Falhas do tipo CWE-502

2.282 resultados
CVE-2025-10965MEDIUMLazyAGI LazyLLM server.py lazyllm_call deserializationEPSS 0.3%CVE-2025-10950MEDIUMgeyang ml-logger Ping server.py log_handler deserializationEPSS 0.3%CVE-2025-26397HIGHSolarWinds Observability Self-Hosted Deserialization of Untrusted Data Local Privilege Escalation VulnerabilityEPSS 0.3%CVE-2025-10975MEDIUMGuanxingLu vlarl ZeroMQ reasoning_server.py run_reasoning_server deserializationEPSS 0.3%CVE-2026-27414HIGHWordPress Werkstatt theme <= 4.8.3 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2025-60038HIGHA vulnerability has been identified in Rexroth IndraWorks. This flaw allows an attacker to execute arbitrary code on the user's system by paEPSS 0.3%CVE-2025-60037HIGHA vulnerability has been identified in Rexroth IndraWorks. This flaw allows an attacker to execute arbitrary code on the user's system by paEPSS 0.3%CVE-2026-4266HIGHWatchGuard Firebox Insecure Deserialization in Fireware Access PortalEPSS 0.3%CVE-2024-4200HIGHProgress Telerik Reporting Local Deserialization VulnerabilityEPSS 0.3%CVE-2026-55223MEDIUMc3p0 exposes a deserialization "sink" via JDBC DataSource bean propertiesEPSS 0.3%CVE-2025-64512HIGHpdfminer.six vulnerable to Arbitrary Code Execution via Crafted PDF InputEPSS 0.3%CVE-2026-32484HIGHWordPress weForms plugin <= 1.6.26 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2026-32513HIGHWordPress JS Archive List plugin <= 6.1.7 - PHP Object Injection vulnerabilityEPSS 0.3%CVE-2025-15348HIGHAnritsu ShockLine CHX File Parsing Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 0.3%CVE-2025-71357HIGHpicklescan - Arbitrary Code Execution via Undetected idlelib.pyshell.ModifiedInterpreter.runcommandEPSS 0.3%CVE-2025-59050HIGHGreenshot — Insecure .NET deserialization via WM_COPYDATA enables local code executionEPSS 0.3%CVE-2025-8871MEDIUMEverest Forms (Pro) <= 1.9.7 - Unauthenticated PHP Object Injection via PHAR Deserialization in Form SignatureEPSS 0.3%CVE-2026-25925HIGHPowerDocu Affected by Remote Code Execution via Insecure DeserializationEPSS 0.3%CVE-2025-15610CRITICALThe .NET Remoting framework used by OpenText Fax (RightFax) includes known security vulnerabilities that could be exploited if the service iEPSS 0.3%CVE-2026-13371MEDIUMWatchGuard Firebox Management Web UI Denial of Service via Unsafe DeserializationEPSS 0.3%