Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-20 (输入验证不恰当) — Vulnerability Class 3268

3268 vulnerabilities classified as CWE-20 (输入验证不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-29431 SSRF in Sydent due to missing validation of hostnames — sydent 7.7 High2021-04-15
CVE-2021-29432 Malicious users could control the content of invitation emails — sydent 5.3 Medium2021-04-15
CVE-2021-29430 Denial of service attack via memory exhaustion — sydent 7.5 High2021-04-15
CVE-2021-29433 Denial of service (via resource exhaustion) due to improper input validation — sydent 4.3 Medium2021-04-15
CVE-2020-28590 Slic3r 缓冲区错误漏洞 — Slic3r 6.5 -2021-04-13
CVE-2021-23279 Arbitrary File delete — Intelligent Power manager (IPM) 8.0 High2021-04-13
CVE-2021-23278 Arbitrary File delete — Intelligent Power manager (IPM) 8.7 High2021-04-13
CVE-2021-29425 Possible limited path traversal vulnerabily in Apache Commons IO — Apache Commons IO 9.1 -2021-04-13
CVE-2021-21393 Denial of service (via resource exhaustion) due to improper input validation on groups/communities endpoints — synapse 5.3 Medium2021-04-12
CVE-2021-21394 Denial of service (via resource exhaustion) due to improper input validation on third-party identifier endpoints — synapse 5.3 Medium2021-04-12
CVE-2021-25378 SmartThings Hub STH-ETH-250 安全漏洞 — SmartThings 4.3 Medium2021-04-09
CVE-2021-25356 Samsung SMR 输入验证错误漏洞 — Samsung Mobile Devices 7.1 High2021-04-09
CVE-2021-21431 Improper Input Validation in sopel-plugins.channelmgnt — sopel-channelmgnt 7.6 High2021-04-09
CVE-2021-3482 Exiv2 缓冲区错误漏洞 — exiv2 8.1 -2021-04-08
CVE-2021-1404 Clam AntiVirus (ClamAV) Email Parser Denial of Service Vulnerability — ClamAV 7.5 High2021-04-08
CVE-2021-1252 Clam AntiVirus (ClamAV) Excel XLM Parser Denial of Service Vulnerability — ClamAV 7.5 High2021-04-08
CVE-2021-21404 Crash due to malformed relay protocol message — syncthing 7.5 High2021-04-06
CVE-2021-21533 Wyse Management Suite 输入验证错误漏洞 — Wyse Management Suite 4.3 Medium2021-04-02
CVE-2021-22538 Privilege escalation in RBAC system — Exposure Notifications Verification Server 6.3 Medium2021-03-31
CVE-2018-1110 CZ.NIC knot-resolver 输入验证错误漏洞 — knot-resolver 7.5 -2021-03-30
CVE-2021-20206 Cloud Native Computing Foundation CNI 路径遍历漏洞 — containernetworking-cni 7.2 -2021-03-26
CVE-2021-21372 Nimble arbitrary code execution for specially crafted package metadata — security 8.3 High2021-03-26
CVE-2021-1220 Cisco IOS XE Software Web UI Denial of Service Vulnerabilities — Cisco IOS XE Software 4.3 Medium2021-03-24
CVE-2021-1356 Cisco IOS XE Software Web UI Denial of Service Vulnerabilities — Cisco IOS XE Software 4.3 Medium2021-03-24
CVE-2021-1383 Cisco IOS XE SD-WAN Software Parameter Injection Vulnerabilities — Cisco IOS XE Software 6.0 Medium2021-03-24
CVE-2021-1454 Cisco IOS XE SD-WAN Software Parameter Injection Vulnerabilities — Cisco IOS XE Software 6.0 Medium2021-03-24
CVE-2021-1432 Cisco IOS XE SD-WAN Software Arbitrary Command Execution Vulnerability — Cisco IOS XE Software 7.3 High2021-03-24
CVE-2021-1431 Cisco IOS XE SD-WAN Software vDaemon Denial of Service Vulnerability — Cisco IOS XE Software 7.5 High2021-03-24
CVE-2020-7839 MarkAny MaEPSBroker Command Injection Vulnerability — MaEPSBroker 8.8 High2021-03-24
CVE-2021-20222 Red Hat Keycloak 跨站脚本漏洞 — keycloak 7.5 -2021-03-23

Vulnerabilities classified as CWE-20 (输入验证不恰当) represent 3268 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.