CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,634 vulnerabilities with CWE-20
CVE-2015-0751
Cisco IP Phone 7861 with Unified Communications Manager 10.3(1) Firmware - Denial of Service via Crafted Packets
CVE-2015-4016
Valve Steam Client < 2015-05-13 - Denial of Service via Crafted Broadcast Response
CVE-2015-1261
Google Chrome <43.0.2357.65 - Info Disclosure
CVE-2015-0739
Cisco FireSIGHT System Software 5.3.0 - Authenticated Arbitrary BMC File Upload via LOM
CVE-2015-3455
Squid <3.2.14-3.5.4 - SSL Spoofing
CVE-2015-0730
Cisco Wide Area Application Services 6.0(1) - Denial of Service via SMB Negotiate Protocol Request
CVE-2015-0726
Cisco Wireless LAN Controller Software DoS via Web Admin Interface
CVE-2015-0717
Cisco Unified Communications Manager 10.0(1.10000.12) - Privilege Escalation via Command String Injection
CVE-2015-1700
Microsoft SharePoint Foundation and Server - Remote Code Execution via Crafted Page Content
CVE-2015-0701
Cisco Unified Computing System Central Software - Remote Code Execution via Crafted HTTP Request
CVE-2015-0702
Cisco Unified MeetingPlace 8.6(1.9) - Authenticated Arbitrary File Upload via Custom Prompts
CVE-2015-3323
ThinkServer System Manager <1.27.73476 - DoS
CVE-2015-0693
Cisco Web Security Appliance 8.5.0-ise-147 - Local Privilege Escalation via Pickle Deserialization
CVE-2015-1647
Microsoft Windows 8.1/Server 2012 R2 - DoS
CVE-2015-0677
Cisco ASA Software 8.4-9.3 DoS via XML Parser
CVE-2015-0676
Cisco Adaptive Security Appliance Software - Denial of Service via DNS Response Spoofing
CVE-2015-0678
Cisco ASA FirePOWER and CX Software - Denial of Service via Crafted Packets to Management Interface
CVE-2015-3004
Juniper Junos <11.4R12, <12.1X44-D35, <12.1X46-D25, <12.1X47-D10, <...
CVE-2015-1142
macOS < 10.10.3 - Denial of Service via Crafted Localization Data
CVE-2015-1139
Apple OS X <10.10.3 - Memory Corruption
CVE-2015-1138
macOS < 10.10.3 - Denial of Service via Hypervisor Input Validation
CVE-2015-1135
Apple OS X <10.10.3 - Privilege Escalation
CVE-2015-1134
Apple OS X <10.10.3 - Privilege Escalation
CVE-2015-1133
Apple OS X <10.10.3 - Privilege Escalation
CVE-2015-1132
Apple OS X <10.10.3 - Privilege Escalation
Details
Vulnerabilities 12,634
Exploit Likelihood High