Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,467 vulnerabilities with CWE-20

CVE-2022-45872 CRITICAL

iTerm2 < 3.4.18 - Improper Input Validation via DECRQSS Response

CVE-2022-41942 HIGH

Sourcegraph < 4.1.0 - OS Command Injection via Gitserver /list-gitolite Host Parameter

CVE-2022-3388 HIGH

Hitachi Energy MicroSCADA SYS600 - Authenticated Remote Code Execution

CVE-2022-45470 HIGH

Apache Hama < 1.7.1 - Path Traversal and Cross-Site Scripting

CVE-2022-31616 MEDIUM

NVIDIA GPU Display Driver - Memory Corruption

CVE-2022-31607 HIGH

NVIDIA GPU Display Driver - Memory Corruption

CVE-2022-41909 MEDIUM

TensorFlow < 2.8.4 - NULL Pointer Dereference in CompositeTensorVariantToComponents

CVE-2022-41908 MEDIUM

TensorFlow < 2.8.4 - Denial of Service via Non-UTF-8 Token in PyFunc

CVE-2022-41901 MEDIUM

TensorFlow < 2.8.4 - Reachable Assertion in SparseMatrixNNZ

CVE-2022-41899 MEDIUM

TensorFlow < 2.8.4 - Reachable Assertion in SdcaOptimizer

CVE-2022-41898 MEDIUM

TensorFlow < 2.8.4 - Denial of Service via SparseFillEmptyRowsGrad Empty Input

CVE-2022-41896 MEDIUM

TensorFlow < 2.8.4 - Denial of Service via ThreadUnsafeUnigramCandidateSampler Input Validation

CVE-2022-41891 MEDIUM

TensorFlow < 2.8.4 - Denial of Service via TensorListConcat Element Shape Handling

CVE-2022-41888 MEDIUM

TensorFlow < 2.8.4 - Denial of Service via Invalid Scores Input in generate_bounding_box_proposals

CVE-2022-24037 HIGH

Karmasis Informatics Infraskope SIEM+ - Info Disclosure

CVE-2022-36784 CRITICAL

Elsight Halo Firmware - Remote Code Execution via DESTINATION Parameter

CVE-2022-20459 MEDIUM

Android kernel - Local Privilege Escalation

CVE-2022-39389 HIGH

Btcd < 0.23.3 - Improper Input Validation

CVE-2022-39318 MEDIUM

FreeRDP < 2.9.0 - Denial of Service via urbdrc Channel Input Validation

CVE-2022-38385 HIGH

IBM Cloud Pak for Security <1.10.2.0 - Info Disclosure

CVE-2022-20924 HIGH

Cisco Adaptive Security Appliance Software - Authenticated Denial of Service via SNMP Request

CVE-2022-40773 HIGH

ManageEngine ServiceDesk Plus MSP < 10609 & SupportCenter Plus < 11025 - Privilege Escalation via ExportMickeyList

CVE-2022-31772 MEDIUM

IBM MQ 8.0, 9.0 LTS, 9.1 CD, 9.1 LTS, 9.2 CD, 9.2 LTS - Authenticated Denial of Service via MQTT Channels

CVE-2022-38099 HIGH

Intel(R) NUC 11 Compute Elements <EBTGL357.0065 - Privilege Escalation

CVE-2022-34152 HIGH

Intel NUC <TY0070 - Privilege Escalation

Previous Page 122 of 499 Next

Details

Vulnerabilities 12,467

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy