The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
12,636 vulnerabilities with CWE-20
CVE-2014-3337
Cisco Unified Communications Manager < 8.6(2) - Authenticated Denial of Service via Crafted SIP Message
CVE-2014-3327
Cisco IOS 12.2, 15.0-15.2, 15.4 & IOS XE <3.5.3E DoS via IPv4 Packet
CVE-2014-2357
SUBNET SubSTATION Server <2.12 HF18808 - DoS
CVE-2014-5177
Redhat Enterprise Virtualization - Improper Input Validation
CVE-2014-0179
libvirt 0.7.5-1.2.4 - Denial of Service via XML External Entity in virConnectCompareCPU and virConnectBaselineCPU
CVE-2014-3009
IBM InfoSphere Master Data Management - Authenticated Phishing Attack via FRAME Element Handling
CVE-2014-4971
Microsoft Windows XP SP3 - Privilege Escalation
CVE-2014-2966
Resin Pro < 4.0.40 - XSS Protection Bypass via ISO-8859-1 Unicode Transformation
CVE-2014-3322
Cisco IOS XR < 4.3.2 - Denial of Service via Malformed IPv4 or IPv6 Packet
CVE-2014-2360
OleumTech WIO DH2 Wireless Gateway RCE via High Battery Voltage Packet
CVE-2014-4503
sgminer <4.2.2-cgminer 3.3.0-4.0.1 - DoS
CVE-2014-5019
Drupal 6.x < 6.32 and 7.x < 7.29 - Denial of Service via HTTP Host Header
CVE-2014-3159
Google Chrome < 36.0.1985.122 - URL Spoofing via WebContentsDelegateAndroid
CVE-2014-0117
Apache HTTP Server < 2.4.10 - Denial of Service via mod_proxy HTTP Connection Header
CVE-2014-3533
Debian Linux - Improper Input Validation
CVE-2014-3532
dbus 1.3.0-1.6.21 and 1.8.0-1.8.5 - Denial of Service via File Descriptor Message Handling
CVE-2014-0970
IBM InfoSphere Master Data Management Collaboration Server 10.x-11.x - Authenticated Link Injection in GDS Component
CVE-2014-3321
Cisco IOS XR < 4.3.4 - Denial of Service via Crafted MPLS Packets
CVE-2014-3306
Cisco DPC and EPC Series - Remote Code Execution via Crafted HTTP Request
CVE-2014-3822
Juniper Junos DoS via IPv6 to IPv4 Translation
CVE-2014-3819
Juniper Junos 11.4-12.1X47 - Denial of Service via Malformed PIM Packet
CVE-2014-3817
Juniper Junos 11.4-11.4R12, 12.1X44-D32, 12.1X45-D25, 12.1X46-D20, 12.1X47-D10 SRX DoS via Crafted Packet
CVE-2014-3815
Juniper Junos 12.1X46 < D20 and 12.1X47 < D10 - Denial of Service via Crafted SIP Packet
CVE-2014-3318
Cisco Unified Communications Manager - Authenticated Directory Traversal via DNA viewfilecontents.do
CVE-2014-3316
Cisco Unified Communications Manager - Authenticated File Upload Restriction Bypass via Dialed Number Analyzer Parameter
Details
Vulnerabilities
12,636
Exploit Likelihood
High