CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,622 vulnerabilities with CWE-20
CVE-2017-16951 MEDIUM
Winamp Pro 5.66 Build 3512 - Denial of Service via Crafted Audio File
CVSS 5.5
CVE-2017-8019 HIGH
EMC ScaleIO 2.0.1.x - Unauthenticated Denial of Service via Crafted Network Packets
CVSS 7.5
CVE-2017-1001004 HIGH
typed-function < 0.10.6 - Remote Code Execution via Typed Function Name
CVSS 8.8
CVE-2017-1001003 CRITICAL
mathjs < 3.17.0 - Prototype Pollution via Unicode Character Bypass
CVSS 9.8
CVE-2017-16935 CRITICAL
Ametys < 4.0.3 - Unauthenticated Access Control Bypass via Direct Request
CVSS 9.8
CVE-2017-8186 MEDIUM
Huawei MHA-AL00A < MHA-AL00BC00B231 - Denial of Service via Malicious APP Parameter Modification
CVSS 5.5
CVE-2017-8175 MEDIUM
Huawei Vicky-AL00A, Victoria-AL00A, Warsaw-AL00 - Denial of Service via Bastet Parameter Modification
CVSS 5.5
CVE-2017-8167 HIGH
Huawei USG9500 Firmware V500R001C50 - Denial of Service via Malformed IKE Packets
CVSS 7.5
CVE-2017-8147 HIGH
Huawei Ac6005 Firmware - Improper Input Validation
CVSS 7.5
CVE-2017-8146 MEDIUM
Huawei P10 and P10 Plus - Denial of Service via Malicious Application Call Module Parameter
CVSS 5.5
CVE-2017-8145 MEDIUM
Huawei P10 and P10 Plus - Denial of Service via Malicious Application Call Module Parameter
CVSS 5.5
CVE-2017-8143 MEDIUM
Huawei Honor 5C/P9 Lite < NEM-L21C432B351/VNS-L21C10B381 DoS via Wi-Fi Driver
CVSS 5.5
CVE-2017-8129 CRITICAL
Huawei UMA V200R001 and V300R001 - Privilege Escalation via Improper Parameter Validation
CVSS 9.8
CVE-2017-8128 CRITICAL
Huawei UMA V200R001 and V300R001 - Privilege Escalation via Improper Parameter Validation
CVSS 9.8
CVE-2017-8126 CRITICAL
Huawei UMA V200R001 - Privilege Escalation via Improper Parameter Validation
CVSS 9.8
CVE-2017-8124 CRITICAL
Huawei UMA V200R001 - Privilege Escalation via Improper Parameter Validation
CVSS 9.8
CVE-2017-8123 CRITICAL
Huawei UMA V200R001 - Privilege Escalation via Improper Parameter Validation
CVSS 9.8
CVE-2017-8122 CRITICAL
Huawei UMA V200R001 - Privilege Escalation via Improper Parameter Validation
CVSS 9.8
CVE-2017-8120 CRITICAL
Huawei UMA V200R001 and V300R001 - Privilege Escalation via Parameter Processing
CVSS 9.8
CVE-2017-8119 CRITICAL
Huawei UMA V200R001 and V300R001 - Privilege Escalation via Improper Parameter Validation
CVSS 9.8
CVE-2017-8117 CRITICAL
Huawei UMA V200R001 and V300R001 - Privilege Escalation via Improper Parameter Validation
CVSS 9.8
CVE-2017-2731 MEDIUM
Huawei P9 Plus Firmware < VIE-AL10C00B386 - Denial of Service via Vibrator Service Interface
CVSS 5.5
CVE-2017-2722 HIGH
Huawei DP300, TE60, TP3106, ViewPoint 9030, eCNS210_TD, eSpace 7950, IAD, U1981 - RCE or DoS via Malformed Packet
CVSS 8.8
CVE-2017-2713 MEDIUM
HUAWEI P9 Firmware < EVA-L09C432B383 - Air Interface Signaling Message Tampering via Insufficient Input Validation
CVSS 5.4
CVE-2017-2711 MEDIUM
Huawei P9 Plus < VIE-AL10C00B352 - Denial of Service via Touchscreen Driver Input Validation
CVSS 5.5
Details
Vulnerabilities 12,622
Exploit Likelihood High