Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-1284

CWE-1284

Improper Validation of Specified Quantity in Input

Parent: CWE-20 - Improper Input Validation

The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties.

321 vulnerabilities with CWE-1284

CVE-2024-36346 MEDIUM

AMD Instinct MI300A and MI300X - Denial of Service via Power Management Firmware Input Validation

CVE-2024-9448 HIGH

Arista EOS 4.30.0-4.30.7M, 4.31.0-4.31.4M, 4.32.0-4.32.2M, 4.33.0 - Traffic Policy Bypass via Untagged Packet Handling

CVE-2024-45351 HIGH

Xiaomi Game center application - Remote Code Execution via Improper Input Validation

CVE-2024-8000 MEDIUM

Arista EOS 4.30.0-4.30.7M, 4.31.0-4.31.4M, 4.32.0-4.32.3M - Improper Validation of Specified Quantity in Input

CVE-2024-53879 LOW

NVIDIA CUDA Toolkit < 12.8.0 - Denial of Service via Malformed ELF File in cuobjdump

CVE-2024-53878 LOW

NVIDIA CUDA Toolkit < 12.8.0 - Denial of Service via Malformed ELF File in cuobjdump

CVE-2024-55407 HIGH

ITE Tech. Inc. ITE IO Access <1.0.0.0 - RCE

CVE-2024-20149 HIGH

MediaTek LR12/LR13/NR15/NR16/NR17 - Denial of Service via Improper Input Validation

CVE-2024-56716 MEDIUM

Linux Kernel 5.5-6.12.7 DoS via nsim_dev_health_break_write Input Validation

CVE-2024-1610 CRITICAL

OPPO Store APP - Privilege Escalation

CVE-2024-52901 MEDIUM

IBM InfoSphere Information Server 11.7 - Info Disclosure

CVE-2024-7488 MEDIUM

RestApp Inc. Online Ordering System <8.2.2 - Integer Overflow

CVE-2024-39343 HIGH

Samsung Exynos and Modem Firmware - Denial of Service via MM Module Length Mismatch

CVE-2024-9369 CRITICAL

Google Chrome < 129.0.6668.89 - Out of Bounds Memory Write via Mojo

CVE-2024-47257 HIGH

AXIS Q6128-E and P1428-E Network Cameras 6.50 - Denial of Service via Ethernet Frame Handling

CVE-2024-6068 HIGH

Rockwell Automation Arena Input Analyzer <= 16.20.03 - Memory Corruption via DFT File Parsing

CVE-2024-48290 MEDIUM

Realtek RTL8762E BLE SDK <1.4.0 - DoS

CVE-2024-7316 MEDIUM

Mitsubishi Electric CNC Series - DoS

CVE-2024-8508 MEDIUM

Unbound <= 1.21.0 - Denial of Service via Malicious RRset Name Compression

CVE-2024-8887 CRITICAL

CIRCUTOR Q-SMT Firmware 1.0.4 - Denial of Service via Authentication Bypass

CVE-2024-5931 MEDIUM

Zephyr < 3.6.0 - Improper Validation of Specified Quantity in Input via BT Broadcast Assistant

CVE-2024-31416 MEDIUM

Eaton Foreseer Electrical Power Monitoring System < 7.8.600 - Integer Overflow via Unbounded Input Fields

CVE-2024-8558 MEDIUM

SourceCodester Food Ordering Management System 1.0 - Info Disclosure

CVE-2024-42416 HIGH

FreeBSD 13.0-13.2 - Use-After-Free in ctl_report_supported_opcodes

CVE-2024-0111 MEDIUM

NVIDIA CUDA Toolkit < 12.6.0 - Denial of Service via Malformed ELF File in cuobjdump

Previous Page 6 of 13 Next

Details

Vulnerabilities 321

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy