The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
12,591 vulnerabilities with CWE-20
CVE-2019-1789
HIGH
ClamAV < 0.101.2 - Denial of Service via Out-of-bounds Heap Read in PE File Scanner
CVSS 7.5
CVE-2019-15966
HIGH
Cisco TelePresence Advanced Media Gateway - DoS
CVSS 7.7
CVE-2019-17210
HIGH
Arm Mbed OS 2017-11-02 - Denial of Service via MQTT Topic Length Manipulation
CVSS 7.5
CVE-2019-18228
HIGH
Honeywell equIP Series IP Cameras - Denial of Service via Crafted HTTP Packet
CVSS 7.5
CVE-2019-3982
MEDIUM
Nessus < 8.6.0 - Authenticated Denial of Service via Imported Scan Type
CVSS 6.5
CVE-2019-12290
HIGH
GNU libidn2 < 2.2.0 - Domain Impersonation via Punycode Unicode Conversion Bypass
CVSS 7.5
CVE-2019-13541
HIGH
Horner Automation Cscape <9.90 - RCE
CVSS 7.8
CVE-2019-11253
HIGH
Kubernetes v1.0-1.12 and < v1.13.12, v1.14.8, v1.15.5, v1.16.2 - Denial of Service via Malicious YAML/JSON Payloads
CVSS 7.5
CVE-2019-16699
CRITICAL
sr_freecap < 2.4.5 and 2.5.0-2.5.2 - Remote Code Execution via Extbase Action Injection
CVSS 9.8
CVE-2019-15274
MEDIUM
Cisco TelePresence Collaboration Endpoint < 9.8.1 - Authenticated OS Command Injection via CLI
CVSS 6.7
CVE-2019-15273
MEDIUM
Cisco TelePresence Collaboration Endpoint < 9.8.1 - Authenticated Arbitrary File Overwrite via CLI Commands
CVSS 4.4
CVE-2019-15265
MEDIUM
Cisco Aironet Access Points < 8.5.151.0 - Unauthenticated Denial of Service via BPDU Forwarding
CVSS 6.5
CVE-2019-15262
HIGH
Cisco 5520/5508 WLC < 8.5.140.0 DoS via SSH Exhaustion
CVSS 7.5
CVE-2019-15261
HIGH
Cisco Aironet 1810, 1830, 1850 Firmware >=8.4 <8.5.151.0 - Unauthenticated Denial of Service via Malicious GRE Frame
CVSS 8.6
CVE-2019-17507
HIGH
D-Link DIR-816 A1 1.06 - Unauthenticated Access to Management Pages via Client-Side Redirect Bypass
CVSS 7.5
CVE-2019-1230
MEDIUM
Windows 10 and Windows Server 2016/2019 - Information Disclosure via Hyper-V Network Switch Input Validation
CVSS 6.8
CVE-2019-5700
HIGH
NVIDIA Shield Experience < 8.0.1 - Code Execution via Boot Image Validation Bypass
CVSS 7.8
CVE-2019-15019
CRITICAL
Zingbox Inspector < 1.294 - Arbitrary Software Update Image Execution
CVSS 9.8
CVE-2019-0070
HIGH
Junos < 18.2R1 on NFX Series - Local Privilege Escalation via Improper Input Validation
CVSS 8.8
CVE-2019-10969
HIGH
Moxa EDR-810 Firmware <= 5.1 - Authenticated Remote Code Execution via Ping Feature
CVSS 7.2
CVE-2019-17348
MEDIUM
Xen < 4.11.2 - Denial of Service via PCID and Shadow-Pagetable Incompatibility
CVSS 6.5
CVE-2019-17347
HIGH
Xen 4.1.0-4.11.1 - Denial of Service or Privilege Escalation via Virtualized %cr4 Manipulation
CVSS 7.8
CVE-2019-17346
HIGH
Xen < 4.11.2 - Denial of Service or Privilege Escalation via PCID and TLB Flush Incompatibility
CVSS 8.8
CVE-2019-17042
CRITICAL
rsyslog v8.1908.0 - Heap Overflow in Cisco Log Message Parser
CVSS 9.8
CVE-2019-17132
CRITICAL
vBulletin <= 5.5.4 - Remote Code Execution via Custom Avatar Handling
CVSS 9.8
Details
Vulnerabilities
12,591
Exploit Likelihood
High