Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3267

3267 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-36407 Windows Hyper-V Elevation of Privilege Vulnerability — Windows Server 2022 7.8 High2023-11-14
CVE-2023-36719 Microsoft Speech Application Programming Interface (SAPI) Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2023-11-14
CVE-2023-45167 IBM AIX denial of service — AIX 6.2 Medium2023-11-10
CVE-2023-43570 Lenovo Bios 输入验证错误漏洞 — Desktop BIOS 6.7 Medium2023-11-08
CVE-2023-5079 Lenovo LeCloud 输入验证错误漏洞 — LeCloud Application 7.5 High2023-11-08
CVE-2023-47107 PILOS account takeover through password reset poisoning — PILOS 8.8 High2023-11-08
CVE-2023-6012 Incorrect input data validation in Lanaccess ONSAFE MonitorHM Web Console — ONSAFE MonitorHM 8.3 High2023-11-08
CVE-2023-46851 Apache Allura: sensitive information exposure via import — Apache Allura 9.8 -2023-11-07
CVE-2023-28574 Improper Input Validation in Core — Snapdragon 9.0 Critical2023-11-07
CVE-2023-21671 Improper Input Validation in Core — Snapdragon 9.3 Critical2023-11-07
CVE-2023-5964 1E-Exchange-DisplayMessage instruction allows for arbitrary code execution — Platform 9.9 Critical2023-11-06
CVE-2023-45163 1E-Exchange-CommandLinePing instruction before v18.1 allows for arbitrary code execution — Platform 9.9 Critical2023-11-06
CVE-2023-45161 1E-Exchange-URLResponseTime instruction before v20.1 allows arbitrary code execution — Platform 9.9 Critical2023-11-06
CVE-2023-3893 Kubernetes - csi-proxy - Insufficient input sanitization leads to privilege escalation — csi-proxy 8.8 High2023-11-03
CVE-2023-4043 Parsson DoS when parsing numbers from untrusted sources — Parsson 5.9 Medium2023-11-03
CVE-2023-42802 GLPI vulnerable to unallowed PHP script execution — glpi 10.0 Critical2023-11-02
CVE-2023-20255 Cisco Meeting Server 安全漏洞 — Cisco Meeting Server 5.3 Medium2023-11-01
CVE-2023-20270 Cisco Firepower Threat Defense 安全漏洞 — Cisco Firepower Threat Defense Software 5.8 Medium2023-11-01
CVE-2023-40061 Insecure Job Execution Mechanism Vulnerability — SolarWinds Platform 8.8 High2023-11-01
CVE-2023-40062 Incomplete List of Disallowed Inputs Remote Code Execution Vulnerability — SolarWinds Platform 8.0 High2023-11-01
CVE-2023-4197 Dolibarr ERP CRM (<= 18.0.1) Improper Input Sanitization Authenticated RCE — Dolibarr ERP CRM 7.5 High2023-11-01
CVE-2023-3955 Kubernetes - Windows nodes - Insufficient input sanitization leads to privilege escalation — kubelet 8.8 High2023-10-31
CVE-2023-3676 Kubernetes - Windows nodes - Insufficient input sanitization leads to privilege escalation — kubelet 8.8 High2023-10-31
CVE-2022-48189 Lenovo ThinkPad 输入验证错误漏洞 — ThinkPad BIOS 6.7 Medium2023-10-30
CVE-2022-4574 Lenovo ThinkPad 输入验证错误漏洞 — ThinkPad BIOS 6.7 Medium2023-10-30
CVE-2022-4573 Lenovo ThinkPad 输入验证错误漏洞 — ThinkPad X1 Fold Gen 1 6.7 Medium2023-10-30
CVE-2023-5832 Improper Input Validation in mintplex-labs/anything-llm — mintplex-labs/anything-llm 9.8 -2023-10-30
CVE-2023-42431 Potential XSS on user preferences page — BlueSpice 2.1 Low2023-10-30
CVE-2022-3429 Lenovo printers 输入验证错误漏洞 — Printer GM265DN (production date June 2022 and before) 6.5 Medium2023-10-27
CVE-2023-46289 Rockwell Automation FactoryTalk® View Site Edition Vulnerable to Improper Input Validation — FactoryTalk® View Site Edition 7.5 High2023-10-27

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3267 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.