Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,451 vulnerabilities with CWE-20

CVE-2024-20464 HIGH

Cisco IOS XE - Unauthenticated Denial of Service via Crafted PIMv2 Packet

CVE-2024-7023 HIGH

Google Chrome < 128.0.6537.0 - Privilege Escalation via Updater Data Validation

CVE-2024-46946 CRITICAL

langchain-experimental 0.1.17-0.3.0 - Remote Code Execution via LLMSymbolicMathChain Sympy Sympify

CVE-2024-37406 HIGH

Brave Android <1.67.116 - Info Disclosure

CVE-2024-45601 HIGH

Mesop >=0.9.0 <0.12.4 - Unauthorized File Access via Insufficient Input Validation

CVE-2024-8889 CRITICAL

CIRCUTOR TCP2RS+ 1.3b - Unauthenticated Configuration Modification via UDP Port 2000

CVE-2024-45798 CRITICAL

arduino-esp32 - Poisoned Pipeline Execution via tests_results.yml Workflow

CVE-2024-45612 MEDIUM

Contao 4.13.0-4.13.48 - Insert Tag Injection via Canonical URL

CVE-2024-45537 MEDIUM

Apache Druid < 30.0.1 - Authenticated JDBC Property Injection via MySQL Connection String

CVE-2024-34545 MEDIUM

Intel(R) RAID Web Console - Info Disclosure

CVE-2024-21871 HIGH

Intel(R) Processors - Privilege Escalation

CVE-2024-21829 HIGH

Intel(R) Processors - Privilege Escalation

CVE-2024-21781 HIGH

Intel(R) Processors - Info Disclosure/DoS

CVE-2024-44094 HIGH

Android - Memory Corruption via Improper Input Validation in ppmp_protect_mfcfw_buf

CVE-2024-6077 HIGH

Rockwell Automation CompactLogix 5380 Firmware - Denial of Service via CIP Security Object

CVE-2024-6658 HIGH

LoadMaster <7.2.60.0 - OS Command Injection

CVE-2024-45825 HIGH

Rockwell Automation 5015-U8IHFT Firmware - Denial of Service via Malformed CIP Packet

CVE-2024-20406 HIGH

Cisco IOS XR 6.8.1-6.9.9 - Unauthenticated Denial of Service via IS-IS Packet Input Validation

CVE-2024-43455 HIGH

Windows Server 2008, 2012, 2016, 2019, 2022, 2022 23H2 - Spoofing via Remote Desktop Licensing Service

CVE-2024-38245 HIGH

Kernel Streaming Service Driver - Privilege Escalation

CVE-2024-38244 HIGH

Kernel Streaming Service Driver - Privilege Escalation

CVE-2024-38243 HIGH

Kernel Streaming Service Driver - Privilege Escalation

CVE-2024-38241 HIGH

Kernel Streaming Service Driver - Privilege Escalation

CVE-2024-38234 MEDIUM

Windows 10 1507-22H2 and Windows 11 21H2-23H2 - Denial of Service in Networking Component

CVE-2024-38230 MEDIUM

Windows Standards-Based Storage Management Service - DoS

Previous Page 65 of 499 Next

Details

Vulnerabilities 12,451

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy