CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,636 vulnerabilities with CWE-20
CVE-2014-3273
Cisco IOS - Denial of Service via Malformed LLDP Packet
CVE-2014-3271
Cisco IOS XR - Denial of Service via Malformed DHCPv6 Packet
CVE-2014-3270
Cisco IOS XR - Denial of Service via Malformed DHCPv6 Packet
CVE-2014-3269
Cisco IOS XE 3.5E - Authenticated Denial of Service via SNMP Polling
CVE-2014-3268
Cisco IOS 15.2(4)M4 - Denial of Service via Crafted RTCP Packets
CVE-2014-2195
Cisco AsyncOS - Privilege Escalation
CVE-2014-2194
Cisco Unified Web and E-mail Interaction Manager 9.0(2) - SSRF
CVE-2014-2193
Cisco Unified Web and E-Mail Interaction Manager - XSS
CVE-2014-3717
Xen 4.4.x - Denial of Service via 64-bit ARM Guest Kernel Load Address Validation
CVE-2014-3716
Xen 4.4.x - Denial of Service via DTB Header Alignment Check Bypass
CVE-2014-3714
Xen 4.4.x - Denial of Service via ARM Image Loading Buffer Overflow
CVE-2014-3730
Canonical Ubuntu Linux < 1.4.13 - Improper Input Validation
CVE-2014-3263
Cisco IOS 15.3(3)M - Denial of Service via HTTPS Packet Processing
CVE-2014-3262
Cisco IOS < 15.3(3)S and IOS XE - Denial of Service via Malformed LISP ITR Control Messages
CVE-2014-0256
Windows Server 2008 SP2/R2 SP1 and Server 2012 Gold - Denial of Service via Crafted iSCSI Packets
CVE-2014-0255
Windows Server 2008 and 2012 - Denial of Service via Crafted iSCSI Packets
CVE-2014-1991
NTT DATA INTRAMART intra-mart <7.2 - Open Redirect
CVE-2014-3214
ISC BIND 9.10.0 - Denial of Service via Prefetch DNS Query Handling
CVE-2014-0684
Cisco NX-OS 6.2(2) on Nexus 7000 - Denial of Service via Crafted sed Input
CVE-2014-2175
Cisco TelePresence TC and TE Software - Denial of Service via Crafted H.225 Packets
CVE-2014-2169
Cisco TelePresence TC Software <6.2.0 - Command Injection
CVE-2014-2167
Cisco TelePresence TC Software 4.x-5.x and TE Software 4.x-6.0 - Denial of Service via Crafted SIP Packets
CVE-2014-2166
Cisco TelePresence TC/TE Software 4.x - DoS
CVE-2014-2165
Cisco TelePresence TC and TE Software - Denial of Service via Crafted SIP Packets
CVE-2014-2164
Cisco TelePresence TC and TE Software - Denial of Service via Crafted SIP Packets
Details
Vulnerabilities 12,636
Exploit Likelihood High