CVEs classified under CWE-86, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2025-66606 — CVSS 9.6 (critical): A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product does not properly encode URLs. An…
CVE-2024-21864 — CVSS 7.8 (high): Improper neutralization in some Intel(R) Arc(TM) & Iris(R) Xe Graphics software before version 31.0.101.5081 may allow an unauthenticated…
CVE-2021-33158 — CVSS 7.2 (high): Improper neutralization in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware may allow a…
CVE-2024-10941 — CVSS 6.5 (medium): A malicious website could have included an iframe with an malformed URI resulting in a non-exploitable browser crash. This vulnerability…
CVE-2025-20168 — CVSS 5.4 (medium): A vulnerability in the web-based management interface of Cisco Common Services Platform Collector (CSPC) could allow an authenticated…
CVE-2025-20167 — CVSS 5.4 (medium): A vulnerability in the web-based management interface of Cisco Common Services Platform Collector (CSPC) could allow an authenticated…
CVE-2025-20166 — CVSS 5.4 (medium): A vulnerability in the web-based management interface of Cisco Common Services Platform Collector (CSPC) could allow an authenticated…
CVE-2023-22840 — CVSS 3.3 (low): Improper neutralization in software for the Intel(R) oneVPL GPU software before version 22.6.5 may allow an authenticated user to…