The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
12,638 vulnerabilities with CWE-20
CVE-2013-5543
Cisco IOS XE 3.4-3.4.2S and 3.5-3.5.1S - Denial of Service via Malformed ICMP Error Packets
CVE-2013-5593
Firefox < 25.0 and ESR 24.x < 24.1 - Address Bar Spoofing via SELECT Element
CVE-2013-5741
Tri Nano-10 PLC Firmware <= r81 - Denial of Service via MODBUS Length Field
CVE-2013-4402
GnuPG 1.4.x < 1.4.15 and 2.0.x < 2.0.22 - Denial of Service via Crafted OpenPGP Message
CVE-2013-2186
Redhat Jboss Enterprise Brms Platform - Improper Input Validation
CVE-2013-6016
F5 BIG-IP - Denial of Service via TCP Connection State Handling
CVE-2013-6283
VLC Media Player < 2.0.8 - Denial of Service and Possible Remote Code Execution via Long URL in M3U File
CVE-2013-5537
Cisco Web/Email/Content Security Appliances DoS via TCP Flood
CVE-2013-5536
Cisco Secure Access Control System - Denial of Service via Crafted Packet Flood
CVE-2013-5192
macOS < 10.9 - Denial of Service via USB Hub Controller Port Request
CVE-2013-5175
Apple Mac OS X <10.9 - Info Disclosure/DoS
CVE-2013-5168
macOS < 10.9 - Remote Code Execution via Console Log URL
CVE-2013-4390
Apache Sling Auth Core < 1.1.4 - Open Redirect via Resource Parameter
CVE-2013-4373
Red Hat JBoss Operations Network 3.1.2 - Arbitrary File Upload via Temporary Directory
CVE-2013-5550
Cisco Unified Computing System - Denial of Service via Fabric-Interconnect Command Parameters
CVE-2013-4450
Nodejs - Improper Input Validation
CVE-2013-5970
VMware ESXi 4.0-5.0 and ESX 4.0-4.1 - Denial of Service via Modified Management Traffic
CVE-2013-6170
Juniper Junos 10.0-10.0S28 10.4-10.4R7 11.1-11.1R5 11.2-11.2R2 11.4-11.4R1 - Denial of Service via PIM Join Requests
CVE-2013-6015
Juniper Junos DoS via TCP Packet Sequence
CVE-2013-0500
IBM Storwize V7000 Unified <1.4.2.0 - Info Disclosure
CVE-2013-5539
Cisco Identity Services Engine - Authenticated Arbitrary File Upload via Upload Dialog
CVE-2013-5529
Cisco WebEx Meeting Server - Denial of Service via Deployment Module Passphrase Validation
CVE-2013-5394
IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, 8.6.0 - Authenticated Phishing Attack via Monitoring Console
CVE-2013-5508
Cisco Adaptive Security Appliance Software 7.x-9.1.x - Denial of Service via Crafted Segmented TNS Packets
CVE-2013-2787
Alstom e-terracontrol 3.5-3.7 - Denial of Service via Crafted DNP3 Packets
Details
Vulnerabilities
12,638
Exploit Likelihood
High