CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,570 vulnerabilities with CWE-20
CVE-2020-24593 HIGH
Mitel MiCloud Management Portal <6.1 SP5 - SQL Injection
CVSS 7.2
CVE-2020-13387 HIGH
Pexip Infinity < 23.4 - Denial of Service via H.323
CVSS 7.5
CVE-2020-12824 HIGH
Pexip Infinity <23.3 - Buffer Overflow
CVSS 7.5
CVE-2020-11805 CRITICAL
Pexip Reverse Proxy and TURN Server - Incorrect UDP Access Control via TURN
CVSS 9.8
CVE-2020-3527 HIGH
Cisco IOS XE 16.9.0-16.9.4 - Unauthenticated Denial of Service via Oversized Frames
CVSS 8.6
CVE-2020-3526 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via Malformed COPS Message
CVSS 8.6
CVE-2020-3516 MEDIUM
Cisco IOS XE - Authenticated Denial of Service via Web Server Authentication Input
CVSS 4.3
CVE-2020-3511 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via ISDN Q.931 Message Processing
CVSS 7.4
CVE-2020-3497 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via Malformed CAPWAP Packet
CVSS 7.4
CVE-2020-3494 HIGH
Cisco IOS XE for Catalyst 9800 Series - Unauthenticated Denial of Service via CAPWAP Packet Processing
CVSS 7.4
CVE-2020-3493 HIGH
Cisco IOS XE for Catalyst 9800 Series - Unauthenticated Denial of Service via CAPWAP Packet Processing
CVSS 7.4
CVE-2020-3492 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via Flexible NetFlow Version 9 Packet Processing
CVSS 8.6
CVE-2020-3489 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via CAPWAP Packet Processing
CVSS 7.4
CVE-2020-3488 HIGH
Cisco IOS XE for Catalyst 9800 Series - Unauthenticated Denial of Service via CAPWAP Packet Processing
CVSS 7.4
CVE-2020-3487 MEDIUM
Cisco IOS XE - Unauthenticated Denial of Service via CAPWAP Packet Processing
CVSS 6.5
CVE-2020-3486 MEDIUM
Cisco IOS XE - Unauthenticated Denial of Service via CAPWAP Packet Processing
CVSS 6.5
CVE-2020-3479 MEDIUM
Cisco IOS and IOS XE - Unauthenticated Denial of Service via Malformed EVPN BGP Update Messages
CVSS 6.1
CVE-2020-3477 MEDIUM
Cisco IOS Software - Privilege Escalation
CVSS 5.5
CVE-2020-3475 MEDIUM
Cisco IOS XE - Authenticated Denial of Service via Web Management Framework
CVSS 4.3
CVE-2020-3474 MEDIUM
Cisco IOS XE - Authenticated Denial of Service via Web Management Framework
CVSS 4.3
CVE-2020-3465 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via Ethernet Frame Handling
CVSS 7.4
CVE-2020-3429 MEDIUM
Cisco IOS XE Wireless Controller - DoS
CVSS 6.5
CVE-2020-3428 MEDIUM
Cisco IOS XE Wireless Controller Software - DoS
CVSS 6.5
CVE-2020-3426 HIGH
Cisco IOS - Unauthenticated Denial of Service or Unauthorized Data Read via VLPWA Protocol Modem Message Handling
CVSS 7.5
CVE-2020-3425 HIGH
Cisco IOS XE - Privilege Escalation
CVSS 8.8
Details
Vulnerabilities 12,570
Exploit Likelihood High