CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,570 vulnerabilities with CWE-20
CVE-2020-15174 HIGH
Electron <11.0.0-beta.1,10.0.1,9.3.0,8.5.1 - CSRF
CVSS 7.5
CVE-2020-25643 HIGH
Linux Kernel < 5.9-rc7 - Memory Corruption and Denial of Service in HDLC_PPP Module
CVSS 7.2
CVE-2020-5986 MEDIUM
NVIDIA Virtual GPU Manager - Buffer Overflow
CVSS 5.5
CVE-2020-5985 HIGH
NVIDIA Virtual GPU Manager - Buffer Overflow
CVSS 7.1
CVE-2020-15234 MEDIUM
ORY Fosite < 0.34.1 - Open Redirect via Case-Insensitive URL Comparison
CVSS 6.1
CVE-2020-15233 MEDIUM
ORY Fosite 0.30.2-0.34.0 - Open Redirect via Loopback Adapter
CVSS 6.1
CVE-2020-7070 MEDIUM
PHP 7.2.0-7.2.33, 7.3.0-7.3.22, 7.4.0-7.4.10 - Cookie Prefix Confusion via URL Decoding
CVSS 4.3
CVE-2020-7069 MEDIUM
PHP 7.2.0-7.2.33, 7.3.0-7.3.22, 7.4.0-7.4.10 - Inadequate Encryption Strength in AES-CCM Mode
CVSS 5.4
CVE-2020-15228 LOW
@actions/core <1.2.6 - Info Disclosure
CVSS 3.5
CVE-2020-25626 MEDIUM
Django REST Framework < 3.12.0 and < 3.11.2 - Cross-Site Scripting in Browseable API Viewer
CVSS 6.1
CVE-2020-15731 LOW
Bitdefender Engines < 7.85448 - Arbitrary File Write via File Renaming and Recovery
CVSS 3.2
CVE-2020-4607 HIGH
IBM Security Verify Privilege Vault Remote 1.2 - Security Restriction Bypass via Improper Input Validation
CVSS 7.8
CVE-2020-15210 MEDIUM
TensorFlow-Lite <2.3.1 - Memory Corruption
CVSS 6.5
CVE-2020-15206 CRITICAL
Tensorflow <1.15.4, 2.0.3, 2.1.2, 2.2.1, 2.3.1 - Use After Free
CVSS 9.0
CVE-2020-15203 HIGH
Tensorflow <2.3.1 - Memory Corruption
CVSS 7.5
CVE-2020-15201 MEDIUM
Tensorflow <2.3.1 - Buffer Overflow
CVSS 4.8
CVE-2020-15200 MEDIUM
Tensorflow <2.3.1 - Buffer Overflow
CVSS 5.9
CVE-2020-15199 MEDIUM
TensorFlow 2.3.0 - Denial of Service via RaggedCountSparseOutput Input Validation
CVSS 5.9
CVE-2020-15197 MEDIUM
TensorFlow 2.3.0 - Denial of Service via SparseCountSparseOutput Invalid Tensor Rank
CVSS 6.3
CVE-2020-15194 MEDIUM
TensorFlow < 1.15.4 - Denial of Service via SparseFillEmptyRowsGrad Shape Validation Bypass
CVSS 5.3
CVE-2020-15192 MEDIUM
Tensorflow <2.2.1, 2.3.1 - Memory Corruption
CVSS 4.3
CVE-2020-15191 MEDIUM
Tensorflow <2.2.1-2.3.1 - Use After Free
CVSS 5.3
CVE-2020-15190 MEDIUM
Tensorflow <2.3.1 - Memory Corruption
CVSS 5.3
CVE-2020-24692 HIGH
Mitel MiContact Center Business <9.3.0.0 - XSS
CVSS 7.1
CVE-2020-24615 MEDIUM
Pexip Infinity < 24.1 - Denial of Service via SIP
CVSS 5.3
Details
Vulnerabilities 12,570
Exploit Likelihood High