Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-354

CWE-354

Medium likelihood

Improper Validation of Integrity Check Value

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The product does not validate or incorrectly validates the integrity check values or "checksums" of a message. This may prevent it from detecting if the data has been modified or corrupted in transmission.

160 vulnerabilities with CWE-354

CVE-2022-22253 HIGH

Huawei EMUI - Improper Validation of Integrity Check Value in DFX Module

CVE-2021-37182 HIGH

Siemens SCALANCE XM408-4C/XM408-8C/XM416-4C/XR524-8C/XR526-8C <6.5 - Information Disclosure

CVE-2021-4148 MEDIUM

Linux Kernel < 5.14.16 - Denial of Service via Missing Sanity Check in block_invalidatepage

CVE-2021-3772 MEDIUM

Linux Kernel < 5.15.0 - Denial of Service via Spoofed SCTP Chunks

CVE-2021-41067 HIGH

Listary < 6 - Unauthenticated Arbitrary Code Execution via MITM Update Package Tampering

CVE-2021-41206 HIGH

TensorFlow 2.4.0-2.4.3, 2.6.0 - Missing Tensor Shape Validation Leading to Memory Corruption

CVE-2021-22276 MEDIUM

ABB System Access Point Firmware < 2.6.4 - Unauthenticated Firmware Integrity Check Bypass

CVE-2021-22442 HIGH

Huawei Smartphone - Info Disclosure

CVE-2021-25388 HIGH

Knox Core <SMR MAY-2021 Release 1 - Privilege Escalation

CVE-2021-31913 HIGH

JetBrains TeamCity <2020.2.3 - Open Redirect

CVE-2021-20709 HIGH

NEC Aterm WF1200CR/WG1200CR/WG2600HS Firmware - Authenticated OS Command Injection via Crafted Request

CVE-2021-20184 MEDIUM

Moodle <3.10.1, <3.9.4, <3.8.7 - Info Disclosure

CVE-2020-9210 MEDIUM

Huawei Myna Firmware - Insufficient Integrity Check

CVE-2020-14120 HIGH

MIUI - Privilege Escalation via Unchecked Third-Party Application Parameters

CVE-2020-4610 HIGH

IBM Security Secret Server - Code Injection

CVE-2020-26141 MEDIUM

ALFA Windows 10 driver <6.1316.1209 - Info Disclosure

CVE-2020-14009 MEDIUM

Proofpoint Enterprise Protection <8.16.4 - Info Disclosure

CVE-2020-9118 MEDIUM

Huawei Sound X AIS-BW80H-00 Firmware - Insufficient Integrity Check for Software Packages

CVE-2020-25758 HIGH

D-Link DSR-250 <3.17 - Code Injection

CVE-2020-5637 MEDIUM

Aterm SA3500G <3.5.9 - Code Injection

CVE-2020-5798 HIGH

inSync Client <6.8.0 - Privilege Escalation

CVE-2020-28656 MEDIUM

Volkswagen Polo 2019 Discover Media - Arbitrary Code Execution via Unsigned Metainfo File Parsing

CVE-2020-26896 HIGH

Lightning Network Daemon < 0.11.0 - Improper Validation of Integrity Check Value in Invoice Database

CVE-2020-26895 MEDIUM

LND <0.10.0-beta - Privilege Escalation

CVE-2020-25862 HIGH

Wireshark <3.2.7, <3.0.14, <2.6.21 - DoS

Previous Page 5 of 7 Next

Details

Vulnerabilities 160

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy