Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-354

CWE-354

Medium likelihood

Improper Validation of Integrity Check Value

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The product does not validate or incorrectly validates the integrity check values or "checksums" of a message. This may prevent it from detecting if the data has been modified or corrupted in transmission.

160 vulnerabilities with CWE-354

CVE-2023-31437 MEDIUM

systemd 253 - Log File Tampering via Sealed Log Manipulation

CVE-2023-33981 MEDIUM

Briar < 1.4.22 - Message Spoofing via Integrity Check Bypass

CVE-2023-28386 HIGH

Snap One OvrC Pro <7.2 - Code Execution

CVE-2023-30356 HIGH

Shenzen Tenda Technology IP Camera CP3 <V11.10.00.2211041355 - Code...

CVE-2023-23120 MEDIUM

TRENDnet TV-IP651WI <v1.07.01 - Code Injection

CVE-2023-23119 MEDIUM

Ubiquiti airFiber AF2X Radio <3.2.2 - Info Disclosure

CVE-2022-24404 MEDIUM

midnightblue tetra - Missing Cryptographic Integrity Check for Air-Interface Encrypted Traffic

CVE-2022-45142 HIGH

Heimdal - Improper Validation of Integrity Check Value in GSSAPI ArcFour

CVE-2022-45191 MEDIUM

Microchip RN4870 1.43 - Denial of Service via BLE Pair Confirm Message

CVE-2022-46402 MEDIUM

Microchip RN4870 <1.43 - Buffer Overflow

CVE-2022-36360 HIGH

Siemens LOGO! 8 BM Firmware <8.3 - Insufficient Firmware Update Authenticity Verification

CVE-2022-38956 MEDIUM

Netgear WPN824EXT Firmware < 1.1.1_1.1.9 - Firmware Downgrade via MITM Attack

CVE-2022-38955 HIGH

Netgear WPN824EXT WiFi Range Extender - MITM

CVE-2022-36174 HIGH

FreshService <2.11.0, <4.2.0, <3.3.0 - Info Disclosure

CVE-2022-39845 MEDIUM

Samsung Kies <2.6.4.22074 - Privilege Escalation

CVE-2022-39844 MEDIUM

Smart Switch PC <4.3.22083 - Privilege Escalation

CVE-2022-29549 HIGH

Qualys Cloud Agent for Linux < 2.5.548.2 - Privilege Escalation via Unchecked Program Execution

CVE-2022-35961 HIGH

OpenZeppelin Contracts - Signature Malleability

CVE-2022-30316 MEDIUM

Honeywell Experion PKS Safety Manager 5.02 - Unauthenticated Firmware Manipulation via Insecure Checksum Validation

CVE-2022-33711 MEDIUM

Samsung USB Driver <1.7.56.0 - Path Traversal

CVE-2022-21757 HIGH

Android - Denial of Service via Missing Count Check in WIFI Firmware

CVE-2022-29898 CRITICAL

PHOENIX CONTACT RAD-ISM-900-EN-* - RCE

CVE-2022-29173 HIGH

go-tuf < 0.3.0 - Improper Validation of Integrity Check Value

CVE-2022-25946 HIGH

F5 BIG-IP Advanced WAF, ASM, and GC <9.0 - Auth Bypass

CVE-2022-22781 HIGH

Zoom Client for Meetings <5.9.6 - Privilege Escalation

Previous Page 4 of 7 Next

Details

Vulnerabilities 160

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy