CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,628 vulnerabilities with CWE-20
CVE-2015-2291 HIGH KEV
Intel Ethernet Diagnostics Driver IQVW32.sys and IQVW64.sys < 1.3.1.0 - Denial of Service via IOCTL Call
CVSS 7.8
CVE-2015-7855 MEDIUM
ntp 4.2.0-4.2.8 - Denial of Service via Long Data Value in Mode 6 or 7 Packet
CVSS 6.5
CVE-2015-7852 MEDIUM
NTP 4.2.0-4.2.8 - Denial of Service via Crafted Mode 6 Response Packets
CVSS 5.9
CVE-2015-7705 CRITICAL
NTP 4.2.0-4.2.8 - Denial of Service via Rate Limiting Bypass
CVSS 9.8
CVE-2015-7704 HIGH
NTP 4.x < 4.2.8p4 and 4.3.x < 4.3.77 - Denial of Service via Crafted KOD Messages
CVSS 7.5
CVE-2015-7702 MEDIUM
NTP 4.2.0-4.2.8 - Denial of Service via crypto_xmit Function
CVSS 6.5
CVE-2015-7692 HIGH
NTP 4.2.0-4.2.8 - Denial of Service via crypto_xmit Function
CVSS 7.5
CVE-2015-7691 HIGH
NTP 4.2.0-4.2.8 - Denial of Service via Crafted Autokey Packets
CVSS 7.5
CVE-2015-1555 CRITICAL
Zend Framework 2.2.x-2.2.9 and 2.3.x-2.3.4 - Session Validation Bypass
CVSS 9.1
CVE-2015-4035 HIGH
Tukaani XZ < 4.999.9 - Improper Input Validation
CVSS 7.8
CVE-2015-3278 CRITICAL
nss_compat_ossl - Improper Input Validation in Cipherstring Parsing
CVSS 9.8
CVE-2015-7703 HIGH
NTP ntpd <4.2.8p4-4.3.77 - Code Injection
CVSS 7.5
CVE-2015-5195 HIGH
Fedora < 4.2.7 - Improper Input Validation
CVSS 7.5
CVE-2015-5194 HIGH
Fedora < 4.2.7 - Improper Input Validation
CVSS 7.5
CVE-2015-3639 HIGH
phpMyBackupPro <2.5 - Code Injection
CVSS 8.8
CVE-2015-2245 HIGH
Huawei P7-L09 Firmware - Denial of Service
CVSS 7.5
CVE-2015-3215 HIGH
virtio-win - Denial of Service via Crafted IP Packet Length
CVSS 7.5
CVE-2015-3254 MEDIUM
Apache Thrift < 0.9.2 - Authenticated Denial of Service via Skip Function
CVSS 6.5
CVE-2015-9033 HIGH
Android - Improper Input Validation in QTEE System Call
CVSS 7.8
CVE-2015-3913 HIGH
Huawei Campus Series Switches - Denial of Service via Crafted ICMP Request
CVSS 7.5
CVE-2015-1379 HIGH
socat < 1.7.3.0 and 2.0.0-b8 - Denial of Service via Signal Handler
CVSS 7.5
CVE-2015-8538 MEDIUM
libdwarf >=1999-12-14 <2015-11-14 - Denial of Service in dwarf_leb.c
CVSS 6.5
CVE-2015-5175 HIGH
Apache CXF Fediz < 1.1.3 and 1.2.x < 1.2.1 - Denial of Service
CVSS 7.5
CVE-2015-3830 MEDIUM
Android - Address Bar Spoofing via Malicious Page Display
CVSS 6.5
CVE-2015-5401 HIGH
Teradata Gateway <15.00.03.02-1 & 15.10.x <15.10.00.01-1 & TD Expre...
CVSS 7.5
Details
Vulnerabilities 12,628
Exploit Likelihood High