CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,628 vulnerabilities with CWE-20
CVE-2015-7318 HIGH
Plone 3.3.0-3.3.6 - HTTP Response Header Injection
CVSS 7.5
CVE-2015-5248 MEDIUM
Red Hat Feedhenry < - Info Disclosure
CVSS 6.5
CVE-2015-5179 HIGH
FreeIPA < 4.5.0 - Unprotected User Data Exposure via Non-Printable Character Handling
CVSS 7.5
CVE-2015-3419 MEDIUM
vBulletin 5.x-5.1.6 - Authenticated Private Message Injection via Input Validation Bypass
CVSS 6.5
CVE-2015-5186 MEDIUM
linux_audit < 2.4.3 - Improper Input Validation in Filename Sanitization
CVSS 5.3
CVE-2015-0853 HIGH
svn-workbench < 1.6.2 - Local Command Execution via Command Shell Menu Item
CVSS 8.8
CVE-2015-5209 HIGH
Apache Struts 2.x < 2.3.24.1 - Remote Code Execution via Top Object Manipulation
CVSS 7.5
CVE-2015-0234 HIGH
pki-core 10.2.0 - Temporary File Creation via Improper Input Validation
CVSS 7.5
CVE-2015-1554 HIGH
kgb-bot 1.33-2 - Denial of Service
CVSS 7.5
CVE-2015-1443 HIGH
fli4l < 3.10.0 - Remote Code Execution
CVSS 8.8
CVE-2015-5146 MEDIUM
Fedora < 4.2.8 - Improper Input Validation
CVSS 5.3
CVE-2015-9069 CRITICAL
Qualcomm Android - Secure File System Corruption via Improper Input Validation
CVSS 9.8
CVE-2015-9068 CRITICAL
Qualcomm Android - Improper Input Validation in Mink Syscall
CVSS 9.8
CVE-2015-9061 CRITICAL
Qualcomm Android - Unauthorized Secure Memory Access via playReady DRM Length Check Bypass
CVSS 9.8
CVE-2015-9060 CRITICAL
Qualcomm Products with Android CAF Linux Kernel - Improper Input Validation in QTEE System Call
CVSS 9.8
CVE-2015-9055 CRITICAL
Qualcomm Android - Denial of Service via Memory Management Assertion
CVSS 9.8
CVE-2015-9052 CRITICAL
Google Android - Improper Input Validation
CVSS 9.8
CVE-2015-9051 CRITICAL
Google Android - Improper Input Validation
CVSS 9.8
CVE-2015-9049 CRITICAL
Qualcomm Android - Improper Input Validation in USIM Response Processing
CVSS 9.8
CVE-2015-9048 CRITICAL
Qualcomm Products with Android CAF Linux Kernel - Denial of Service via Lost RTP Packet Processing
CVSS 9.8
CVE-2015-9046 CRITICAL
Google Android - Improper Input Validation
CVSS 9.8
CVE-2015-9044 CRITICAL
Google Android - Improper Input Validation
CVSS 9.8
CVE-2015-9039 CRITICAL
Google Android - Improper Input Validation
CVSS 9.8
CVE-2015-0574 CRITICAL
Google Android - Improper Input Validation
CVSS 9.8
CVE-2015-3649 HIGH
open-uri-cached RubyGem - Local Cache Directory Ruby Code Execution
CVSS 7.8
Details
Vulnerabilities 12,628
Exploit Likelihood High