Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3267

3267 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-40687 IBM Db2 denial of service — Db2 for Linux, UNIX and Windows 5.3 Medium2023-12-04
CVE-2023-38727 IBM Db2 denial of service — Db2 for Linux, UNIX and Windows 5.3 Medium2023-12-04
CVE-2023-47701 IBM Db2 denial of service — Db2 for Linux, UNIX and Windows 6.5 Medium2023-12-04
CVE-2023-46167 IBM Db2 denial of service — Db2 for Linux, UNIX and Windows 5.9 Medium2023-12-04
CVE-2023-45178 IBM Db2 denial of service — Db2 for Linux, UNIX and Windows 6.5 Medium2023-12-03
CVE-2023-40699 IBM InfoSphere Information Server denial of service — InfoSphere Information Server 7.5 High2023-12-01
CVE-2023-2267 Improper input validation could lead to reflection injection attacks — SEL-411L 4.3 Medium2023-11-30
CVE-2023-2264 Improper input validition could lead to code injection — SEL-411L 4.0 Medium2023-11-30
CVE-2023-34390 Improper input validation could lead to denial of service — SEL-451 4.5 Medium2023-11-30
CVE-2023-49095 nexkey allows arbitrary users to impersonate any remote user due to missing signature validation — nexkey 8.6 High2023-11-30
CVE-2023-49081 aiohttp's ClientSession is vulnerable to CRLF injection via version — aiohttp 7.2 High2023-11-30
CVE-2023-35136 Zyxel ATP 输入验证错误漏洞 — ATP series firmware 5.5 Medium2023-11-28
CVE-2023-48226 OpenReplay HTML Injection vulnerability — openreplay 6.5 Medium2023-11-21
CVE-2023-5275 Mitsubishi Electric GX Works2 安全漏洞 — GX Works2 2.5 Low2023-11-21
CVE-2023-5274 Mitsubishi Electric GX Works2 安全漏洞 — GX Works2 2.5 Low2023-11-21
CVE-2023-48310 Ability to DoS the testing infrastructure by overwriting files — TestingPlatform 9.1 Critical2023-11-20
CVE-2023-48223 fast-jwt JWT Algorithm Confusion — fast-jwt 5.9 Medium2023-11-20
CVE-2023-26364 Denial of Service of regular expression in package @adobe/css-tools — Not a product 5.3 Medium2023-11-17
CVE-2023-44355 ColdFusion | Improper Input Validation (CWE-20) — ColdFusion 4.3 Medium2023-11-17
CVE-2023-22272 ZDI-CAN-21309: Adobe RoboHelp Server resolveDistinguishedName LDAP Injection Information Disclosure Vulnerability — RoboHelp 7.5 High2023-11-17
CVE-2023-40314 Cross-site scripting in bootstrap.jsp — Horizon 5.8 Medium2023-11-16
CVE-2023-44345 Adobe InDesign CC 2023 Memory Corruption Vulnerability VII. — InDesign Desktop 5.5 Medium2023-11-16
CVE-2023-32469 Dell Precision Tower BIOS 安全漏洞 — Dell Precision 5820 Tower, Dell Precision 7820 Tower, Dell Precision 7920 Tower 7.5 High2023-11-16
CVE-2023-39537 Improper input validation in BIOS TCG2 — AptioV 7.5 High2023-11-14
CVE-2023-39536 Improper input validation in BIOS OFBD — AptioV 7.5 High2023-11-14
CVE-2023-39535 Improper input validation in BIOS — AptioV 7.5 High2023-11-14
CVE-2023-5528 Kubernetes - Windows nodes - Insufficient input sanitization in in-tree storage plugin leads to privilege escalation — kubelet 7.2 High2023-11-14
CVE-2023-36049 .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability — Microsoft Visual Studio 2022 version 17.2 7.6 High2023-11-14
CVE-2023-36021 Microsoft On-Prem Data Gateway Security Feature Bypass Vulnerability — On-Prem Data Gateway 8.0 High2023-11-14
CVE-2023-36407 Windows Hyper-V Elevation of Privilege Vulnerability — Windows Server 2022 7.8 High2023-11-14

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3267 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.