The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
12,560 vulnerabilities with CWE-20
CVE-2021-0481
HIGH
Android 8.1-11 - Unauthorized File Access via EditUserPhotoController URI Handler
CVSS 7.8
CVE-2021-22768
CRITICAL
PowerLogic EGX100 >=3.0.0 and EGX300 - Denial of Service or Remote Code Execution via HTTP Packet
CVSS 9.8
CVE-2021-22767
CRITICAL
PowerLogic EGX100 >= 3.0.0 and EGX300 - Denial of Service or Remote Code Execution via HTTP Packet
CVSS 9.8
CVE-2021-22766
HIGH
PowerLogic EGX100 >=3.0.0 and EGX300 - Denial of Service via Crafted HTTP Packet
CVSS 7.5
CVE-2021-22765
CRITICAL
PowerLogic EGX100 >=3.0.0 and EGX300 - Denial of Service or Remote Code Execution via HTTP Packet
CVSS 9.8
CVE-2021-25416
MEDIUM
RKP <SMR JUN-2021 Release 1 - Local Privilege Escalation
CVSS 6.5
CVE-2021-25415
MEDIUM
RKP <SMR JUN-2021 Release 1 - Memory Corruption
CVSS 5.5
CVE-2021-25414
HIGH
Samsung Contacts <SMR JUN-2021 Release 1 - Privilege Escalation
CVSS 7.8
CVE-2021-25413
MEDIUM
Samsung Contacts <SMR JUN-2021 Release 1 - Privilege Escalation
CVSS 5.5
CVE-2021-25411
MEDIUM
RKP API <SMR JUN-2021 Release 1 - Memory Corruption
CVSS 4.4
CVE-2021-25410
HIGH
CallBGProvider <SMR JUN-2021 Release 1 - Privilege Escalation
CVSS 7.1
CVE-2021-25401
HIGH
Samsung Health <6.16 - Privilege Escalation
CVSS 7.8
CVE-2021-25684
HIGH
apport 2.20.1-0ubuntu1-2.20.1-0ubuntu2.30 - Denial of Service via FIFO Handling
CVSS 8.8
CVE-2021-25683
HIGH
apport 2.20.1-0ubuntu1-2.20.1-0ubuntu2.30 - Improper Input Validation in get_starttime() Function
CVSS 8.8
CVE-2021-25682
HIGH
Apport 2.20.1-0ubuntu1-2.20.1-0ubuntu2.30 - Information Disclosure via /proc/pid/status Parsing
CVSS 8.8
CVE-2021-20329
MEDIUM
MongoDB GO Driver <1.5.0 - Code Injection
CVSS 6.8
CVE-2021-0134
MEDIUM
Intel Security Library < 3.3 - Denial of Service via API Input Validation
CVSS 4.9
CVE-2021-0051
MEDIUM
Intel Server Platform Services < SPS_E5_04.04.04.023.0 - Denial of Service via Improper Input Validation
CVSS 4.4
CVE-2021-0070
HIGH
Intel EFI BIOS 7215 < BMC 8100.01.08 - Unauthenticated Privilege Escalation via Adjacent Access
CVSS 8.8
CVE-2021-23853
HIGH
Bosch IP Cameras - HTTP Header Injection via Crafted URLs
CVSS 8.3
CVE-2021-33661
MEDIUM
SAP 3D Visual Enterprise Viewer <9 - DoS
CVSS 5.5
CVE-2021-33660
MEDIUM
SAP 3D Visual Enterprise Viewer <9 - DoS
CVSS 5.5
CVE-2021-33659
MEDIUM
SAP 3D Visual Enterprise Viewer <9 - DoS
CVSS 5.5
CVE-2021-27643
MEDIUM
SAP 3D Visual Enterprise Viewer <9 - DoS
CVSS 5.5
CVE-2021-27642
MEDIUM
SAP 3D Visual Enterprise Viewer <9 - DoS
CVSS 5.5
Details
Vulnerabilities
12,560
Exploit Likelihood
High