CWE-1284

Improper Validation of Specified Quantity in Input

Parent: CWE-20 - Improper Input Validation

The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties.

321 vulnerabilities with CWE-1284
CVE-2022-22166 MEDIUM
Juniper Junos OS 20.4-21.1 - Unauthenticated Denial of Service via Malformed BGP SR-TE Policy Tunnel Attribute
CVSS 6.5
CVE-2022-21668 HIGH
pipenv 2018.10.9-2022.1.8 - Remote Code Execution via Malicious Requirements File Comment
CVSS 8.0
CVE-2022-0174 MEDIUM
dolibarr/dolibarr - Info Disclosure
CVSS 4.3
CVE-2021-47831 HIGH
Sandboxie 5.49.7 - Denial of Service via Container Folder Input Overflow
CVSS 7.5
CVE-2021-47827 HIGH
WebSSH for iOS 14.16.10 - Denial of Service via MashREPL Input Buffer Overflow
CVSS 7.5
CVE-2021-47824 HIGH
iDailyDiary 4.30 - Denial of Service via Preferences Tab Name Field Overflow
CVSS 7.5
CVE-2021-47821 HIGH
RarmaRadio 2.72.8 - Denial of Service via Network Configuration Field Buffer Overflow
CVSS 7.5
CVE-2021-47818 HIGH
DupTerminator <1.4.5639.37199 - DoS
CVSS 7.5
CVE-2021-47251 HIGH
Linux Kernel 5.10-5.10.46 - Improper Validation of Specified Quantity in Input
CVSS 7.8
CVE-2021-46893 HIGH
Huawei EMUI and HarmonyOS - Unstrict Data Verification
CVSS 7.5
CVE-2021-28510 MEDIUM
Arista EOS < 4.23.10 - Denial of Service via Invalid PTP TLV
CVSS 5.3
CVE-2021-44693 MEDIUM
SIMATIC S7-1200 CPU and S7-PLCSIM Advanced Firmware - Denial of Service via Crafted Packets to Port 102/tcp
CVSS 4.9
CVE-2021-0934 MEDIUM
Android - Denial of Service via Resource Exhaustion in AccountsDb.java
CVSS 5.5
CVE-2021-35132 HIGH
Qualcomm AQT1000 and Multiple Firmware - Out-of-Bounds Write in DSP Service
CVSS 8.4
CVE-2021-45918 HIGH
NHI's health insurance web service - Buffer Overflow
CVSS 7.5
CVE-2021-30350 HIGH
Snapdragon Auto - Memory Corruption
CVSS 8.4
CVE-2021-26347 MEDIUM
AMD EPYC 7003 Series Firmware < milanpi-sp3_1.0.0.7 - Denial of Service via Integer Overflow in ASP Bootloader
CVSS 4.7
CVE-2021-21943 HIGH
Accusoft ImageGear 19.10 - Heap-Based Buffer Overflow in XWD Parser
CVSS 8.8
CVE-2021-39690 MEDIUM
Android 12 - Denial of Service in WallpaperManagerService
CVSS 5.5
CVE-2021-46158 HIGH
Simcenter Femap V2020.2-V2021.1 - Buffer Overflow
CVSS 7.8
CVE-2021-21960 CRITICAL
Sealevel SeaConnect 370W Firmware 1.3.34 - Stack-Based Buffer Overflow via LLMNR Packet
CVSS 10.0
CVE-2021-44158 HIGH
ASUS RT-AX56U Firmware - Authenticated Stack-Based Buffer Overflow via HTTPD Parameter
CVSS 8.0
CVE-2021-45972 HIGH
giftrans 1.12.2 - Stack-Based Buffer Overflow via Input File Quantity Validation
CVSS 7.1
CVE-2021-45462 HIGH
Open5GS 2.4.0 - Denial of Service via Crafted UE Packet
CVSS 7.5
CVE-2021-21951 CRITICAL
Anker Eufy Homebase 2 2.1.6.9h - Remote Code Execution via CMD_DEVICE_GET_SERVER_LIST_REQUEST
CVSS 10.0
Details
Vulnerabilities 321
Links
MITRE CWE Entry Search this CWE With Exploits