Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3267

3267 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-26253 Windows rndismp6.sys Remote Code Execution Vulnerability — Windows 10 Version 1809 6.8 Medium2024-04-09
CVE-2024-31867 Apache Zeppelin: LDAP search filter query Injection Vulnerability — Apache Zeppelin 9.8AICriticalAI2024-04-09
CVE-2024-31865 Apache Zeppelin: Cron arbitrary user impersonation with improper privileges — Apache Zeppelin 9.8AICriticalAI2024-04-09
CVE-2024-31862 Apache Zeppelin: Denial of service with invalid notebook name — Apache Zeppelin 9.1AICriticalAI2024-04-09
CVE-2022-47894 Apache Zeppelin SAP: connecting to a malicious SAP server allowed it to perform XXE — Apache Zeppelin SAP 7.5AIHighAI2024-04-09
CVE-2024-27896 Huawei HarmonyOS 安全漏洞 — HarmonyOS 7.5AIHighAI2024-04-08
CVE-2023-52385 Huawei HarmonyOS 安全漏洞 — HarmonyOS 7.5AIHighAI2024-04-08
CVE-2023-52552 Huawei HarmonyOS 安全漏洞 — HarmonyOS 7.5AIHighAI2024-04-08
CVE-2024-27912 Lenovo Printer 安全漏洞 — Printers 7.5 High2024-04-05
CVE-2024-27909 Lenovo Printer 安全漏洞 — Printers 4.9 Medium2024-04-05
CVE-2024-0080 NVIDIA nvTIFF Library 安全漏洞 — nvTIFF Library 2.8 Low2024-04-05
CVE-2023-31028 NVIDIA nvJPEG2000 安全漏洞 — nvJPEG2000 Library 2.8 Low2024-04-05
CVE-2024-29008 Apache CloudStack: The extraconfig feature can be abused to load hypervisor resources on a VM instance — Apache CloudStack 9.6 -2024-04-04
CVE-2024-2689 Denial of Service if invalid UTF-8 sent — Temporal Server 4.4 Medium2024-04-03
CVE-2024-20334 Cisco TelePresence Management Suite 安全漏洞 — Cisco TelePresence Management Suite (TMS) 5.5 Medium2024-04-03
CVE-2024-27201 Open Automation Software OAS Platform 安全漏洞 — OAS Platform 4.9 Medium2024-04-03
CVE-2024-22360 IBM Db2 for Linux, UNIX and Windows denial of service — Db2 for Linux, UNIX and Windows 5.3 Medium2024-04-03
CVE-2023-52296 IBM Db2 for Linux, UNIX and Windows denial of service — Db2 for Linux, UNIX and Windows 5.3 Medium2024-04-03
CVE-2024-27254 IBM Db2 for Linux, UNIX and Windows denial of service — Db2 for Linux, UNIX and Windows 5.3 Medium2024-04-03
CVE-2024-25046 IBM Db2 for Linux, UNIX and Windows denial of service — Db2 for Linux, UNIX and Windows 5.3 Medium2024-04-03
CVE-2024-28226 Fs has an improper input validation vulnerability — OpenHarmony 8.1 High2024-04-02
CVE-2024-29074 Telephony has an improper input validation vulnerability — OpenHarmony 6.5 Medium2024-04-02
CVE-2024-21473 Improper Input Validation in WIN SON — Snapdragon 9.8 Critical2024-04-01
CVE-2024-21453 Improper Input Validation in Automotive Telematics — Snapdragon 7.5 High2024-04-01
CVE-2024-21452 Improper Input Validation in Automotive Telematics — Snapdragon 7.3 High2024-04-01
CVE-2023-33100 Improper input validation in Multi-Mode Call Processor — Snapdragon 7.5 High2024-04-01
CVE-2023-33099 Improper Input Validation in Multi-Mode Call Processor — Snapdragon 7.5 High2024-04-01
CVE-2024-20271 Cisco Access Point 安全漏洞 — Cisco Aironet Access Point Software 8.6 High2024-03-27
CVE-2024-29946 Risky command safeguards bypass in Dashboard Examples Hub — Splunk Enterprise 8.1 High2024-03-27
CVE-2024-23482 ZScalerService Local Privilege Escalation — Client Connector 7.0 High2024-03-26

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3267 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.