The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
12,631 vulnerabilities with CWE-20
CVE-2015-1319
Unity Settings Daemon <14.04.0+14.04.20150825-0ubuntu2 and 15.04.x ...
CVE-2015-6828
SecureMoz Security Audit < 1.0.5 - Remote Code Execution via Insecure Tweet Info Deserialization
CVE-2015-4499
Bugzilla < 4.2.15, 4.3.x-4.4.x < 4.4.10, 5.x < 5.0.1 - Unauthenticated Privilege Escalation
CVE-2015-6908
OpenLDAP < 2.4.42 - Denial of Service via Crafted BER Data
CVE-2015-2530
Windows Journal - Remote Code Execution via Crafted .jnt File
CVE-2015-2516
Windows Journal - Denial of Service via Crafted .jnt File
CVE-2015-2514
Windows Journal - Remote Code Execution via Crafted .jnt File
CVE-2015-2513
Windows Journal - Remote Code Execution via Crafted .jnt File
CVE-2015-2506
Microsoft Windows - Denial of Service via Crafted OpenType Font
CVE-2015-5250
OpenShift Origin < 1.0.6 - Denial of Service via Crafted JSON Data
CVE-2015-6826
FFmpeg < 2.7.2 - Denial of Service via Crafted RV30/RV40 RealVideo Data
CVE-2015-6825
FFmpeg < 2.7.1 - Denial of Service via Crafted AVI File
CVE-2015-6824
FFmpeg < 2.7.2 - Denial of Service via Crafted Video Data
CVE-2015-6821
FFmpeg < 2.7.1 - Denial of Service via Crafted MPEG Data
CVE-2015-5986
ISC BIND <9.9.7-P3, <9.10.2-P4 - DoS
CVE-2015-5722
ISC BIND <9.9.7-P3, 9.10.x <9.10.2-P4 - DoS
CVE-2015-6259
Cisco IMC Supervisor < 1.0.0.1 and UCS Director < 5.2.0.1 - Arbitrary File Write via JSP Component
CVE-2015-3966
Innominate mGuard Firmware < 8.1.7 - Authenticated Denial of Service via IPsec SA Compression
CVE-2015-2140
HP Systems Insight Manager < 7.4 - Authenticated Information Disclosure and Data Modification
CVE-2015-3221
OpenStack Neutron < 2014.2.4 and 2015.1.x < 2015.1.1 - Authenticated Denial of Service via IPTables Firewall Driver
CVE-2015-4020
Oracle Solaris < 2.0.17 - Improper Input Validation
CVE-2015-6249
Oracle Solaris - Improper Input Validation
CVE-2015-6248
Oracle Linux - Improper Input Validation
CVE-2015-6247
Oracle Solaris - Improper Input Validation
CVE-2015-6246
Oracle Linux - Improper Input Validation
Details
Vulnerabilities
12,631
Exploit Likelihood
High