CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,597 vulnerabilities with CWE-20
CVE-2018-12959 HIGH
aditustoken - Improper Input Validation in approveAndCall Function
CVSS 7.5
CVE-2018-5535 HIGH
F5 BIG-IP 11.2.1-11.6.3 - Denial of Service via QoE Profile Video Processing
CVSS 7.5
CVE-2018-5534 HIGH
F5 BIG-IP 11.5.0-11.5.6, 11.6.0-11.6.3.1, 12.1.0-12.1.3.1, 13.0.0, 13.1.0-13.1.0.5 - DoS via SSL Forward Proxy
CVSS 7.5
CVE-2018-5533 HIGH
F5 BIG-IP 11.5.0-11.5.6, 11.6.0-11.6.3.1, 12.1.0-12.1.2, 13.0.0 - Denial of Service via SSL Forward Proxy Traffic
CVSS 7.5
CVE-2018-14369 HIGH
Wireshark <2.6.1, <2.4.7, <2.2.15 - Crash
CVSS 7.5
CVE-2018-14339 HIGH
Wireshark <2.6.1, <2.4.7, <2.2.15 - DoS
CVSS 7.5
CVE-2018-0394 HIGH
Cisco Cloud Services Platform 2100 - Authenticated Command Injection via Web Upload Function
CVSS 8.8
CVE-2018-0387 HIGH
Cisco Webex Teams - Remote Code Execution via Malicious Link
CVSS 8.8
CVE-2018-0349 CRITICAL
Cisco SD-WAN Solution < 18.3.0 - Authenticated Arbitrary File Write via CLI request admin-tech Command
CVSS 9.8
CVE-2018-0345 HIGH
Cisco SD-WAN Solution - Command Injection
CVSS 8.8
CVE-2018-10616 HIGH
ABB Panel Builder 800 - Code Injection
CVSS 7.8
CVE-2018-14361 CRITICAL
NeoMutt <2018-07-16 - Memory Corruption
CVSS 9.8
CVE-2018-14351 CRITICAL
Mutt < 1.10.1 and NeoMutt < 20180716 - Denial of Service via IMAP Status Mailbox Literal Count
CVSS 9.8
CVE-2018-14349 CRITICAL
Mutt <1.10.1 - Info Disclosure
CVSS 9.8
CVE-2018-0385 HIGH
Cisco Secure Firewall Management Center - Denial of Service via SSL Traffic Parsing
CVSS 7.5
CVE-2018-0369 HIGH
Cisco StarOS 21.3-21.3.15 - Unauthenticated Denial of Service via Fragmented IPv4 Packet Handling
CVSS 8.6
CVE-2018-0361 LOW
ClamAV < 0.100.1 - Denial of Service via PDF Object Length Check Bypass
CVSS 3.3
CVE-2018-14071 CRITICAL
Geo Mashup <1.10.4 - Info Disclosure
CVSS 9.8
CVE-2018-14089 HIGH
Virgo_ZodiacToken - Arbitrary Token Transfer via Incorrect Allowance Comparison
CVSS 7.5
CVE-2018-14085 HIGH
UserWallet 0x0a7bca9FB7AfF26c6ED8029BB6f0F5D291587c42 - Code Injection
CVSS 7.5
CVE-2018-14055 MEDIUM
ZNC <1.7.1-rc1 - Privilege Escalation
CVSS 6.5
CVE-2018-13796 MEDIUM
GNU Mailman < 2.1.28 - Cross-Site Scripting via Crafted URL
CVSS 6.5
CVE-2018-14009 CRITICAL
Codiad < 2.8.4 - Remote Code Execution
CVSS 9.8
CVE-2018-0037 CRITICAL
Junos OS - Remote Code Execution or Denial of Service via BGP NOTIFICATION Messages
CVSS 9.8
CVE-2018-0034 MEDIUM
Junos OS - Denial of Service via Crafted IPv6 DHCP Packet
CVSS 5.3
Details
Vulnerabilities 12,597
Exploit Likelihood High