The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
12,636 vulnerabilities with CWE-20
CVE-2014-2163
Cisco TelePresence TC Software 4.x-5.x and TE Software 4.x - Denial of Service via Crafted SIP Packets
CVE-2014-2162
Cisco TelePresence TC Software 4.x-5.x and TE Software 4.x-6.0 - Denial of Service via Crafted SIP Packets
CVE-2014-2161
Cisco TelePresence System MXP - DoS
CVE-2014-2160
Cisco TelePresence System MXP - DoS
CVE-2014-2159
Cisco TelePresence System MXP - DoS
CVE-2014-2158
Cisco TelePresence System MXP Series Software <F9.3.1 - DoS
CVE-2014-2157
Cisco TelePresence System MXP Series Software <F9.3.1 - DoS
CVE-2014-2156
Cisco TelePresence System MXP Series Software <F9.3.1 - DoS
CVE-2014-0114
Apache Commons BeanUtils <1.9.2 - RCE
CVE-2014-2184
Cisco Unified Communications Manager - Info Disclosure
CVE-2014-2183
Cisco IOS XE < 3.10.2s - Authenticated Denial of Service via Malformed L2TP Packet
CVE-2014-2182
Cisco Adaptive Security Appliance Software - Denial of Service via Crafted DHCPv6 Packet
CVE-2014-2180
Cisco Unified Contact Center Express - Path Traversal
CVE-2014-2986
Xen 4.4.x - Denial of Service via vgic_distr_mmio_write NULL Pointer Dereference
CVE-2014-2980
GNUstep Base < 1.24.6 - Denial of Service via Invalid Request Handling
CVE-2014-0079
Zarafa < 6.20 - Denial of Service via NULL Password Handling
CVE-2014-0037
Zarafa < 7.1.8 beta2 - Denial of Service via NULL Username in ValidateUserLogon
CVE-2014-2285
net-snmp < 5.7.3 - Denial of Service via Empty Community String in SNMP Trap
CVE-2014-0162
OpenStack Glance <2013.2.4, <icehouse-rc2 - Command Injection
CVE-2014-1733
Seccomp-BPF <34.0.1847.131-34.0.1847.132 - RCE
CVE-2014-2855
rsync < 3.1.0 - Denial of Service via Nonexistent User in Secrets File
CVE-2014-2554
OTRS <3.1.21-3.3.6 - CSRF
CVE-2014-1316
Apple macOS X < 10.9.2 - Denial of Service via ASN.1 Data in Kerberos 5 Protocol
CVE-2014-1318
macOS <= 10.9.2 - Remote Code Execution via Intel Graphics Driver Pointer Validation
CVE-2014-2899
CyaSSL < 2.9.4 - Denial of Service via NULL Pointer Dereference
Details
Vulnerabilities
12,636
Exploit Likelihood
High