The product receives input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expected type.
123 vulnerabilities with CWE-1287
CVE-2025-59278
HIGH
Windows Authentication Methods - Privilege Escalation
CVSS 7.8
CVE-2025-59277
HIGH
Windows Authentication Methods - Privilege Escalation
CVSS 7.8
CVE-2025-59275
HIGH
Windows Authentication Methods - Privilege Escalation
CVSS 7.8
CVE-2025-59259
MEDIUM
Windows Local Session Manager - DoS
CVSS 6.5
CVE-2025-59257
MEDIUM
Windows Local Session Manager - DoS
CVSS 6.5
CVE-2025-58729
MEDIUM
Windows Local Session Manager - DoS
CVSS 6.5
CVE-2025-55701
HIGH
Microsoft Windows - Privilege Escalation
CVSS 7.8
CVE-2025-58084
LOW
Mattermost Desktop App <=5.13.0 - SSRF
CVSS 3.5
CVE-2025-61672
MEDIUM
Synapse <1.138.3, <1.139.0 - DoS
CVE-2025-20327
HIGH
Cisco IOS Software - DoS
CVSS 7.7
CVE-2025-10207
HIGH
ABB FLXEON <9.3.5 - Info Disclosure
CVSS 7.2
CVE-2025-42929
HIGH
SAP - Privilege Escalation
CVSS 8.1
CVE-2025-42916
HIGH
SAP - Privilege Escalation
CVSS 8.1
CVE-2025-8402
MEDIUM
Mattermost <10.8.4 - DoS
CVSS 4.9
CVE-2025-20251
HIGH
Cisco Secure Firewall ASA/FTD - Privilege Escalation
CVSS 8.5
CVE-2025-20244
HIGH
Cisco Secure Firewall - DoS
CVSS 7.7
CVE-2025-9042
HIGH
CIP Class 32 - DoS
CVE-2025-9041
HIGH
5094-IF8 - Info Disclosure
CVE-2025-30027
MEDIUM
Axis ACAP - Code Execution
CVSS 6.7
CVE-2025-54525
HIGH
Mattermost Confluence Plugin <1.5.0 - DoS
CVSS 7.5
CVE-2025-8556
LOW
Cloudflare Circl < 1.6.1 - Signature Verification Bypass
CVSS 3.7
CVE-2025-24335
LOW
Nokia Single RAN <24R1-SR 2.1 MP - DoS
CVSS 2.0
CVE-2025-40910
MEDIUM
Net::IP::LPM 1.10 - Info Disclosure
CVSS 6.5
CVE-2025-52883
MEDIUM
Meshtastic-Android <2.5.21 - Info Disclosure
CVSS 5.3
CVE-2025-25020
MEDIUM
IBM Cloud Pak For Security < 1.10.11.0 - Denial of Service
CVSS 6.5
Details
Vulnerabilities
123