Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,468 vulnerabilities with CWE-20

CVE-2021-30338 HIGH

Qualcomm Snapdragon Compute - Information Disclosure via TrustZone Memory Transfer

CVE-2021-35531 MEDIUM

Hitachi Energy TXpert Hub CoreTec <2.2.1 - Command Injection

CVE-2021-26631 HIGH

Mangboard commerce < 1.3.9 - Improper Input Validation in Order Amount Calculation

CVE-2021-26630 HIGH

HANDY Groupware < 1.7.4.7 - Arbitrary File Download and Execution via ActiveX Module

CVE-2021-33025 MEDIUM

xArrow SCADA <7.2 - Privilege Escalation

CVE-2021-26351 MEDIUM

AMD Ryzen 3/5/7 Firmware - Denial of Service via Insufficient DRAM Address Validation

CVE-2021-33108 MEDIUM

Intel(R) In-Band Manageability <2.13.0 - Privilege Escalation

CVE-2021-0159 HIGH

Intel(R) Processors - Privilege Escalation

CVE-2021-0154 HIGH

Intel(R) Processors - Privilege Escalation

CVE-2021-0126 HIGH

Intel Manageability Commander < 2.2 - Authenticated Privilege Escalation via Adjacent Access

CVE-2021-33316 CRITICAL

TRENDnet TI-PG1284i <2.0.2.S0 - Buffer Overflow

CVE-2021-33315 CRITICAL

TRENDnet TI-PG1284i <2.0.2.S0 - Buffer Overflow

CVE-2021-26373 MEDIUM

AMD EPYC 7002 Series Firmware < romepi-sp3_1.0.0.d - Denial of Service via SMU Voltage Mismanagement

CVE-2021-46771 HIGH

AMD EPYC Milan Firmware < milanpi-sp3_1.0.0.4 - Arbitrary Code Execution via ASP System Call

CVE-2021-26370 HIGH

AMD EPYC 7003 Firmware < 1.0.0.4 - Arbitrary Bootloader Memory Overwrite via SVC_LOAD_FW_IMAGE_BY_INSTANCE

CVE-2021-27760 MEDIUM

Notes 11.0-11.0.1 FP4 - Authenticated RCE

CVE-2021-25746 HIGH

ingress-nginx < 1.2.0 - Unauthenticated Credential Exposure via Ingress Annotations

CVE-2021-25745 HIGH

ingress-nginx < 1.2.0 - Authenticated Credential Exposure via Ingress Path Field

CVE-2021-41945 CRITICAL

httpx < 0.23.0 - Improper Input Validation in URL.copy_with

CVE-2021-4212 MEDIUM

Lenovo Notebook - Privilege Escalation

CVE-2021-4211 MEDIUM

Lenovo Desktop/ThinkStation/ThinkEdge - Local Privilege Escalation

CVE-2021-4210 MEDIUM

Lenovo Desktop/ThinkStation/ThinkEdge - Local Privilege Escalation

CVE-2021-3970 MEDIUM

Lenovo IdeaPad 3 Firmware - Authenticated Arbitrary Code Execution via LenovoVariable SMI Handler

CVE-2021-26626 HIGH

XPLATFORM < 9.2.2.280 - Remote Code Execution via execBrowser Method

CVE-2021-3624 HIGH

dcraw - Integer Overflow via Malicious X3F Input Image

Previous Page 143 of 499 Next

Details

Vulnerabilities 12,468

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy