Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,467 vulnerabilities with CWE-20

CVE-2022-23014 MEDIUM

BIG-IP APM 15.1.0-15.1.4.1 and 16.1.0-16.1.2 - Denial of Service via Portal Access Virtual Server

CVE-2022-21933 MEDIUM

ASUS VivoMini/Mini PC Firmware - Arbitrary Code Execution via SMI Memory Modification

CVE-2022-22820 MEDIUM

LINE < 7.4.0 - Denial of Service via Malicious GIF Image

CVE-2022-22179 MEDIUM

Juniper Junos OS - Unauthenticated Denial of Service via DHCPv4 Packet Option Corruption

CVE-2022-22176 HIGH

Juniper Junos OS - Unauthenticated Denial of Service via Malformed DHCP Packet

CVE-2022-22163 HIGH

Juniper Networks Junos OS <15.1R7-S11, <18.4R3-S9, <19.1 - DoS

CVE-2022-21696 MEDIUM

OnionShare < 2.5 - Username Spoofing via Trailing Whitespace

CVE-2022-20698 HIGH

ClamAV < 0.103.5 and 0.104.0-0.104.1 - Denial of Service via OOXML Parsing

CVE-2022-21646 HIGH

authzed/spicedb 1.3.0-1.4.0 - Improper Input Validation in Wildcard Relationship Handling

CVE-2022-21668 HIGH

pipenv 2018.10.9-2022.1.8 - Remote Code Execution via Malicious Requirements File Comment

CVE-2022-22287 LOW

Samsung Email <6.1.60.16 - Info Disclosure

CVE-2022-22264 HIGH

Dressroom <SMR Jan-2022 Release 1 - Info Disclosure

CVE-2022-20020 MEDIUM

Android - Local Information Disclosure via Missing Bounds Check in libvcodecdrv

CVE-2022-20019 MEDIUM

Android - Local Information Disclosure via Incorrect Bounds Check in libMtkOmxGsmDec

CVE-2021-25255 HIGH

Yandex Browser Lite < 21.1.0 - Denial of Service

CVE-2021-22484 HIGH

Huawei Wearables - Memory Corruption

CVE-2021-30299 MEDIUM

Qualcomm Firmware - Out-of-Bounds Access in Audio Module

CVE-2021-1465 MEDIUM

Cisco Catalyst SD-WAN Manager - Authenticated Path Traversal and Arbitrary File Write via HTTP Request

CVE-2021-1462 MEDIUM

Cisco SD-WAN vManage Software - Privilege Escalation via Malicious File Parsing

CVE-2021-34752 MEDIUM

Cisco FTD Software - Command Injection

CVE-2021-1482 MEDIUM

Cisco Catalyst SD-WAN Manager - Authenticated Authorization Bypass via Crafted HTTP Requests

CVE-2021-1470 MEDIUM

Cisco Catalyst SD-WAN Manager - Authenticated SQL Injection via Web Interface

CVE-2021-1466 MEDIUM

Cisco SD-WAN vManage - Authenticated Denial of Service via vDaemon Buffer Overflow

CVE-2021-1464 MEDIUM

Cisco Catalyst SD-WAN Manager - Authenticated Authorization Bypass via Crafted Command Requests

CVE-2021-38122 MEDIUM

NetIQ Advanced Authentication < 6.3.5.1 - Cross-Site Scripting

Previous Page 140 of 499 Next

Details

Vulnerabilities 12,467

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy