CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,591 vulnerabilities with CWE-20
CVE-2019-15705 HIGH
FortiOS < 6.0.6 - Unauthenticated Denial of Service via SSL VPN Portal POST Request
CVSS 7.5
CVE-2019-15997 MEDIUM
Cisco DNA Spaces: Connector - Command Injection
CVSS 6.7
CVE-2019-15988 MEDIUM
Cisco Email Security Appliance Firmware < 12.5.0 - Unauthenticated URL Filter Bypass via Crafted URL
CVSS 5.3
CVE-2019-15986 MEDIUM
Cisco Unity Express - Command Injection
CVSS 6.7
CVE-2019-15971 MEDIUM
Cisco AsyncOS Software - Auth Bypass
CVSS 4.3
CVE-2019-15958 CRITICAL
Cisco Prime Infrastructure/EPNM - RCE
CVSS 9.8
CVE-2019-15288 HIGH
Cisco TelePresence Codec <7.3.19, Collaboration Endpoint <9.8.1, RoomOS <2019-09-drop1 - Privilege Escalation via SSH
CVSS 8.8
CVE-2019-15276 MEDIUM
Cisco Wireless LAN Controller Software 8.4-8.9 - Denial of Service via Crafted URL
CVSS 6.5
CVE-2019-19249 CRITICAL
QueryTree <3.0.99-beta - Info Disclosure
CVSS 9.8
CVE-2019-5864 MEDIUM
Chrome < 76.0.3809.87 - Content Security Policy Bypass via Malicious Extension
CVSS 4.3
CVE-2019-5862 MEDIUM
Google Chrome < 76.0.3809.87 - Site Isolation Bypass via AppCache
CVSS 6.5
CVE-2019-5858 HIGH
Google Chrome < 76.0.3809.87 - Arbitrary Code Execution via MacOS Services Integration
CVSS 8.8
CVE-2019-5856 HIGH
Google Chrome < 76.0.3809.87 - Site Isolation Bypass via Storage Policy Enforcement
CVSS 8.8
CVE-2019-5852 MEDIUM
Google Chrome < 76.0.3809.87 - Information Disclosure via JavaScript Implementation
CVSS 6.5
CVE-2019-13707 MEDIUM
Google Chrome <78.0.3904.70 - Info Disclosure
CVSS 5.5
CVE-2019-13692 HIGH
Google Chrome <77.0.3865.75 - Auth Bypass
CVSS 8.8
CVE-2019-13675 MEDIUM
Google Chrome < 77.0.3865.75 - Extension Disabling via Insufficient Data Validation
CVSS 4.3
CVE-2019-10563 HIGH
Qualcomm Apq8053 Firmware - Improper Input Validation
CVSS 7.8
CVE-2019-10535 MEDIUM
Qualcomm Firmware - Memory Corruption in WLAN Loop Validation
CVSS 5.5
CVE-2019-11289 HIGH
Cloudfoundry Cf-deployment < 12.8.0 - Improper Input Validation
CVSS 8.6
CVE-2019-16762 MEDIUM
slpjs < 0.21.4 - Bitcoin Script Validation Bypass via Crafted Script
CVSS 5.7
CVE-2019-16761 MEDIUM
slp-validate @1.0.0 - Code Injection
CVSS 5.7
CVE-2019-6663 MEDIUM
F5 BIG-IP DNS Rebinding Attack via Configuration Utility
CVSS 5.5
CVE-2019-14591 MEDIUM
Intel(R) Graphics Driver <26.20.100.7209 - DoS
CVSS 5.5
CVE-2019-11089 MEDIUM
Intel Graphics Driver < 25.20.100.6519 - Authenticated Denial of Service via Kernel Mode Module
CVSS 5.5
Details
Vulnerabilities 12,591
Exploit Likelihood High