The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
12,591 vulnerabilities with CWE-20
CVE-2019-15705
HIGH
FortiOS < 6.0.6 - Unauthenticated Denial of Service via SSL VPN Portal POST Request
CVSS 7.5
CVE-2019-15997
MEDIUM
Cisco DNA Spaces: Connector - Command Injection
CVSS 6.7
CVE-2019-15988
MEDIUM
Cisco Email Security Appliance Firmware < 12.5.0 - Unauthenticated URL Filter Bypass via Crafted URL
CVSS 5.3
CVE-2019-15986
MEDIUM
Cisco Unity Express - Command Injection
CVSS 6.7
CVE-2019-15971
MEDIUM
Cisco AsyncOS Software - Auth Bypass
CVSS 4.3
CVE-2019-15958
CRITICAL
Cisco Prime Infrastructure/EPNM - RCE
CVSS 9.8
CVE-2019-15288
HIGH
Cisco TelePresence Codec <7.3.19, Collaboration Endpoint <9.8.1, RoomOS <2019-09-drop1 - Privilege Escalation via SSH
CVSS 8.8
CVE-2019-15276
MEDIUM
Cisco Wireless LAN Controller Software 8.4-8.9 - Denial of Service via Crafted URL
CVSS 6.5
CVE-2019-19249
CRITICAL
QueryTree <3.0.99-beta - Info Disclosure
CVSS 9.8
CVE-2019-5864
MEDIUM
Chrome < 76.0.3809.87 - Content Security Policy Bypass via Malicious Extension
CVSS 4.3
CVE-2019-5862
MEDIUM
Google Chrome < 76.0.3809.87 - Site Isolation Bypass via AppCache
CVSS 6.5
CVE-2019-5858
HIGH
Google Chrome < 76.0.3809.87 - Arbitrary Code Execution via MacOS Services Integration
CVSS 8.8
CVE-2019-5856
HIGH
Google Chrome < 76.0.3809.87 - Site Isolation Bypass via Storage Policy Enforcement
CVSS 8.8
CVE-2019-5852
MEDIUM
Google Chrome < 76.0.3809.87 - Information Disclosure via JavaScript Implementation
CVSS 6.5
CVE-2019-13707
MEDIUM
Google Chrome <78.0.3904.70 - Info Disclosure
CVSS 5.5
CVE-2019-13692
HIGH
Google Chrome <77.0.3865.75 - Auth Bypass
CVSS 8.8
CVE-2019-13675
MEDIUM
Google Chrome < 77.0.3865.75 - Extension Disabling via Insufficient Data Validation
CVSS 4.3
CVE-2019-10563
HIGH
Qualcomm Apq8053 Firmware - Improper Input Validation
CVSS 7.8
CVE-2019-10535
MEDIUM
Qualcomm Firmware - Memory Corruption in WLAN Loop Validation
CVSS 5.5
CVE-2019-11289
HIGH
Cloudfoundry Cf-deployment < 12.8.0 - Improper Input Validation
CVSS 8.6
CVE-2019-16762
MEDIUM
slpjs < 0.21.4 - Bitcoin Script Validation Bypass via Crafted Script
CVSS 5.7
CVE-2019-16761
MEDIUM
slp-validate @1.0.0 - Code Injection
CVSS 5.7
CVE-2019-6663
MEDIUM
F5 BIG-IP DNS Rebinding Attack via Configuration Utility
CVSS 5.5
CVE-2019-14591
MEDIUM
Intel(R) Graphics Driver <26.20.100.7209 - DoS
CVSS 5.5
CVE-2019-11089
MEDIUM
Intel Graphics Driver < 25.20.100.6519 - Authenticated Denial of Service via Kernel Mode Module
CVSS 5.5
Details
Vulnerabilities
12,591
Exploit Likelihood
High