CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,622 vulnerabilities with CWE-20
CVE-2017-14992 MEDIUM
Docker < 1.10.3 - Denial of Service via Gzip Bomb Payload
CVSS 6.5
CVE-2017-10953 HIGH
Foxit Reader 8.3.0.14878 - Remote Code Execution via gotoURL Method
CVSS 8.8
CVE-2017-14919 HIGH
Node.js <4.8.5,6.x<6.11.5,8.x<8.8.0 - DoS
CVSS 7.5
CVE-2017-16227 HIGH
Quagga < 1.2.2 - Denial of Service via BGP UPDATE Message AS_PATH Size Miscount
CVSS 7.5
CVE-2017-15956 HIGH
ConverTo Video Downloader & Converter 1.4.1 - Arbitrary File Download via Token Parameter
CVSS 7.5
CVE-2017-15951 HIGH
Linux Kernel < 4.4.95 - Denial of Service via KEYS Subsystem Race Condition
CVSS 7.8
CVE-2017-15928 HIGH
OX < 2.8.1 - Improper Input Validation
CVSS 7.5
CVE-2017-14182 MEDIUM
FortiOS 5.4.0-5.4.5 - Authenticated Denial of Service via JSON API Params Parameter
CVSS 6.5
CVE-2017-5121 HIGH
Google Chrome < 61.0.3163.100 - Remote Code Execution via JIT Optimization Escape Analysis
CVSS 8.8
CVE-2017-5110 MEDIUM
Google Chrome < 60.0.3112.78 - Omnibox Spoofing via Web Payments API on blob: and data: Schemes
CVSS 6.5
CVE-2017-5109 MEDIUM
Google Chrome < 60.0.3112.78 - Unauthenticated UI Spoofing via Permission Prompt Unload Handler
CVSS 4.3
CVE-2017-5106 MEDIUM
Google Chrome <60.0.3112.78 - Info Disclosure
CVSS 6.5
CVE-2017-5105 MEDIUM
Google Chrome <60.0.3112.78 - Info Disclosure
CVSS 6.5
CVE-2017-5104 MEDIUM
Google Chrome < 60.0.3112.78 for Mac - Omnibox Spoofing via Crafted HTML Page
CVSS 6.5
CVE-2017-5099 HIGH
Google Chrome <60.0.3112.78 - Privilege Escalation
CVSS 8.8
CVE-2017-5097 HIGH
Google Chrome <60.0.3112.78 - Memory Corruption
CVSS 8.8
CVE-2017-5093 MEDIUM
Google Chrome <60.0.3112.78 - Info Disclosure
CVSS 6.5
CVE-2017-5092 HIGH
Google Chrome < 60.0.3112.78 - Sandbox Escape via PPAPI Plugin Input Validation
CVSS 8.8
CVE-2017-5090 MEDIUM
Google Chrome <59.0.3071.115 - Info Disclosure
CVSS 6.5
CVE-2017-5089 MEDIUM
Google Chrome <59.0.3071.104 - Info Disclosure
CVSS 6.5
CVE-2017-5086 MEDIUM
Google Chrome <59.0.3071.86 - Info Disclosure
CVSS 6.5
CVE-2017-5083 MEDIUM
Google Chrome <59.0.3071.86-59.0.3071.92 - XSS
CVSS 4.3
CVE-2017-5081 LOW
Google Chrome <59.0.3071.86-59.0.3071.92 - Info Disclosure
CVSS 3.3
CVE-2017-5079 MEDIUM
Google Chrome <59.0.3071.86-59.0.3071.92 - XSS
CVSS 4.3
CVE-2017-5076 MEDIUM
Google Chrome <59.0.3071.86-59.0.3071.92 - Info Disclosure
CVSS 6.5
Details
Vulnerabilities 12,622
Exploit Likelihood High