Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,472 vulnerabilities with CWE-20

CVE-2021-25444 MEDIUM

keymaster <SMR AUG-2021 Release 1 - Info Disclosure

CVE-2021-1602 HIGH

Cisco Small Business RV Series Router Firmware < 1.0.01.04 - Unauthenticated OS Command Injection via Web Interface

CVE-2021-30589 MEDIUM

Google Chrome <92.0.4515.107 - CSRF

CVE-2021-22400 MEDIUM

Huawei Smartphones - Code Injection

CVE-2021-37914 MEDIUM

Argo Workflows < 3.1.3 and 3.1.0-3.1.6 - Unauthenticated Workflow Disruption via Expression Template Injection

CVE-2021-3673 HIGH

radare2 5.3.1 - Denial of Service via Crafted LE Binary

CVE-2021-33196 HIGH

Go <1.15.13, <1.16.5 - Buffer Overflow

CVE-2021-22445 HIGH

Huawei Smartphone - Info Disclosure

CVE-2021-22444 CRITICAL

Huawei EMUI and Magic UI - Remote Code Execution via Input Verification Vulnerability

CVE-2021-22443 HIGH

Huawei Smartphone - Memory Corruption

CVE-2021-22397 MEDIUM

Huawei ManageOne 8.0.0 - Privilege Escalation

CVE-2021-22381 HIGH

Huawei EMUI and Magic UI - Denial of Service via Input Verification Vulnerability

CVE-2021-33527 CRITICAL

MB connect line mbDIALUP <= 3.9R0.0 - RCE

CVE-2021-29298 MEDIUM

Emerson GE Automation Proficy Machine Edition v8.0 - Denial of Service via Crafted Traffic to FrameworX.exe

CVE-2021-37595 CRITICAL

FreeRDP < 2.4.0 - Improper Input Validation in wf_cliprdr_server_file_contents_request

CVE-2021-37594 CRITICAL

FreeRDP < 2.4.0 - Improper Input Validation in wf_cliprdr_server_file_contents_request

CVE-2021-36742 HIGH KEV

Trend Micro Apex One/OfficeScan XG/Worry-Free Business Security - Local Privilege Escalation

CVE-2021-34432 HIGH

Eclipse Mosquitto < 2.0.7 - Denial of Service via Zero-Length Topic PUBLISH Packet

CVE-2021-32795 MEDIUM

ArchiSteamFarm < 4.3.1.0 - Unauthenticated Denial of Service via Steam Chat Message

CVE-2021-29770 MEDIUM

IBM i2 Analyze 4.3.0-4.3.2 - Authenticated Unauthorized Action via Hazardous Input Validation

CVE-2021-1097 HIGH

NVIDIA vGPU <12.3-11.5-8.8 - Info Disclosure

CVE-2021-29780 MEDIUM

IBM Resilient SOAR < 41.1 - Authenticated Privilege Escalation via Input Validation

CVE-2021-33592 CRITICAL

NAVER Toolbar < 4.0.30.323 - Remote Code Execution via Crafted upgrade.xml File

CVE-2021-3452 MEDIUM

Lenovo BIOS - Authenticated Arbitrary Code Execution via System Shutdown SMI Callback

CVE-2021-36758 MEDIUM

1Password Connect < 1.2 - Privilege Escalation via Secrets Automation Access Token

Previous Page 162 of 499 Next

Details

Vulnerabilities 12,472

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy