Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3267

3267 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-0422 Authenticated Remote Code Execution via ScriptVar — bestinformed Web 8.8 -2025-02-18
CVE-2025-0178 WatchGaurd Firebox Host Header Injection Vulnerability — Fireware OS 5.4 -2025-02-14
CVE-2025-0814 Schneider Electric Enerlin 输入验证错误漏洞 — Enerlin’X IFE interface (LV434001) 5.3 Medium2025-02-13
CVE-2025-0815 Schneider Electric Enerlin 输入验证错误漏洞 — Enerlin’X IFE interface (LV434001) 6.5 Medium2025-02-13
CVE-2025-0816 Schneider Electric Enerlin 输入验证错误漏洞 — Enerlin’X IFE interface (LV434001) 6.5 Medium2025-02-13
CVE-2024-10083 Schneider Electric EcoStruxure Control Expert、EcoStruxure Process Expert和OPC Factory Server 输入验证错误漏洞 — Uni-Telway driver 5.5 Medium2025-02-13
CVE-2025-26358 Q-Free MAXTIME Suite 输入验证错误漏洞 — MaxTime 5.5 Medium2025-02-12
CVE-2024-0112 NVIDIA Jetson AGX Orin和NVIDIA IGX Orin 输入验证错误漏洞 — Jetson AGX Orin series (including Jetson Orin NX series, Jetson Orin Nano series) 7.5 High2025-02-11
CVE-2024-0179 AMD System Management Mode 安全漏洞 — AMD Ryzen™ 3000 Series Desktop Processors 8.2 High2025-02-11
CVE-2024-21925 AMD System Management Mode 安全漏洞 — AMD EPYC™ 7001 Processors 8.2 High2025-02-11
CVE-2025-21350 Windows Kerberos Denial of Service Vulnerability — Windows 10 Version 1507 5.9 Medium2025-02-11
CVE-2025-21194 Microsoft Surface Security Feature Bypass Vulnerability — Microsoft Surface Go 7.1 High2025-02-11
CVE-2025-21375 Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability — Windows 10 Version 1507 7.8 High2025-02-11
CVE-2025-21126 InDesign Desktop | Improper Input Validation (CWE-20) — InDesign Desktop 5.5 Medium2025-02-11
CVE-2024-33659 BiosGuard Buffer Overflow and TOCTOU Vulnerability — AptioV 7.8 -2025-02-11
CVE-2025-24499 Siemens SCALANCE Series 输入验证错误漏洞 — SCALANCE WAB762-1 7.2 High2025-02-11
CVE-2025-24970 SslHandler doesn't correctly validate packets which can lead to native crash when using native SSLEngine — netty 7.5 High2025-02-10
CVE-2024-55630 DOM Clobbering leads to temporary DOS in the note viewer in Joplin — joplin 3.3 Low2025-02-07
CVE-2024-57960 Huawei HarmonyOS 安全漏洞 — HarmonyOS 7.7 High2025-02-06
CVE-2024-56135 Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS Command Injection. — LoadMaster 8.4 High2025-02-05
CVE-2024-56134 Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS Command Injection. — LoadMaster 8.4 High2025-02-05
CVE-2024-56133 Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS Command Injection. — LoadMaster 8.4 High2025-02-05
CVE-2024-56132 Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS Command Injection. — LoadMaster 8.4 High2025-02-05
CVE-2024-56131 Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS Command Injection. — LoadMaster 8.4 High2025-02-05
CVE-2025-24319 BIG-IP Next Central Manager vulnerability — BIG-IP Next Central Manager 6.5 Medium2025-02-05
CVE-2025-20184 Cisco Secure Email and Web Manager and Secure Web Appliance Command Injection Vulnerability — Cisco Secure Email 6.5 Medium2025-02-05
CVE-2025-20183 Cisco Secure Web Appliance Range Request Bypass Vulnerability — Cisco Secure Web Appliance 5.8 Medium2025-02-05
CVE-2025-1022 Spatie Browsershot 安全漏洞 — spatie/browsershot 8.2 High2025-02-05
CVE-2025-1026 Spatie Browsershot 安全漏洞 — spatie/browsershot 8.6 High2025-02-05
CVE-2024-38420 Improper Input Validation in Hypervisor — Snapdragon 8.8 High2025-02-03

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3267 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.