Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,478 vulnerabilities with CWE-20

CVE-2021-34374 HIGH

NVIDIA Jetson Linux < 32.5.1 - Memory Corruption via Trusty Command Handler Buffer Overflow

CVE-2021-32567 HIGH

Apache Traffic Server 7.0.0-7.1.12 8.0.0-8.1.1 9.0.0-9.0.1 - Denial of Service via HTTP/2 Input Validation

CVE-2021-32566 HIGH

Apache Traffic Server 7.0.0-7.1.12, 8.0.0-8.1.1, 9.0.0-9.0.1 - Denial of Service via HTTP/2 Input Validation

CVE-2021-28585 MEDIUM

Magento < 2.3.6 and 2.4.0-2.4.2-p1 - Improper Input Validation in New Customer WebAPI

CVE-2021-34427 CRITICAL

Eclipse BIRT < 4.8.0 - Remote Code Execution via JSP File Upload

CVE-2021-20583 MEDIUM

IBM Security Verify <10.9.66 - Info Disclosure

CVE-2021-31412 MEDIUM

com.vaadin:flow-server <2.6.1 - Path Traversal

CVE-2021-35041 HIGH

FISCO-BCOS V2.7.2 - Memory Corruption

CVE-2021-22377 HIGH

Huawei S12700-S7700 - Command Injection

CVE-2021-32697 MEDIUM

neos/form 1.2.0-4.3.2 - Unauthenticated Form Submission Bypass via Crafted GET Request

CVE-2021-0511 HIGH

Android - Local Privilege Escalation via Dex2oat Bytecode Injection

CVE-2021-1570 MEDIUM

Cisco Jabber 12.9-12.9.6.55898 - Information Disclosure and Denial of Service

CVE-2021-1569 MEDIUM

Cisco Jabber 12.9-12.9.6.55898 - Information Disclosure and Denial of Service

CVE-2021-1524 MEDIUM

Cisco Meeting Server 3.1 - Authenticated Denial of Service via API Request

CVE-2021-27388 CRITICAL

SINAMICS SL150 SM150 SM150i Firmware - Unauthenticated Denial of Service and Limited Command Execution via Sm@rtServer

CVE-2021-27196 HIGH

Hitachi ABB Power Grids Relion - DoS via IEC 61850 Network Input

CVE-2021-21557 HIGH

Dell PowerEdge Server BIOS < 2.11.2 - Out-of-bounds Read in System Management Mode

CVE-2021-0485 HIGH

Android 11 - Local Privilege Escalation via PipBoundsAlgorithm Permissions Bypass

CVE-2021-0481 HIGH

Android 8.1-11 - Unauthorized File Access via EditUserPhotoController URI Handler

CVE-2021-22768 CRITICAL

PowerLogic EGX100 >=3.0.0 and EGX300 - Denial of Service or Remote Code Execution via HTTP Packet

CVE-2021-22767 CRITICAL

PowerLogic EGX100 >= 3.0.0 and EGX300 - Denial of Service or Remote Code Execution via HTTP Packet

CVE-2021-22766 HIGH

PowerLogic EGX100 >=3.0.0 and EGX300 - Denial of Service via Crafted HTTP Packet

CVE-2021-22765 CRITICAL

PowerLogic EGX100 >=3.0.0 and EGX300 - Denial of Service or Remote Code Execution via HTTP Packet

CVE-2021-25416 MEDIUM

RKP <SMR JUN-2021 Release 1 - Local Privilege Escalation

CVE-2021-25415 MEDIUM

RKP <SMR JUN-2021 Release 1 - Memory Corruption

Previous Page 165 of 500 Next

Details

Vulnerabilities 12,478

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy