Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,467 vulnerabilities with CWE-20

CVE-2022-23992 CRITICAL

XCOM Data Transport 11.6 - Remote Code Execution via Insufficient Input Validation

CVE-2022-24926 MEDIUM

Samsung SmartTagPlugin < 1.2.15-6 - Cross-Site Scripting

CVE-2022-24925 MEDIUM

Android SettingsProvider - Permanent Denial of Service via Improper Input Validation

CVE-2022-24000 LOW

DataUsageReminderReceiver <SMR Feb-2022 Release 1 - Info Disclosure

CVE-2022-23999 LOW

CpaReceiver <SMR Feb-2022 Release 1 - Info Disclosure

CVE-2022-23998 MEDIUM

Camera <11.1.02.16, <10.5.03.77, <9.0.6.68 - Info Disclosure

CVE-2022-23432 MEDIUM

Android RPMB ldfw - Arbitrary Memory Write and Code Execution via SMC_SRPMB_WSM Handler

CVE-2022-23427 LOW

Android KnoxPrivacyNoticeReceiver - PendingIntent Hijacking via Implicit Intent

CVE-2022-23425 HIGH

Android Exynos Baseband - Improper Input Validation

CVE-2022-22539 MEDIUM

SAP 3D Visual Enterprise Viewer <9.0 - DoS

CVE-2022-22538 MEDIUM

SAP 3D Visual Enterprise Viewer <9.0 - DoS

CVE-2022-22537 MEDIUM

SAP 3D Visual Enterprise Viewer <9.0 - Info Disclosure

CVE-2022-20037 MEDIUM

Android - Local Information Disclosure via ion Driver Bounds Check

CVE-2022-20036 MEDIUM

Android - Local Information Disclosure via ion Driver Bounds Check

CVE-2022-20017 MEDIUM

Android - Local Information Disclosure via Incorrect Bounds Check in ION Driver

CVE-2022-23626 HIGH

blog_project/blog < 1.4 - Remote Code Execution via Unchecked Image Function Return Values

CVE-2022-23624 HIGH

frourio-express < 0.26.0 - Improper Input Validation via Class-Validator Integration

CVE-2022-23623 HIGH

frourio < 0.26.0 - Improper Input Validation in class-validator Integration

CVE-2022-22727 HIGH

EcoStruxure Power Monitoring Expert < 2020 - Unauthenticated Data Exposure and Settings Manipulation via Crafted Link

CVE-2022-22726 MEDIUM

EcoStruxure Power Monitoring Expert < 2020 - Authenticated Arbitrary File Read

CVE-2022-0484 HIGH

Mirantis Container Cloud Lens Extension <3.1.1 - SSRF

CVE-2022-0317 MEDIUM

go-attestation <0.3.3 - Info Disclosure

CVE-2022-21687 MEDIUM

gh-ost < 1.1.3 - Arbitrary File Read via Database Parameter

CVE-2022-21796 HIGH

Reolink RLC-410W Firmware 3.0.0.136_20121102 - Memory Corruption via HTTP Request to netserver parse_command_list

CVE-2022-23019 HIGH

F5 BIG-IP 12.1.0-12.1.5 - Denial of Service via Diameter Session and Router Profiles

Previous Page 139 of 499 Next

Details

Vulnerabilities 12,467

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy