Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,467 vulnerabilities with CWE-20

CVE-2022-3736 HIGH

BIND 9.16.12-9.16.36 9.18.0-9.18.10 9.19.0-9.19.8 9.16.12-S1-9.16.36-S1 - Denial of Service via RRSIG Query

CVE-2022-41733 MEDIUM

IBM InfoSphere Information Server 11.7 - DoS

CVE-2022-47966 CRITICAL KEV

ManageEngine ADSelfService Plus Unauthenticated SAML RCE

CVE-2022-34436 LOW

Dell iDRAC8 < 2.84.84.84 - Authenticated Firmware Lock-Down Bypass via Racadm

CVE-2022-34435 LOW

Dell iDRAC9 < 6.00.30.00 - Authenticated Firmware Lock-Down Bypass via Racadm

CVE-2022-34460 HIGH

Dell Inspiron and G5 SE Firmware - Authenticated Arbitrary Code Execution in SMRAM via SMI

CVE-2022-34393 HIGH

Dell G5 SE 5505 Firmware < 1.12.1 - Authenticated Arbitrary Code Execution in SMRAM via SMI

CVE-2022-32490 HIGH

Dell Edge Gateway 3000 Firmware < 1.9.0 - Authenticated Arbitrary Code Execution via SMI

CVE-2022-47917 MEDIUM

Sewio RTLS Studio 2.0.0-2.6.2 - Arbitrary File Deletion & DoS via Input Validation

CVE-2022-43455 MEDIUM

Sewio's RTLS Studio <2.6.2 - Privilege Escalation

CVE-2022-41861 MEDIUM

FreeRADIUS < 3.0.25 - Denial of Service via Malformed Abinary Attribute

CVE-2022-46372 HIGH

Alotcer AR7088H-A <16.10.3 - Command Injection

CVE-2022-4428 HIGH

Cloudflare WARP < 2022.10.106.0 - Privilege Escalation via Unvalidated Support URI in MDM Config

CVE-2022-23814 MEDIUM

AMD MilanPI-SP3 Firmware <= 1.0.0.9 - Memory Corruption

CVE-2022-33300 HIGH

Automotive Android OS - Memory Corruption

CVE-2022-23549 MEDIUM

Discourse < 2.8.14 - Input Validation Bypass via HTML Comments

CVE-2022-45875 CRITICAL

Apache DolphinScheduler < 3.0.2 - Authenticated Remote Code Execution via Script Alert Plugin

CVE-2022-32653 MEDIUM

Android - Use-After-Free in mtk-aie

CVE-2022-32652 MEDIUM

Android - Use-After-Free in mtk-aie

CVE-2022-42269 HIGH

NVIDIA Jetson Linux < 32.7.2 - Information Disclosure and Integrity Compromise via SMC Call Handler

CVE-2022-34681 MEDIUM

NVIDIA GPU Display Driver for Windows - Denial of Service via Improper Input Validation in Kernel Mode Layer

CVE-2022-39012 HIGH

Huawei Aslan Children's Watch - Info Disclosure

CVE-2022-43849 MEDIUM

IBM AIX 7.1-7.3 and VIOS 3.1 - Denial of Service via pfcdd Kernel Extension

CVE-2022-43848 MEDIUM

IBM AIX 7.1-7.3 and VIOS 3.1 - Denial of Service via perfstat Kernel Extension

CVE-2022-40233 MEDIUM

IBM AIX 7.1-7.3 and VIOS 3.1 - Denial of Service via TCP/IP Kernel Extension

Previous Page 119 of 499 Next

Details

Vulnerabilities 12,467

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy