Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,451 vulnerabilities with CWE-20

CVE-2024-40458 HIGH

Ocuco Innovation Tracking.exe <2.10.24.51 - Privilege Escalation

CVE-2024-25010 HIGH

Ericsson RAN Compute and Site Controller 6610 - RCE

CVE-2024-53827 HIGH

Ericsson Packet Core Controller - DoS

CVE-2024-52880 HIGH

InsydeH2O Kernel 5.2-5.7 - Improper Input Validation in VariableRuntimeDxe SecureBootHandler

CVE-2024-49845 HIGH

Qualcomm FastConnect and AR8035 Firmware - Memory Corruption in FRS UDS Generation

CVE-2024-49844 HIGH

Qualcomm FastConnect and PlayReady Trusted Application - Memory Corruption

CVE-2024-45579 HIGH

Qualcomm FastConnect 6900 Firmware - Memory Corruption via Camera Kernel Driver IOCTL Calls

CVE-2024-45577 HIGH

Qualcomm FastConnect 6900 Firmware - Memory Corruption via Camera Kernel Driver IOCTL Calls

CVE-2024-13943 HIGH

Tesla Model S Firmware < 2024.8 - Sandbox Escape via QCMAP_ConnectionManager LAN Address Assignment

CVE-2024-37917 HIGH

Pexip Infinity < 35.0 - Denial of Service via Crafted Signalling Message

CVE-2024-39780 HIGH

Robot Operating System Noetic and earlier - Remote Code Execution via YAML Deserialization in dynparam

CVE-2024-13666 MEDIUM

Fluent Forms <5.2.12 - Open Redirect

CVE-2024-9042 MEDIUM

Kubernetes Kubelet < 1.29.13, 1.30.0-1.30.7, 1.31.0-1.31.3, 1.32.0 - Improper Input Validation

CVE-2024-26290 HIGH

Avid NEXIS <2024.6.0 - Code Execution

CVE-2024-38311 MEDIUM

Apache Traffic Server <9.2.8 - <9.2.11, <10.0.3 - Info Disclosure

CVE-2024-58044 HIGH

Huawei EMUI and HarmonyOS - Permission Verification Bypass in Notification Module

CVE-2024-53031 HIGH

Qualcomm Firmware - Memory Corruption via Guest VM Buffer Type Value

CVE-2024-53030 HIGH

Qualcomm MSM8996AU and Related Firmware - Memory Corruption via FE Driver Input Message

CVE-2024-53029 HIGH

Qualcomm Firmware - Memory Corruption via Guest VM Buffer Read

CVE-2024-53022 HIGH

Qualcomm Multiple Firmware - Memory Corruption via Primary-Guest VM Communication

CVE-2024-53012 HIGH

Qualcomm QCA6595 Firmware - Memory Corruption in Clock Device

CVE-2024-36047 CRITICAL

Infoblox NIOS <9.0.3 - Info Disclosure

CVE-2024-13798 MEDIUM

Post Grid and ComboBlocks < 2.3.5 - Unauthenticated Order Creation via Insufficient Form Field Verification

CVE-2024-4028 LOW

Keycloak - Stored Cross-Site Scripting via Admin Console Permission Payload

CVE-2024-13691 MEDIUM

Uncode < 2.9.1.7 - Authenticated Arbitrary File Read via uncode_recordMedia Function

Previous Page 57 of 499 Next

Details

Vulnerabilities 12,451

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy