The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
12,570 vulnerabilities with CWE-20
CVE-2020-24593
HIGH
Mitel MiCloud Management Portal <6.1 SP5 - SQL Injection
CVSS 7.2
CVE-2020-13387
HIGH
Pexip Infinity < 23.4 - Denial of Service via H.323
CVSS 7.5
CVE-2020-12824
HIGH
Pexip Infinity <23.3 - Buffer Overflow
CVSS 7.5
CVE-2020-11805
CRITICAL
Pexip Reverse Proxy and TURN Server - Incorrect UDP Access Control via TURN
CVSS 9.8
CVE-2020-3527
HIGH
Cisco IOS XE 16.9.0-16.9.4 - Unauthenticated Denial of Service via Oversized Frames
CVSS 8.6
CVE-2020-3526
HIGH
Cisco IOS XE - Unauthenticated Denial of Service via Malformed COPS Message
CVSS 8.6
CVE-2020-3516
MEDIUM
Cisco IOS XE - Authenticated Denial of Service via Web Server Authentication Input
CVSS 4.3
CVE-2020-3511
HIGH
Cisco IOS XE - Unauthenticated Denial of Service via ISDN Q.931 Message Processing
CVSS 7.4
CVE-2020-3497
HIGH
Cisco IOS XE - Unauthenticated Denial of Service via Malformed CAPWAP Packet
CVSS 7.4
CVE-2020-3494
HIGH
Cisco IOS XE for Catalyst 9800 Series - Unauthenticated Denial of Service via CAPWAP Packet Processing
CVSS 7.4
CVE-2020-3493
HIGH
Cisco IOS XE for Catalyst 9800 Series - Unauthenticated Denial of Service via CAPWAP Packet Processing
CVSS 7.4
CVE-2020-3492
HIGH
Cisco IOS XE - Unauthenticated Denial of Service via Flexible NetFlow Version 9 Packet Processing
CVSS 8.6
CVE-2020-3489
HIGH
Cisco IOS XE - Unauthenticated Denial of Service via CAPWAP Packet Processing
CVSS 7.4
CVE-2020-3488
HIGH
Cisco IOS XE for Catalyst 9800 Series - Unauthenticated Denial of Service via CAPWAP Packet Processing
CVSS 7.4
CVE-2020-3487
MEDIUM
Cisco IOS XE - Unauthenticated Denial of Service via CAPWAP Packet Processing
CVSS 6.5
CVE-2020-3486
MEDIUM
Cisco IOS XE - Unauthenticated Denial of Service via CAPWAP Packet Processing
CVSS 6.5
CVE-2020-3479
MEDIUM
Cisco IOS and IOS XE - Unauthenticated Denial of Service via Malformed EVPN BGP Update Messages
CVSS 6.1
CVE-2020-3477
MEDIUM
Cisco IOS Software - Privilege Escalation
CVSS 5.5
CVE-2020-3475
MEDIUM
Cisco IOS XE - Authenticated Denial of Service via Web Management Framework
CVSS 4.3
CVE-2020-3474
MEDIUM
Cisco IOS XE - Authenticated Denial of Service via Web Management Framework
CVSS 4.3
CVE-2020-3465
HIGH
Cisco IOS XE - Unauthenticated Denial of Service via Ethernet Frame Handling
CVSS 7.4
CVE-2020-3429
MEDIUM
Cisco IOS XE Wireless Controller - DoS
CVSS 6.5
CVE-2020-3428
MEDIUM
Cisco IOS XE Wireless Controller Software - DoS
CVSS 6.5
CVE-2020-3426
HIGH
Cisco IOS - Unauthenticated Denial of Service or Unauthorized Data Read via VLPWA Protocol Modem Message Handling
CVSS 7.5
CVE-2020-3425
HIGH
Cisco IOS XE - Privilege Escalation
CVSS 8.8
Details
Vulnerabilities
12,570
Exploit Likelihood
High