CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,467 vulnerabilities with CWE-20
CVE-2022-33176 HIGH
Intel(R) NUC - Privilege Escalation
CVSS 8.2
CVE-2022-30542 HIGH
Intel S2600WF/R1000WF/R2000WF Firmware < 02.01.0014 - Privilege Escalation via Improper Input Validation
CVSS 8.2
CVE-2022-29466 HIGH
Intel SPS Firmware < SPS_E3_04.01.04.700.0 - Authenticated DoS via Input Validation
CVSS 7.3
CVE-2022-28611 MEDIUM
Intel(R) XMM(TM) 7560 Modem <M2_7560_R_01.2146.00 - Privilege Escal...
CVSS 6.8
CVE-2022-28126 MEDIUM
Intel XMM 7560 Firmware < M2_7560_R_01.2146.00 - Privilege Escalation via Improper Input Validation
CVSS 6.0
CVE-2022-26047 MEDIUM
Intel Killer WiFi Software < 3.1122.3158 - Unauthenticated Denial of Service via Improper Input Validation
CVSS 4.3
CVE-2022-26006 HIGH
Intel(R) Processors - Privilege Escalation
CVSS 8.2
CVE-2022-39881 MEDIUM
Exynos Firmware - Out-of-bounds Read via SIB12 PDU Processing
CVSS 5.3
CVE-2022-39880 HIGH
Android DualOutFocusViewer - Local Arbitrary Code Execution via Improper Input Validation
CVSS 7.1
CVE-2022-39306 MEDIUM
Grafana 8.0.0-8.5.14 and 9.0.0-9.2.3 - Improper Input Validation in Organization Invite
CVSS 6.4
CVE-2022-44553 MEDIUM
HarmonyOS - Improper Input Validation in HiView Module
CVSS 5.3
CVE-2022-27674 HIGH
AMD Prof < 3.6.549 - Denial of Service via IOCTL Buffer Bounds Check Bypass
CVSS 7.5
CVE-2022-23831 HIGH
AMD Prof < 3.6.549 - Denial of Service via IOCTL Input Buffer
CVSS 7.5
CVE-2022-45060 HIGH
Varnish Cache 5.x 6.x < 6.0.11 7.x < 7.1.2 7.2.x < 7.2.1 - HTTP Request Forgery via HTTP/2 Pseudo-Headers
CVSS 7.5
CVE-2022-41214 HIGH
SAP NetWeaver Application Server ABAP/ABAP Platform - Privilege Esc...
CVSS 8.7
CVE-2022-20457 MEDIUM
Android 13 - Local Privilege Escalation via StorageManagerService getMountModeInternal
CVSS 5.5
CVE-2022-44556 HIGH
Huawei EMUI and HarmonyOS - Denial of Service via DRM Module Parameter Validation
CVSS 7.5
CVE-2022-43546 CRITICAL
POWER METER SICAM Q100, SICAM P850 < V2.50-V3.10 - Info Disclosure
CVSS 9.9
CVE-2022-43545 CRITICAL
POWER METER SICAM Q100, SICAM P850 <V2.50-V3.10 - Info Disclosure
CVSS 9.9
CVE-2022-43439 CRITICAL
POWER METER SICAM Q100, SICAM P850 - Info Disclosure
CVSS 9.9
CVE-2022-43566 HIGH
Splunk Enterprise <8.2.9, <8.1.12, <9.0.2 - Privilege Escalation
CVSS 7.3
CVE-2022-43565 HIGH
Splunk Enterprise <8.2.9, 8.1.12 - CSRF
CVSS 8.1
CVE-2022-43563 HIGH
Splunk Enterprise <8.2.9, 8.1.12 - Auth Bypass
CVSS 8.1
CVE-2022-43562 LOW
Splunk Enterprise <8.1.12-9.0.2 - XSS
CVSS 3.0
CVE-2022-43449 MEDIUM
OpenHarmony <v3.1.2 - Info Disclosure
CVSS 6.2
Details
Vulnerabilities 12,467
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits