CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,597 vulnerabilities with CWE-20
CVE-2018-15701 MEDIUM
TP-Link TL-WRN841N 0.9.1 4.16 v0348.0 - Unauthenticated Denial of Service via Crafted HTTP Cookie Header
CVSS 6.5
CVE-2018-15700 MEDIUM
TP-Link TL-WRN841N 0.9.1 4.16 v0348.0 - Unauthenticated Denial of Service via Crafted HTTP Referer Header
CVSS 6.5
CVE-2018-16587 MEDIUM
Open Ticket Request System 4.0.0-4.0.31 - Arbitrary File Deletion via Malicious Email
CVSS 6.5
CVE-2018-8850 CRITICAL
Philips e-Alert Firmware < R2.1 - Improper Input Validation
CVSS 9.8
CVE-2018-6119 MEDIUM
Chrome < 64.0.3282.119 - Security UI Spoofing via Omnibox
CVSS 6.5
CVE-2018-6055 HIGH
Google Chrome < 64.0.3282.119 - Remote Code Execution via Catalog Service Policy Bypass
CVSS 8.8
CVE-2018-6050 MEDIUM
Google Chrome < 64.0.3282.119 - Security UI Spoofing via Omnibox
CVSS 6.5
CVE-2018-6048 MEDIUM
Google Chrome <64.0.3282.119 - Info Disclosure
CVSS 4.3
CVE-2018-6047 MEDIUM
Google Chrome <64.0.3282.119 - Info Disclosure
CVSS 4.3
CVE-2018-6046 MEDIUM
Google Chrome <64.0.3282.119 - Info Disclosure
CVSS 6.1
CVE-2018-6043 HIGH
Google Chrome < 64.0.3282.119 - Remote Code Execution via External Protocol Handler
CVSS 8.8
CVE-2018-6042 MEDIUM
Google Chrome < 64.0.3282.119 - Security UI Spoofing via Omnibox Manipulation
CVSS 4.3
CVE-2018-6041 MEDIUM
Google Chrome < 64.0.3282.119 - URL Spoofing via Omnibox Manipulation
CVSS 4.3
CVE-2018-6039 MEDIUM
Google Chrome <64.0.3282.119 - Info Disclosure
CVSS 6.1
CVE-2018-6036 MEDIUM
Google Chrome <64.0.3282.119 - Info Disclosure
CVSS 6.5
CVE-2018-6033 HIGH
Google Chrome < 64.0.3282.119 - Remote Code Execution via Crafted Chrome Extension
CVSS 8.8
CVE-2018-6032 MEDIUM
Google Chrome <64.0.3282.119 - Info Disclosure
CVSS 6.5
CVE-2018-15960 HIGH
Adobe ColdFusion 2018.0.0.310739 (Update 6/14 and earlier) - Arbitrary File Overwrite
CVSS 7.5
CVE-2018-14318 HIGH
Samsung Galaxy S8 G950FXXU1AQL5 - RCE
CVSS 8.8
CVE-2018-10502 HIGH
Samsung Galaxy Apps <4.2.18.2 - Privilege Escalation
CVSS 7.8
CVE-2018-10499 HIGH
Samsung Galaxy Apps <6.4.0.15 - RCE
CVSS 7.0
CVE-2018-10497 HIGH
Samsung Email <5.0.02.16 - Privilege Escalation
CVSS 7.8
CVE-2018-10496 HIGH
Samsung Internet Browser <6.4.0.15 - RCE
CVSS 8.8
CVE-2018-14889 HIGH
CouchDB - Local Code Execution
CVSS 7.8
CVE-2018-14732 HIGH
webpack-dev-server <3.1.6 - Info Disclosure
CVSS 7.5
Details
Vulnerabilities 12,597
Exploit Likelihood High