Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,467 vulnerabilities with CWE-20

CVE-2022-47185 HIGH

Apache Traffic Server <9.2.1 - Info Disclosure

CVE-2022-4925 MEDIUM

Google Chrome < 97.0.4692.71 - Header Splitting via QUIC Input Validation

CVE-2022-4911 MEDIUM

Chrome < 106.0.5249.62 - Content Security Policy Bypass via DevTools

CVE-2022-43713 HIGH

GX Software XperienCentral <10.35.0 - Info Disclosure

CVE-2022-2502 HIGH

HitachiEnergy RTU500 Firmware - Denial of Service via Crafted IEC 60870-5-104 Message

CVE-2022-43908 MEDIUM

IBM Security Guardium 11.3 - Authenticated Denial of Service via Improper Input Validation

CVE-2022-31810 HIGH

SiPass integrated < 2.90.3.8 - Unauthenticated Denial of Service via Configuration Client Login Packet

CVE-2022-29562 LOW

Siemens RUGGEDCOM ROX Firmware < 2.16.0 - Unauthenticated Denial of Service via Malformed HTTP Packet

CVE-2022-4332 MEDIUM

Sprecher Automation SPRECON-E-C/P/T3 PU244x - Code Injection

CVE-2022-47392 MEDIUM

CODESYS Control Runtime - Authenticated Denial of Service via CmpApp Component Input Validation

CVE-2022-47937 CRITICAL

Apache Sling Commons JSON < 2.0.20 - Denial of Service via Crafted Input

CVE-2022-47391 HIGH

CODESYS Control SL < 4.8.0.0 - Unauthenticated Denial of Service via Invalid Address Read

CVE-2022-47378 MEDIUM

CODESYS Control Runtime < 4.8.0.0 - Authenticated Denial of Service via Improper Input Validation

CVE-2022-22508 MEDIUM

CODESYS V3 Control Products - Authenticated Denial of Service via Login Blocking

CVE-2022-38787 MEDIUM

Intel(R) FPGA <2.7.0 - Privilege Escalation

CVE-2022-37327 MEDIUM

Intel NUC BIOS Firmware < fncml357.0059 - Information Disclosure via Improper Input Validation

CVE-2022-36339 HIGH

Intel(R) NUC - Privilege Escalation

CVE-2022-34147 HIGH

Intel(R) NUC - Privilege Escalation

CVE-2022-33894 HIGH

Intel(R) Processors - Privilege Escalation

CVE-2022-32766 HIGH

Intel Compute Stick STK2MV64CC Firmware < ccsKLM5v.0067 - Privilege Escalation via Improper Input Validation

CVE-2022-32577 LOW

Intel NUC 5CPYH/5PGYH/5PPYH Firmware < PY0081 - DoS or Info Disclosure via BIOS Input Validation

CVE-2022-28699 HIGH

Intel(R) NUC BIOS - Privilege Escalation

CVE-2022-25976 MEDIUM

Intel VROC < 7.7.6.1003 - Authenticated Denial of Service via Improper Input Validation

CVE-2022-23818 HIGH

AMD EPYC Firmware - Loss of SEV-SNP Guest Memory Integrity via VM_HSAVE_PA Register

CVE-2022-43919 MEDIUM

IBM MQ Appliance 9.2.0.0-9.2.0.9 and 9.2.0.0-9.2.5.6 - Authenticated Denial of Service via Crafted Messages

Previous Page 116 of 499 Next

Details

Vulnerabilities 12,467

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy