CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,468 vulnerabilities with CWE-20
CVE-2021-44483 HIGH
Fisglobal Gt.m < 7.0-000 - Improper Input Validation
CVSS 7.5
CVE-2021-44482 HIGH
Fisglobal Gt.m < 7.0-000 - Improper Input Validation
CVSS 7.5
CVE-2021-44481 HIGH
Fisglobal Gt.m < 7.0-000 - Improper Input Validation
CVSS 7.5
CVE-2021-44394 HIGH
Reolink RLC-410W Firmware 3.0.0.136_20121102 - Denial of Service via cgiserver.cgi JSON Command Parser
CVSS 7.5
CVE-2021-44375 HIGH
Reolink RLC-410W Firmware 3.0.0.136_20121102 - Denial of Service via cgiserver.cgi JSON Command Parser
CVSS 7.5
CVE-2021-44366 HIGH
Reolink RLC-410W Firmware 3.0.0.136_20121102 - Denial of Service via cgiserver.cgi JSON Command Parser
CVSS 7.5
CVE-2021-44357 HIGH
Reolink RLC-410W Firmware 3.0.0.136_20121102 - Denial of Service via cgiserver.cgi JSON Command Parser
CVSS 7.5
CVE-2021-44356 HIGH
Reolink RLC-410W Firmware 3.0.0.136_20121102 - Denial of Service via cgiserver.cgi JSON Command Parser
CVSS 7.5
CVE-2021-44355 HIGH
Reolink RLC-410W Firmware 3.0.0.136_20121102 - Denial of Service via cgiserver.cgi JSON Command Parser
CVSS 7.5
CVE-2021-44354 HIGH
Reolink RLC-410W Firmware 3.0.0.136_20121102 - Denial of Service via cgiserver.cgi JSON Command Parser
CVSS 7.5
CVE-2021-4047 HIGH
Red Hat OpenShift 4.9 - Improper Input Validation
CVSS 7.5
CVE-2021-32974 CRITICAL
Moxa NPort IAW5000A-I/O Firmware < 2.2 - Remote Code Execution
CVSS 9.8
CVE-2021-32970 HIGH
Moxa NPort IAW5000A-I/O Firmware < 2.2 - Denial of Service via Web Server Input Validation
CVSS 7.5
CVE-2021-26624 HIGH
eScan Anti-Virus < 7.0.31 - Local Privilege Escalation via runasroot Command
CVSS 7.8
CVE-2021-22277 HIGH
ABB 800xA 5.1.0-0-5.1.0-2 - Denial of Service via Improper Input Validation
CVSS 7.5
CVE-2021-39778 MEDIUM
Android 12L - Local Information Disclosure via Telecomm App Installation Check
CVSS 5.5
CVE-2021-39771 HIGH
Android 12L - Local Privilege Escalation via WiFi Network Addition Input Validation
CVSS 7.8
CVE-2021-39764 HIGH
Android 12L - Local Privilege Escalation via App Spoofing
CVSS 7.8
CVE-2021-39763 HIGH
Android 12L - Local Privilege Escalation via WiFi Settings Input Validation
CVSS 7.8
CVE-2021-39740 MEDIUM
Android 12L - Local Information Disclosure via Messaging Attachment Restriction Bypass
CVSS 5.5
CVE-2021-44462 HIGH
Horner Automation Cscape EnvisionRV < 4.50.3.1 - Memory Corruption via Malicious HMI Project File
CVSS 7.8
CVE-2021-3567 HIGH
Caribou < 0.4.21 - Screen-Lock Bypass via Input Mechanism Regression
CVSS 7.5
CVE-2021-3422 HIGH
Splunk < 7.3.9, 8.0 < 8.0.9, 8.1 < 8.1.3 - Denial of Service via Splunk-to-Splunk Protocol Key-Value Field
CVSS 7.5
CVE-2021-35254 HIGH
SolarWinds WebHelpDesk - Improper Input Validation
CVSS 8.2
CVE-2021-26622 CRITICAL
Genian NAC 4.0-4.0.145.0831 - Remote Code Execution via SSTI and File Name Parameter
CVSS 9.6
Details
Vulnerabilities 12,468
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits