Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,467 vulnerabilities with CWE-20

CVE-2023-28100 CRITICAL

flatpak < 1.10.8 - Command Injection via TIOCLINUX ioctl

CVE-2023-24571 HIGH

Dell Embedded Box PC 3000 Firmware < 1.18.0 - Authenticated Arbitrary Code Execution

CVE-2023-28099 MEDIUM

OpenSIPS < 3.1.9 - Denial of Service via ds_is_in_list() Invalid IP Address Handling

CVE-2023-28098 MEDIUM

OpenSIPS < 3.1.7 - Denial of Service via Crafted Authorization Header

CVE-2023-28095 HIGH

OpenSIPS < 3.1.7 - Denial of Service via build_res_buf_from_sip_req Function

CVE-2023-27601 HIGH

OpenSIPS < 3.1.7 - Denial of Service via Malformed SDP Body in sipmsgops Module

CVE-2023-27600 HIGH

OpenSIPS < 3.1.7 - Denial of Service via Malformed SDP Body in sipmsgops Module

CVE-2023-27599 HIGH

OpenSIPS < 3.1.7 - Denial of Service via Malformed To Header in append_hf Function

CVE-2023-27597 HIGH

OpenSIPS < 3.1.8 - Denial of Service via Crafted SIP Message in rewrite_ruri Function

CVE-2023-0100 HIGH

Eclipse BIRT 2.6.2-4.13.0 - Server-Side Request Forgery via Report Parameter

CVE-2023-24866 MEDIUM

Microsoft PostScript and PCL6 Class Printer Driver - Info Disclosure

CVE-2023-24865 MEDIUM

Microsoft PostScript and PCL6 Class Printer Driver - Info Disclosure

CVE-2023-24856 HIGH

Microsoft PostScript and PCL6 Class Printer Driver - Info Disclosure

CVE-2023-23419 HIGH

Windows 11 22H2 < 10.0.22000.1413 - Elevation of Privilege in ReFS

CVE-2023-23416 HIGH

Windows Cryptographic Services - Remote Code Execution

CVE-2023-23409 MEDIUM

Windows 10 1507-22H2 and Windows 11 21H2-22H2 - Information Disclosure in Client Server Run-Time Subsystem

CVE-2023-23397 CRITICAL KEV

Microsoft Outlook - Privilege Escalation

CVE-2023-24579 MEDIUM

McAfee Total Protection <16.0.51 - Info Disclosure

CVE-2023-24033 HIGH

Samsung Exynos Modem 5123, 5300, 980, 1080, and Auto T5123 Firmware - Denial of Service via SDP Format Type Mismatch

CVE-2023-24975 MEDIUM

IBM Spectrum Symphony 7.3 - HTTP Header Injection via HOST Header

CVE-2023-25947 MEDIUM

OpenHarmony 3.1-3.1.4 - Denial of Service via Malicious HAP Package Installation

CVE-2023-24465 MEDIUM

OpenHarmony - Null Pointer Reference

CVE-2023-22301 MEDIUM

OpenHarmony <v3.1.5 - Memory Corruption

CVE-2023-27484 MEDIUM

crossplane 1.9.0-1.9.1 - Uncontrolled Resource Consumption via High Index in Composition Patch

CVE-2023-27483 MEDIUM

crossplane-runtime 0.17.0-0.19.1 - Uncontrolled Resource Consumption via Paved.SetValue Method

Previous Page 110 of 499 Next

Details

Vulnerabilities 12,467

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy