The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
11,827 vulnerabilities with CWE-20
CVE-2025-14558
HIGH
FreeBSD rtsold 15.x - Remote Code Execution via DNSSL
CVSS 7.2
CVE-2026-24713
Apache IoTDB 1.0.0-1.3.6/2.0.0-2.0.6 - Input Validation
CVE-2026-29791
MEDIUM
Agentgateway <0.12.0 - Command Injection
CVSS 4.9
CVE-2026-29046
TinyWeb <2.04 - Command Injection
CVE-2026-0848
CRITICAL
NLTK <=3.9.2 - Code Injection
CVSS 10.0
CVE-2025-7375
Omada EAP610 <1.6.0 - DoS
CVE-2025-11143
LOW
Jetty - Auth Bypass
CVSS 3.7
CVE-2025-41257
MEDIUM
Suprema BioStar 2 2.9.11.6 - Auth Bypass
CVSS 4.8
CVE-2026-3545
CRITICAL
Google Chrome <145.0.7632.159 - Sandbox Escape
CVSS 9.6
CVE-2026-20020
MEDIUM
Cisco Secure Firewall ASA/FTD - DoS
CVSS 6.8
CVE-2026-27443
HIGH
SEPPmail Secure Email Gateway <15.0.1 - Auth Bypass
CVSS 7.5
CVE-2026-3204
CRITICAL
Devolutions Server <2025.3.15 - Info Disclosure
CVSS 9.8
CVE-2026-2590
CRITICAL
Devolutions Remote Desktop Manager <=2025.3.30 - Auth Bypass
CVSS 9.8
CVE-2024-55020
CRITICAL
Weintek cMT-3072XH2 v2.1.53 - Command Injection
CVSS 9.8
CVE-2025-62816
MEDIUM
Samsung Exynos 1280-2500 - DoS
CVSS 5.5
CVE-2026-0034
HIGH
ManagedServices.java - Privilege Escalation
CVSS 8.4
CVE-2026-0015
MEDIUM
AppOpsService.java - DoS
CVSS 6.2
CVE-2026-0014
MEDIUM
AppOpsService - DoS
CVSS 6.2
CVE-2025-48644
MEDIUM
Android - DoS
CVSS 5.5
CVE-2025-48587
MEDIUM
ProfilingService.java - DoS
CVSS 6.2
CVE-2025-48585
MEDIUM
ProfilingService.java - DoS
CVSS 6.2
CVE-2026-28421
MEDIUM
Vim <9.2.0077 - Memory Corruption
CVSS 5.3
CVE-2018-25160
MEDIUM
HTTP::Session2 <=1.09 - Code Injection
CVSS 6.5
CVE-2026-2880
@fastify/middie <9.2.0 - Auth Bypass
CVE-2026-2750
CRITICAL
Centreon Open Tickets <25.10 - Input Validation
CVSS 9.1
Details
Vulnerabilities
11,827
Exploit Likelihood
High