Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3268

3268 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-30442 IBM Db2 denial of service — Db2 for Linux, UNIX and Windows 5.9 Medium2023-07-10
CVE-2023-30449 IBM Db2 denial of service — DB2 for Linux, UNIX and Windows 7.5 High2023-07-08
CVE-2023-30445 IBM Db2 denial of service — DB2 for Linux, UNIX and Windows 7.5 High2023-07-08
CVE-2023-30448 IBM Db2 denial of service — DB2 for Linux, UNIX and Windows 5.9 Medium2023-07-08
CVE-2023-30446 IBM Db2 denial of service — DB2 for Linux, UNIX and Windows 5.9 Medium2023-07-08
CVE-2023-30447 IBM Db2 denial of service — DB2 for Linux, UNIX and Windows 5.9 Medium2023-07-08
CVE-2023-36462 Mastodon's verified profile links can be formatted in a misleading way — mastodon 5.4 Medium2023-07-06
CVE-2023-3456 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.5 -2023-07-06
CVE-2023-37241 Huawei HarmonyOS 输入验证错误漏洞 — HarmonyOS 7.5 -2023-07-06
CVE-2023-36821 Uptime Kuma vulnerable to authenticated remote code execution via malicious plugin installation — uptime-kuma 8.8 High2023-07-05
CVE-2023-35936 Arbitrary file write is possible in Pandoc when using PDF output or --extract-media with untrusted input — pandoc 6.0 Medium2023-07-05
CVE-2023-34457 MechanicalSoup vulnerable to malicious web server reading arbitrary files on client using file input inside HTML form — MechanicalSoup 5.9 Medium2023-07-05
CVE-2023-34150 Apache Any23: Possible excessive allocation of resources reading input. — Apache Any23 6.5 Medium2023-07-05
CVE-2023-21631 Improper Input Validation in Modem — Snapdragon 7.5 High2023-07-04
CVE-2023-25522 NVIDIA DGX 输入验证错误漏洞 — DGX A100/A800 7.5 High2023-07-03
CVE-2023-2728 Bypassing enforce mountable secrets policy imposed by the ServiceAccount admission plugin — Kubernetes 6.5 Medium2023-07-03
CVE-2023-2727 Bypassing policies imposed by the ImagePolicyWebhook admission plugin — Kubernetes 6.5 Medium2023-07-03
CVE-2023-35797 Apache Airflow Hive Provider Beeline RCE with Principal — Apache Airflow Apache Hive Provider 9.8 -2023-07-03
CVE-2023-22886 Apache Airflow JDBC Provider: RCE Vulnerability — Apache Airflow JDBC Provider 9.8 -2023-06-29
CVE-2023-3034 Reflected XSS in BKG Ntrip Professional Caster version <=2.0.44 — NTRIP Professional Caster 4.7 Medium2023-06-28
CVE-2023-20105 多款Cisco产品 安全漏洞 — Cisco TelePresence Video Communication Server (VCS) Expressway 9.6 Critical2023-06-28
CVE-2023-20192 Cisco Expressway Series and Cisco TelePresence Video Communication Server Privilege Escalation Vulnerabilities — Cisco TelePresence Video Communication Server (VCS) Expressway 9.6 Critical2023-06-28
CVE-2023-26273 IBM QRadar security bypass — Security QRadar SIEM 4.3 Medium2023-06-27
CVE-2023-35798 Airflow Apache ODBC and MSSQL Providers Arbitrary File Read Vulnerability — Apache Airflow ODBC Provider 8.8 -2023-06-27
CVE-2023-34422 Lenovo XClarity Administrator 输入验证错误漏洞 — Lenovo XClarity Administrator 6.5 Medium2023-06-26
CVE-2023-34421 Lenovo XClarity Administrator 输入验证错误漏洞 — Lenovo XClarity Administrator 6.5 Medium2023-06-26
CVE-2023-35163 Vega's validators able to submit duplicate transactions — vega 6.0 Medium2023-06-23
CVE-2023-25520 NVIDIA Jetson Linux Driver Package 输入验证错误漏洞 — Jetson AGX Xavier series, Jetson Xavier NX, Jetson TX2 series, Jetson TX2 NX 4.4 Medium2023-06-23
CVE-2023-32480 Dell BIOS 输入验证错误漏洞 — CPG BIOS 6.8 Medium2023-06-23
CVE-2023-28058 Dell BIOS 输入验证错误漏洞 — CPG BIOS 5.1 Medium2023-06-23

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3268 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.