Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-1287

CWE-1287

Improper Validation of Specified Type of Input

Parent: CWE-20 - Improper Input Validation

The product receives input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expected type.

134 vulnerabilities with CWE-1287

CVE-2025-13352 LOW

Mattermost 10.11.0-10.11.6 and GitHub Plugin <=2.4.0 - Reaction Hijacking via Notification Post

CVE-2025-32901 MEDIUM

KDEConnect < 1.33.0 - Denial of Service via Malicious Device ID

CVE-2025-20756 MEDIUM

MediaTek NR15 - Remote Denial of Service via Rogue Base Station Connection

CVE-2025-60633 MEDIUM

free5gc 4.0.0-4.0.1 - Denial of Service via Nudm_SubscriberDataManagement API

CVE-2025-12977 CRITICAL

Fluent Bit - Tag Key Injection via in_http, in_splunk, and in_elasticsearch Plugins

CVE-2025-41729 HIGH

Janitza UMG 96-PA and UMG 96-PA-MID+ < 3.54 - Unauthenticated Denial of Service via Modbus Read Command

CVE-2025-9524 MEDIUM

AXIS OS 6.50.0-12.7.11 - Authenticated DoS via VAPIX API port.cgi

CVE-2025-8108 MEDIUM

AXIS OS 12.0.0-12.7.33 - Privilege Escalation via ACAP Configuration File

CVE-2025-6298 MEDIUM

Axis OS < 12.6.28 - Privilege Escalation via Malicious ACAP Application Installation

CVE-2025-4645 MEDIUM

Axis OS 12.0.0-12.6.6 - Remote Code Execution via ACAP Configuration File

CVE-2025-59278 HIGH

Windows Authentication Methods - Privilege Escalation

CVE-2025-59277 HIGH

Windows Authentication Methods - Privilege Escalation

CVE-2025-59275 HIGH

Windows Authentication Methods - Privilege Escalation

CVE-2025-59259 MEDIUM

Windows Local Session Manager - DoS

CVE-2025-59257 MEDIUM

Windows Local Session Manager - DoS

CVE-2025-58729 MEDIUM

Windows Local Session Manager - DoS

CVE-2025-55701 HIGH

Microsoft Windows - Privilege Escalation

CVE-2025-58084 LOW

Mattermost Desktop App <=5.13.0 - SSRF

CVE-2025-61672 MEDIUM

Synapse < 1.138.3 and 1.139.0 - Federation Degradation via Device Key Validation Bypass

CVE-2025-20327 HIGH

Cisco IOS - Authenticated Denial of Service via Crafted URL

CVE-2025-10207 HIGH

ABB FLXEON <9.3.5 - Info Disclosure

CVE-2025-42929 HIGH

SAP Landscape Transformation Replication Server - Authenticated Arbitrary Database Table Deletion via ABAP Reports

CVE-2025-42916 HIGH

SAP S/4HANA (Private Cloud or On-Premise) - Arbitrary Database Table Content Deletion via ABAP Reports

CVE-2025-8402 MEDIUM

Mattermost 9.11.0-9.11.17 10.5.0-10.5.8 10.8.0-10.8.3 10.9.0-10.9.3 10.10.0 - Denial of Service via Bulk Import Feature

CVE-2025-20251 HIGH

Cisco Secure Firewall ASA/FTD - Privilege Escalation

Previous Page 2 of 6 Next

Details

Vulnerabilities 134

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy