Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,462 vulnerabilities with CWE-20

CVE-2024-3173 HIGH

Google Chrome <120.0.6099.62 - Privilege Escalation

CVE-2024-3172 HIGH

Google Chrome < 121.0.6167.85 - Remote Code Execution via DevTools Insufficient Data Validation

CVE-2024-6089 HIGH

Rockwell Automation 5015-AENFTXT Firmware - Denial of Service via Malformed PTP Packet

CVE-2024-39827 MEDIUM

Zoom Workplace Desktop < 6.0.10 - Authenticated Denial of Service via Installer Input Validation

CVE-2024-27241 MEDIUM

Zoom Meeting SDK < 6.0.0 - Authenticated Denial of Service via Network Input

CVE-2024-27240 HIGH

Zoom Apps for Windows - Privilege Escalation

CVE-2024-40520 HIGH

SeaCMS 12.9 - Remote Code Execution

CVE-2024-40518 HIGH

SeaCMS 12.9 - Authenticated Remote Code Execution via admin_weixin.php

CVE-2024-5681 HIGH

EcoStruxure Foxboro DCS Control Core Services < 9.8 - Local DoS & Privilege Escalation via Foxboro.sys IOCTL

CVE-2024-39513 MEDIUM

Juniper Junos OS Evolved DoS via Clear Command (Auth Required)

CVE-2024-39511 MEDIUM

Junos OS Multiple Versions - Authenticated DoS via dot1x CLI Command

CVE-2024-5913 MEDIUM

Palo Alto Networks PAN-OS 10.1.0-10.1.13 - Privilege Escalation via Physical File System Tampering

CVE-2024-31310 HIGH

Android - Local Privilege Escalation via Autofill Service Settings Manipulation

CVE-2024-27386 MEDIUM

Samsung Mobile Processor Exynos 1380-1480 - Heap Overwrite

CVE-2024-27385 MEDIUM

Samsung Mobile Processor Exynos 1380-1480 - Heap Overwrite

CVE-2024-38105 MEDIUM

Windows Layer-2 Bridge Network Driver - Denial of Service

CVE-2024-38095 HIGH

.NET 8.0.0-8.0.6 - Denial of Service

CVE-2024-38055 MEDIUM

Microsoft Windows Codecs Library - Info Disclosure

CVE-2024-38052 HIGH

Kernel Streaming WOW Thunk Service Driver - Privilege Escalation

CVE-2024-38047 HIGH

Windows 10 1607-22H2, Windows 11 21H2-23H2, Windows Server 2016-2022 - PowerShell Elevation of Privilege

CVE-2024-38043 HIGH

Windows 10 1607-22H2, Windows 11 21H2-23H2, Windows Server 2016-2022 - PowerShell Elevation of Privilege

CVE-2024-38033 HIGH

Windows 10 1507-22H2, Windows 11 21H2-23H2, Windows Server 2012-2022 - Elevation of Privilege via PowerShell

CVE-2024-38021 HIGH

Microsoft Outlook - Remote Code Execution

CVE-2024-22271 HIGH

Spring Cloud Function <4.1.2, <4.0.8 - DoS

CVE-2024-35227 HIGH

Discourse < 3.2.3 - Denial of Service via Malicious Onebox URL

Previous Page 70 of 499 Next

Details

Vulnerabilities 12,462

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy