVE-2022-37008HIGHThe recovery module has a vulnerability of bypassing the verification of an update package before use. Successful exploitation of this vulneEPSS 0.3%CVE-2023-35764MEDIUMInsufficient verification of data authenticity issue in Survey Maker prior to 3.6.4 allows a remote unauthenticated attacker to spoof an IP EPSS 0.3%CVE-2023-47630HIGHAttacker can cause Kyverno user to unintentionally consume insecure imageEPSS 0.3%CVE-2022-39199MEDIUMLack of proper validation in immudb EPSS 0.3%CVE-2025-21606HIGHLocal Privilege Escalation via Exposed XPC Method Due to Client Verification Failure in statsEPSS 0.3%CVE-2024-35175MEDIUMsshpiper's Enabling of Proxy Protocol without proper feature flagging allows faking source addressEPSS 0.3%CVE-2025-25188MEDIUMDNSSEC validation may accept broken authentication chainsEPSS 0.3%CVE-2026-41432HIGHNew API: Stripe Webhook Signature Bypass via Empty Secret Enables Unlimited Quota FraudEPSS 0.3%CVE-2024-24557MEDIUMMoby classic builder cache poisoningEPSS 0.3%CVE-2024-1321MEDIUMEventPrime – Events Calendar, Bookings and Tickets <= 3.4.2 - Unauthenticated Booking Payment BypassEPSS 0.3%