Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-1284

CWE-1284

Improper Validation of Specified Quantity in Input

Parent: CWE-20 - Improper Input Validation

The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties.

321 vulnerabilities with CWE-1284

CVE-2023-20704 MEDIUM

Android - Local Information Disclosure via Missing Bounds Check in APU

CVE-2023-27961 MEDIUM

iPadOS < 15.7.4 - Information Exfiltration via Malicious Calendar Invitation

CVE-2023-27941 MEDIUM

iPadOS < 15.7.4 - Kernel Memory Disclosure via Input Validation Issue

CVE-2023-30269 HIGH

cltphp <=6.0 - Improper Input Validation in Template Controller

CVE-2023-0195 LOW

NVIDIA GPU Display Driver - Info Disclosure

CVE-2023-0194 LOW

NVIDIA Virtual GPU < 11.12 - Denial of Service via Invalid Display Configuration

CVE-2023-23626 MEDIUM

go-bitfield < 1.1.0 - Denial of Service via Invalid Size Parameter in NewBitfield and FromBytes

CVE-2023-22409 MEDIUM

Juniper Junos OS Multiple Versions - Authenticated DoS via NAT Configuration CLI

CVE-2022-50020 MEDIUM

Linux Kernel - Denial of Service via Unaligned Cluster Boundary Resize

CVE-2022-25769 HIGH

Mautic < 3.3.5 - Unauthenticated Arbitrary PHP File Execution via .htaccess Bypass

CVE-2022-47029 HIGH

Action Launcher <50.5 - Privilege Escalation

CVE-2022-4904 HIGH

c-ares < 1.19.0 - Denial of Service via ares_set_sortlist Input Validation

CVE-2022-3411 MEDIUM

GitLab 12.4-15.6.6, 15.7-15.7.5, 15.8-15.8.0 - Authenticated Denial of Service via Large Issue Description

CVE-2022-48298 HIGH

Huawei EMUI and HarmonyOS - Out-of-Bounds Memory Access via Geofencing Kernel Input

CVE-2022-48297 HIGH

Huawei EMUI and HarmonyOS - Out-of-Bounds Memory Access via Geofencing Kernel Input Length

CVE-2022-20493 HIGH

Android - Local Privilege Escalation via Notification Access Input Validation

CVE-2022-37312 MEDIUM

OX App Suite <7.10.6 - DoS

CVE-2022-37311 MEDIUM

OX App Suite <7.10.6 - DoS

CVE-2022-20543 LOW

Android 13 - Denial of Service via Improper Input Validation

CVE-2022-4171 MEDIUM

WordPress demon image annotation <5.0 - Info Disclosure

CVE-2022-46143 LOW

Siemens Ruggedcom RM1224 LTE and Scalance Devices - Uninitialized Buffer Read via TFTP Blocksize Mismatch

CVE-2022-20491 HIGH

Android - Local Privilege Escalation via NotificationChannel Resource Exhaustion

CVE-2022-20488 HIGH

Android - Local Privilege Escalation via NotificationChannel Resource Exhaustion

CVE-2022-20691 MEDIUM

Cisco ATA 190 Series Firmware - Unauthenticated Denial of Service via Cisco Discovery Protocol Packet Header

CVE-2022-20690 MEDIUM

Cisco ATA 190 Series - Memory Corruption

Previous Page 9 of 13 Next

Details

Vulnerabilities 321

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy