Falhas do tipo CWE-669
59 resultadosCVE-2026-46447MEDIUMOpenStack Ironic before 35.0.2 allows Boot Script Injection of an iPXE script if the attacker can set node.driver_info or node.instance_infoEPSS 0.3%CVE-2025-62775HIGHMercku M6a devices through 2.1.0 allow root TELNET logins via the web admin password.EPSS 0.3%CVE-2026-33265MEDIUMIn LibreChat 0.8.1-rc2, a logged-in user obtains a JWT for both the LibreChat API and the RAG API.EPSS 0.2%CVE-2025-46553LOW@misskey-dev/summaly Redirect Filter BypassEPSS 0.2%CVE-2024-31573MEDIUMXMLUnit for Java before 2.10.0, in the default configuration, might allow code execution via an untrusted stylesheet (used for an XSLT transEPSS 0.2%CVE-2025-62292MEDIUMIn SonarQube before 25.6, 2025.3 Commercial, and 2025.1.3 LTA, authenticated low-privileged users can query the /api/v2/users-management/useEPSS 0.2%CVE-2025-59691LOWPureVPN client applications on Linux through September 2025 allow IPv6 traffic to leak outside the VPN tunnel upon network events such as WiEPSS 0.2%CVE-2025-26698LOWIncorrect resource transfer between spheres issue exists in RevoWorks SCVX and RevoWorks Browser. If exploited, malicious files may be downlEPSS 0.2%CVE-2025-59692LOWPureVPN client applications on Linux through September 2025 mishandle firewalling. They flush the system's existing iptables rules and applyEPSS 0.2%CVE-2026-32772LOWtelnet in GNU inetutils through 2.7 allows servers to read arbitrary environment variables from clients via NEW_ENVIRON SEND USERVAR.EPSS 0.2%CVE-2025-56675LOWThe EKEN video doorbell T6 BT60PLUS_MAIN_V1.0_GC1084_20230531 periodically sends debug logs to the EKEN cloud servers with sensitive informaEPSS 0.2%CVE-2026-48831HIGHWine ships a .desktop file that registers itself as a MIME handler for EXE files and several other Windows executable file types. In some coEPSS 0.2%CVE-2026-40228LOWIn systemd 259, systemd-journald can send ANSI escape sequences to the terminals of arbitrary users when a "logger -p emerg" command is execEPSS 0.2%CVE-2026-41030MEDIUMIn ONLYOFFICE DesktopEditors before 9.3.0, the update service allows attackers to perform actions on files with SYSTEM privileges.EPSS 0.2%CVE-2025-59453LOWClick Studios Passwordstate before 9.9 Build 9972 has a potential authentication bypass for Passwordstate emergency access. By using a craftEPSS 0.1%CVE-2026-40225MEDIUMIn udev in systemd before 260, local root execution can occur via malicious hardware devices and unsanitized kernel output.EPSS 0.1%CVE-2025-59378MEDIUMIn guix-daemon in GNU Guix before 1618ca7, a content-addressed-mirrors file can be written to create a setuid program that allows a regular EPSS 0.1%CVE-2025-54956LOWThe gh package before 1.5.0 for R delivers an HTTP response in a data structure that includes the Authorization header from the correspondinEPSS 0.1%CVE-2026-41525MEDIUMKDE Dolphin before 25.12.3 allows applications in a Flatpak (or with AppArmor confinement) to open folders outside of the application sandboEPSS 0.1%