Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-20

CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,467 vulnerabilities with CWE-20

CVE-2023-4753 LOW

OpenHarmony < 3.2.1 - Denial of Service via System Call Function Input

CVE-2023-5104 MEDIUM

nocodb/nocodb <0.96.0 - Info Disclosure

CVE-2023-31013 MEDIUM

NVIDIA DGX H100 BMC - Privilege Escalation/Info Disclosure

CVE-2023-31012 MEDIUM

NVIDIA DGX H100 BMC - Privilege Escalation/Info Disclosure

CVE-2023-31011 MEDIUM

NVIDIA DGX H100 BMC - Privilege Escalation/Info Disclosure

CVE-2023-31010 MEDIUM

NVIDIA DGX H100 BMC - Privilege Escalation

CVE-2023-31009 HIGH

NVIDIA DGX H100 BMC < 23.08.18 - Improper Input Validation in REST Service

CVE-2023-31008 HIGH

NVIDIA DGX H100 Firmware < 23.08.18 - Improper Input Validation in IPMI

CVE-2023-25534 MEDIUM

NVIDIA DGX H100 BMC < 23.08.18 - Improper Input Validation in IPMI

CVE-2023-25533 HIGH

NVIDIA DGX H100 Firmware < 23.08.18 - Improper Input Validation in Web UI

CVE-2023-25530 HIGH

NVIDIA DGX H100 BMC < 23.08.18 - Improper Input Validation in KVM Service

CVE-2023-32649 HIGH

Nozomi Networks CMC and Guardian 22.6.0-22.6.2 - Unauthenticated Denial of Service via Malformed Network Packets

CVE-2023-4680 MEDIUM

HashiCorp Vault <1.14.3-1.13.7-1.12.11 - Info Disclosure

CVE-2023-42503 MEDIUM

Apache Commons Compress 1.22-1.23.0 - Denial of Service via Malformed TAR File Modification Time Headers

CVE-2023-3710 CRITICAL

Honeywell PM43 Firmware < P10.19.050004 - Command Injection via Printer Web Page Modules

CVE-2023-39208 MEDIUM

Zoom Desktop Client for Linux <5.15.10 - DoS

CVE-2023-38156 HIGH

Azure HDInsight - JDBC Injection Elevation of Privilege via Apache Ambari

CVE-2023-36767 MEDIUM

Microsoft Office - Privilege Escalation

CVE-2023-36762 HIGH

Microsoft Word - Remote Code Execution

CVE-2023-36761 MEDIUM KEV

Microsoft Word - Information Disclosure via Improper Input Validation

CVE-2023-29332 HIGH

Microsoft Azure Kubernetes Service - Privilege Escalation

CVE-2023-2071 CRITICAL

Rockwell Automation FactoryTalk View < 13.0 - Unauthenticated Remote Code Execution via CIP Class Library Upload

CVE-2023-41336 MEDIUM

Symfony ux-autocomplete <2.11.2 - Info Disclosure

CVE-2023-41316 MEDIUM

Tolgee < 3.29.2 - Cross-Site Scripting via Org Name Field in Invitation Emails

CVE-2023-41061 HIGH KEV

watchOS <9.6.2-iPadOS <16.6.1 - RCE

Previous Page 95 of 499 Next

Details

Vulnerabilities 12,467

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy