Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3271

3271 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-31607 NVIDIA graphics driver 输入验证错误漏洞 — NVIDIA Cloud Gaming (guest driver), NVIDIA Cloud Gaming (Virtual GPU Manager) 7.8 High2022-11-18
CVE-2022-31616 NVIDIA GPU Display Driver 缓冲区错误漏洞 — NVIDIA Cloud Gaming (guest driver) 6.1 Medium2022-11-18
CVE-2022-41888 Unckecked rank size in `tf.image.generate_bounding_box_proposals` in Tensorflow — tensorflow 4.8 Medium2022-11-18
CVE-2022-41891 Segfault in `tf.raw_ops.TensorListConcat` in Tensorflow — tensorflow 4.8 Medium2022-11-18
CVE-2022-41896 `tf.raw_ops.Mfcc` crashes in Tensorflow — tensorflow 4.8 Medium2022-11-18
CVE-2022-41898 `CHECK` fail via inputs in `SparseFillEmptyRowsGrad` in Tensorflow — tensorflow 4.8 Medium2022-11-18
CVE-2022-41899 `CHECK` fail via inputs in `SdcaOptimizer` in Tensorflow — tensorflow 4.8 Medium2022-11-18
CVE-2022-41901 `CHECK_EQ` fail via input in `SparseMatrixNNZ` in Tensorflow — tensorflow 4.8 Medium2022-11-18
CVE-2022-41908 `CHECK` fail via inputs in `PyFunc` in Tensorflow — tensorflow 4.8 Medium2022-11-18
CVE-2022-41909 Segfault in `CompositeTensorVariantToComponents` in Tensorflow — tensorflow 4.8 Medium2022-11-18
CVE-2022-39389 Witness Block Parsing DoS Vulnerability in lnd — lnd 8.2 High2022-11-17
CVE-2022-39318 Division by zero in urbdrc channel in FreeRDP — FreeRDP 4.8 Medium2022-11-16
CVE-2022-31772 IBM MQ denial of service — MQ 5.3 Medium2022-11-11
CVE-2022-38385 IBM Cloud Pak for Security 输入验证错误漏洞 — Cloud Pak for Security 7.1 High2022-11-11
CVE-2022-39306 Grafana contains Improper Input Validation — grafana 6.4 Medium2022-11-09
CVE-2022-39880 SAMSUNG Mobile devices 输入验证错误漏洞 — Samsung Mobile Devices 7.1 High2022-11-09
CVE-2022-39881 SAMSUNG Mobile devices 缓冲区错误漏洞 — Samsung Mobile Devices 5.3 Medium2022-11-09
CVE-2022-41214 SAP NetWeaver和SAP NetWeaver Application Server 输入验证错误漏洞 — SAP NetWeaver Application Server ABAP and ABAP Platform 8.7 High2022-11-08
CVE-2022-43439 Siemens Power Meter Sicam Q100 输入验证错误漏洞 — POWER METER SICAM Q100 9.9 Critical2022-11-08
CVE-2022-43545 Siemens Power Meter Sicam Q100 输入验证错误漏洞 — POWER METER SICAM Q100 9.9 Critical2022-11-08
CVE-2022-43546 Siemens Power Meter Sicam Q100 输入验证错误漏洞 — POWER METER SICAM Q100 9.9 Critical2022-11-08
CVE-2022-43566 Risky command safeguards bypass via Search ID query in Analytics Workspace in Splunk Enterprise — Splunk Enterprise 7.3 High2022-11-04
CVE-2022-43565 Risky command safeguards bypass via ‘tstats command JSON in Splunk Enterprise — Splunk Enterprise 8.1 High2022-11-04
CVE-2022-43563 Risky command safeguards bypass via rex search command field names in Splunk Enterprise — Splunk Enterprise 8.1 High2022-11-04
CVE-2022-43562 Host Header Injection in Splunk Enterprise — Splunk Enterprise 3.0 Low2022-11-04
CVE-2022-43449 Arbitrary file read via download_server. — OpenHarmony 6.2 Medium2022-11-03
CVE-2022-3675 Fedora 访问控制错误漏洞 — CoreOS 2.6 Low2022-11-03
CVE-2022-39376 Improper input validation on emails links in GLPI — glpi 2.6 Low2022-11-03
CVE-2022-3181 VTScada 输入验证错误漏洞 — VTScada 7.5 High2022-11-02
CVE-2022-39353 xmldom allows multiple root nodes in a DOM — xmldom 9.4 Critical2022-11-02

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3271 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.