CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,456 vulnerabilities with CWE-20
CVE-2024-45236 HIGH
nicmx fort-validator < 1.6.3 - Denial of Service via Empty Signed Attributes Field
CVSS 7.5
CVE-2024-42531 CRITICAL
Ezviz Internet PT Camera CS-CV246 D15655150 - SSRF
CVSS 9.8
CVE-2024-41849 MEDIUM
Adobe Experience Manager < 6.5.21 and < 2024.5 - Security Feature Bypass via Improper Input Validation
CVSS 4.1
CVE-2024-45169 CRITICAL
UCI IDOL 2 <2.12 - DoS/Code Execution
CVSS 9.8
CVE-2024-45167 CRITICAL
UCI IDOL2 < 2.12 - Denial of Service via XmlMessage Document
CVSS 9.8
CVE-2024-7980 HIGH
Google Chrome <128.0.6613.84 - Privilege Escalation
CVSS 7.8
CVE-2024-7977 HIGH
Google Chrome < 128.0.6613.84 - Privilege Escalation via Installer File Validation
CVSS 7.8
CVE-2024-7974 HIGH
Google Chrome < 128.0.6613.84 - Heap Corruption via V8 API
CVSS 8.8
CVE-2024-33657 HIGH
AMI Aptio V 5.0-5.35 - Authenticated Arbitrary Code Execution and Denial of Service via SMM Vulnerability
CVSS 7.8
CVE-2024-25009 MEDIUM
Ericsson Packet Core Controller - DoS
CVSS 6.5
CVE-2024-7646 HIGH
Kubernetes ingress-nginx - Unauthenticated Command Injection via Ingress Annotation Bypass
CVSS 8.8
CVE-2024-25008 MEDIUM
Ericsson RAN Compute and Site Controller 6610 - RCE
CVSS 6.8
CVE-2024-43373 HIGH
webcrack < 2.14.1 - Arbitrary File Write via Unpack Bundles Feature
CVSS 7.7
CVE-2024-7515 HIGH
Rockwell Automation CompactLogix/ControlLogix/GuardLogix 5380/5580 DoS via Malformed PTP Packet
CVSS 7.5
CVE-2024-7507 MEDIUM
Rockwellautomation Compactlogix 5380 ... - Improper Input Validation
CVSS 6.5
CVE-2024-41856 HIGH
Adobe Illustrator < 27.9.5 - Arbitrary Code Execution via Malicious File
CVSS 7.8
CVE-2024-34118 MEDIUM
Adobe Illustrator < 27.9.5 - Denial of Service via Malicious File
CVSS 5.5
CVE-2024-34163 HIGH
Intel(R) NUC - Privilege Escalation
CVSS 7.5
CVE-2024-28947 HIGH
Intel Server Board S2600ST Firmware < 02.01.0017 - Privilege Escalation via Kernel Mode Driver Input Validation
CVSS 8.2
CVE-2024-24973 LOW
Intel(R) Distribution for GDB <2024.0.1 - DoS
CVSS 2.2
CVE-2024-21810 HIGH
Linux kernel mode driver <28.3 - Privilege Escalation
CVSS 8.8
CVE-2024-38483 MEDIUM
Dell BIOS - Authenticated Remote Code Execution via Improper Input Validation
CVSS 5.8
CVE-2024-37373 HIGH
Ivanti Avalanche 6.3.1 - Authenticated Remote Code Execution via Central Filestore Input Validation
CVSS 7.2
CVE-2024-38201 HIGH
Azure Stack Hub - Privilege Escalation
CVSS 7.0
CVE-2024-38196 HIGH
Windows Common Log File System Driver - Privilege Escalation
CVSS 7.8
Details
Vulnerabilities 12,456
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits