The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
12,628 vulnerabilities with CWE-20
CVE-2015-8711
MEDIUM
Wireshark 1.12.x < 1.12.9 and 2.0.x < 2.0.1 - Denial of Service via NBAP Dissector
CVSS 5.5
CVE-2015-3182
MEDIUM
Wireshark 1.10.12-1.10.14 - Denial of Service in DECnet NSP/RT Dissector
CVSS 5.5
CVE-2015-7416
MEDIUM
IBM i Access 7.1 - Denial of Service via Crafted Workbench File
CVSS 4.0
CVE-2015-1928
MEDIUM
IBM Rational Quality Manager - Clickjacking via Crafted Web Site
CVSS 6.8
CVE-2015-7282
MEDIUM
ReadyNet WRT300N-DD Firmware 1.0.26 - DNS Spoofing via Predictable Source Port
CVSS 5.8
CVE-2015-2918
MEDIUM
OrientDB Server Community Edition <2.0.15 & <2.1.1 - XSS
CVSS 6.1
CVE-2015-7794
MEDIUM
Corega CG-WLNCM4G - Denial of Service via Open DNS Resolver
CVSS 5.8
CVE-2015-7789
MEDIUM
ASUS Japan WL-330NUL <3.0.0.42 - DoS
CVSS 4.3
CVE-2015-5296
MEDIUM
Samba <4.1.22-4.3.3 - Info Disclosure
CVSS 5.4
CVE-2015-7509
MEDIUM
Linux Kernel < 3.6.11 - Denial of Service via Crafted No-Journal Filesystem
CVSS 4.4
CVE-2015-7931
HIGH
Adcon Telemetry A840 - Info Disclosure
CVSS 8.7
CVE-2015-8373
MEDIUM
ISC Kea 0.9.2 and 1.0.0-beta - Denial of Service via Malformed Packet
CVSS 6.8
CVE-2015-6934
HIGH
VMware vRealize Orchestrator 6.x and vCenter Orchestrator 5.x - Remote Code Execution via Deserialization
CVSS 7.3
CVE-2015-6426
Cisco Prime Network Services Controller 3.0 - Local Command Execution via Parameter Injection
CVE-2015-7527
Cool Video Gallery 1.9 - Remote Code Execution via Shell Metacharacters in Video Gallery Settings
CVE-2015-8565
Joomla! 3.2.0-3.3.x and 3.4.x < 3.4.6 - Directory Traversal
CVE-2015-8564
Joomla! 3.4.x - Directory Traversal via XML Install File in Extension Package
CVE-2015-8562
Joomla! 1.5.x-3.4.5 - Unauthenticated Remote Code Execution via HTTP User-Agent Header
CVE-2015-8476
PHPMailer <5.2.14 - CRLF Injection
CVE-2015-8000
ISC BIND <9.9.8-P2, 9.10.x <9.10.3-P2 - DoS
CVE-2015-7216
Fedora < 42.0 - Improper Input Validation
CVE-2015-7211
Firefox < 42.0 - URL Spoofing via Data URI Number Sign Handling
CVE-2015-6403
Cisco SPA30x, SPA50x, SPA51x Phones 7.5.7 - Trojan Horse Firmware Image Loading via TFTP
CVE-2015-6790
Google Chrome < 47.0.2526.73 - Cross-Site Scripting via WebPageSerializerImpl
CVE-2015-6410
Cisco TelePresence Video Communication Server Software - Improper Input Validation
Details
Vulnerabilities
12,628
Exploit Likelihood
High