CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,596 vulnerabilities with CWE-20
CVE-2018-15818 HIGH
repute_arforms < 3.5.1 - Arbitrary File Deletion via admin-ajax.php
CVSS 7.5
CVE-2018-20106 MEDIUM
yast2-printer <4.0.2 - Code Injection
CVSS 6.5
CVE-2018-1658 MEDIUM
IBM Jazz Foundation <6.0.6 - HTTP Header Injection
CVSS 5.4
CVE-2018-12222 LOW
Intel Graphics Driver - Out-of-bounds Read via Kernel Mode Driver
CVSS 3.3
CVE-2018-12221 HIGH
Intel Graphics Driver - Integer Overflow via Insufficient Input Validation
CVSS 7.8
CVE-2018-12219 MEDIUM
Intel Graphics Driver < 24.20.100.6373 - Unauthenticated Memory Read via Kernel Mode Driver
CVSS 5.5
CVE-2018-12216 HIGH
Intel(R) Graphics Driver for Windows* <10.18.x.5059-21.20.x.5064 - RCE
CVSS 8.2
CVE-2018-12215 MEDIUM
Intel Graphics Driver - Denial of Service via Kernel Mode Driver Input Validation
CVSS 6.0
CVE-2018-12211 MEDIUM
Intel(R) Graphics Driver for Windows* <10.18.x.5059-21.20.x.5064 - DoS
CVSS 6.5
CVE-2018-12198 MEDIUM
Intel(R) Server Platform Services <SPS_E5_04.00.04.393.0 - DoS
CVSS 6.0
CVE-2018-12196 MEDIUM
Intel Converged Security Management Engine Firmware 11.0-11.8.59 - Authenticated Remote Code Execution via Local Access
CVSS 6.7
CVE-2018-12190 MEDIUM
Intel CSME <11.8.60,11.11.60,11.22.60,12.0.20 - Privilege Escalation
CVSS 6.7
CVE-2018-12188 MEDIUM
Intel CSME <11.8.60, 11.11.60, 11.22.60, 12.0.20 - Info Disclosure
CVSS 4.6
CVE-2018-12187 HIGH
Intel Active Management Technology Firmware 11.0-11.8.59 - Unauthenticated Denial of Service via Network Access
CVSS 7.5
CVE-2018-12185 MEDIUM
Intel CSME Firmware < 11.8.60 - Unauthenticated Remote Code Execution via Physical Access
CVSS 6.8
CVE-2018-20800 MEDIUM
OTRS 5.0.31 and 6.0.13 - Data Loss in Agent Preferences Table
CVSS 6.5
CVE-2018-4055 MEDIUM
Pixar Renderman 22.2.0 - Local Privilege Escalation via Install Helper Tool
CVSS 5.5
CVE-2018-4054 HIGH
Pixar Renderman 22.2.0 - Local Privilege Escalation via Install Helper Tool
CVSS 7.8
CVE-2018-19640 MEDIUM
supportutils <3.1-5.7.1 - Privilege Escalation
CVSS 4.4
CVE-2018-19636 HIGH
Supportutils <3.1-5.7.1 - Code Injection
CVSS 7.3
CVE-2018-12401 HIGH
Firefox < 63.0 - Denial of Service via Special Resource URI with Optional Parameters
CVSS 7.5
CVE-2018-13904 CRITICAL
Qualcomm Mdm9206 Firmware - Improper Input Validation
CVSS 9.8
CVE-2018-11935 MEDIUM
Snapdragon Auto-SD 8CX - Info Disclosure
CVSS 5.3
CVE-2018-11932 CRITICAL
Qualcomm Snapdragon Firmware - Unauthenticated Read/Write Access to Secure Subsystem via Improper Input Validation
CVSS 9.1
CVE-2018-11931 HIGH
Qualcomm Snapdragon Firmware - Improper Access Control via Memory Transfer to CPZ
CVSS 7.8
Details
Vulnerabilities 12,596
Exploit Likelihood High