CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,472 vulnerabilities with CWE-20
CVE-2021-36034 CRITICAL
Adobe Commerce/Magento Open Source <=2.4.2-p1 - Admin File Upload Code Execution
CVSS 9.1
CVE-2021-36032 HIGH
Magento Commerce <2.4.2-2.3.7 - Privilege Escalation
CVSS 8.3
CVE-2021-36030 HIGH
Magento Commerce <2.4.2-2.3.7 - Info Disclosure
CVSS 7.5
CVE-2021-36025 CRITICAL
Adobe Commerce/Magento Open Source <=2.4.2-p1 - Admin Customer File Code Execution
CVSS 9.1
CVE-2021-35223 HIGH
Serv-U < 15.2.4 - Remote Code Execution via Event Command Parameters
CVSS 8.5
CVE-2021-32759 HIGH
OpenMage magento-lts <20.0.13 - Command Injection
CVSS 7.2
CVE-2021-1588 HIGH
Cisco NX-OS - Unauthenticated Denial of Service via MPLS OAM Echo Packet Processing
CVSS 8.6
CVE-2021-22245 LOW
GitLab < 13.12.9 - Denial of Service via Improper Commit Author Validation
CVSS 2.7
CVE-2021-30917 HIGH
iPadOS < 14.8.1 and iOS < 14.8.1 - Memory Corruption via ICC Profile Processing
CVSS 7.8
CVE-2021-30881 HIGH
iPadOS < 15.1 - Remote Code Execution via Malicious Archive
CVSS 7.8
CVE-2021-30862 MEDIUM
iTunes U < 3.8.3 - Remote Code Execution via Malicious URL Processing
CVSS 6.1
CVE-2021-22357 HIGH
Huawei S12700/S5700/S6700/S7700 Firmware - Denial of Service via Crafted Message Input
CVSS 7.5
CVE-2021-36014 LOW
Adobe Media Encoder <15.2 - Info Disclosure
CVSS 3.3
CVE-2021-36007 LOW
Adobe Prelude <10.0 - Info Disclosure
CVSS 3.3
CVE-2021-36006 LOW
Adobe Photoshop <21.2.9,22.4.2 - Info Disclosure
CVSS 3.3
CVE-2021-31401 HIGH
HCC Embedded InterNiche < 4.3 - Integer Overflow via IP Total Length Field
CVSS 7.5
CVE-2021-0419 MEDIUM
Android - Local Denial of Service via Memory Management Driver Input Validation
CVSS 5.5
CVE-2021-0418 MEDIUM
Android - Denial of Service via Memory Management Driver Input Validation
CVSS 5.5
CVE-2021-0417 MEDIUM
Android - Denial of Service in Memory Management Driver
CVSS 5.5
CVE-2021-0416 MEDIUM
Android - Local Denial of Service via Memory Management Driver Input Validation
CVSS 5.5
CVE-2021-20775 MEDIUM
Cybozu Garoon <5.5.0 - Info Disclosure
CVSS 4.3
CVE-2021-20764 MEDIUM
Cybozu Garoon <5.0.2 - Info Disclosure
CVSS 5.3
CVE-2021-20762 MEDIUM
Cybozu Garoon <5.0.2 - Info Disclosure
CVSS 4.3
CVE-2021-20761 LOW
Cybozu Garoon <5.0.2 - Info Disclosure
CVSS 2.7
CVE-2021-20760 MEDIUM
Cybozu Garoon <5.0.2 - Privilege Escalation
CVSS 4.3
Details
Vulnerabilities 12,472
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits