CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,599 vulnerabilities with CWE-20
CVE-2018-6524 HIGH
nProtect AVS 4.0-4.0.0.39 - Denial of Service via IOCtl 0x220c20
CVSS 7.8
CVE-2018-6523 HIGH
nProtect AVS 4.0-4.0.0.39 - Denial of Service via IOCtl 0x22045c
CVSS 7.8
CVE-2018-6522 HIGH
nProtect AVS 4.0-4.0.0.39 - Denial of Service via IOCtl 0x220408
CVSS 7.8
CVE-2018-0136 HIGH
Cisco IOS XR 5.3.4 - Unauthenticated Denial of Service via IPv6 Fragment Header Extension
CVSS 8.6
CVE-2018-6476 CRITICAL
SUPERAntiSpyware Professional Trial 6.0.1254 - Privilege Escalation via SASKUTIL.SYS Driver IOCtl
CVSS 9.8
CVE-2018-6474 HIGH
SUPERAntiSpyware Professional Trial 6.0.1254 - Denial of Service via SASKUTIL.SYS IOCtl 0x9C402148
CVSS 7.8
CVE-2018-6473 HIGH
SUPERAntiSpyware Professional Trial 6.0.1254 - Denial of Service via SASKUTIL.SYS IOCtl 0x9C402080
CVSS 7.8
CVE-2018-6472 HIGH
SUPERAntiSpyware Professional Trial 6.0.1254 - Denial of Service via SASKUTIL.SYS IOCtl 0x9C40204c
CVSS 7.8
CVE-2018-6471 HIGH
SUPERAntiSpyware Professional Trial 6.0.1254 - Denial of Service via SASKUTIL.SYS IOCtl 0x9C402078
CVSS 7.8
CVE-2018-6407 HIGH
Conceptronic CIPCAMPTIWL V3 0.61.30.21 - Unauthenticated Denial of Service via Large POST Request to devices.cgi
CVSS 7.5
CVE-2018-5441 HIGH
PHOENIX CONTACT mGuard <8.6.0 - Info Disclosure
CVSS 7.8
CVE-2018-6360 HIGH
mpv < 0.28.0 - Remote Code Execution via Crafted VIDEO Element URL
CVSS 8.8
CVE-2018-5447 CRITICAL
Nari PCS-9611 Firmware - Improper Input Validation
CVSS 9.8
CVE-2018-1051 HIGH
Resteasy - Deserialization of Untrusted Data via YamlProvider
CVSS 8.1
CVE-2018-6217 MEDIUM
Kingsoft WPS Office 10.1.0.7106 and 10.2.0.5978 - Denial of Service via Crafted File
CVSS 5.5
CVE-2018-6209 HIGH
Max Secure Anti Virus 19.0.3.019 - Denial of Service via MaxCryptMon.sys IOCtl 0x220019
CVSS 7.8
CVE-2018-6208 HIGH
Max Secure Anti Virus 19.0.3.019 - Denial of Service via IOCtl 0x22000d
CVSS 7.8
CVE-2018-6207 HIGH
Max Secure Anti Virus 19.0.3.019 - Denial of Service via MaxProtector32.sys IOCtl 0x220019
CVSS 7.8
CVE-2018-6206 HIGH
Max Secure Anti Virus 19.0.3.019 - Denial of Service via IOCtl 0x220011
CVSS 7.8
CVE-2018-6205 HIGH
Max Secure Anti Virus 19.0.3.019 - Denial of Service via IOCtl 0x220009
CVSS 7.8
CVE-2018-6204 HIGH
Max Secure Anti Virus 19.0.3.019 - Denial of Service via SDActMon.sys IOCtl 0x220019
CVSS 7.8
CVE-2018-6203 HIGH
eScan Antivirus 14.0.1400.2029 - Denial of Service via IOCtl 0x8300210C
CVSS 7.8
CVE-2018-6202 HIGH
eScan Antivirus 14.0.1400.2029 - Denial of Service via IOCtl 0x830020F8
CVSS 7.8
CVE-2018-6201 HIGH
eScan Antivirus 14.0.1400.2029 - Denial of Service via IOCtl 0x830020E0 or 0x830020E4
CVSS 7.8
CVE-2018-1047 MEDIUM
JBoss WildFly Application Server 9.x - Path Traversal via ServletResourceManager
CVSS 5.5
Details
Vulnerabilities 12,599
Exploit Likelihood High