Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-345 (对数据真实性的验证不充分) — Vulnerability Class 218

218 vulnerabilities classified as CWE-345 (对数据真实性的验证不充分). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-41203 Missing validation during checkpoint loading — tensorflow 7.8 High2021-11-05
CVE-2021-41106 File reference keys leads to incorrect hashes on HMAC algorithms — jwt 4.4 Medium2021-09-28
CVE-2021-41087 Improperly Implemented path matching for in-toto-golang — in-toto-golang 5.6 Medium2021-09-21
CVE-2021-34572 Insufficient Verification of Data Authenticity in Enbra EWM (replay attack) — EWM 1.7.29 6.5 Medium2021-09-16
CVE-2021-1586 Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability — Cisco NX-OS System Software in ACI Mode 8.6 High2021-08-25
CVE-2021-39158 Dependency injection in NVCaffe — caffe 8.8 High2021-08-23
CVE-2021-21588 Dell EMC PowerFlex数据伪造问题漏洞 — PowerFlex 6.5 Medium2021-07-12
CVE-2021-33712 Mendix SAML 数据伪造问题漏洞 — Mendix SAML Module 8.8 -2021-06-08
CVE-2021-32665 Verified groups not reliable — wire-ios 8.8 High2021-06-03
CVE-2021-20267 OpenStack 数据伪造问题漏洞 — openstack-neutron 7.1 -2021-05-28
CVE-2021-20271 Red Hat Package Manager 数据伪造问题漏洞 — rpm 7.0 -2021-03-26
CVE-2021-1403 Cisco IOS XE Software Web UI Cross-Site WebSocket Hijacking Vulnerability — Cisco IOS XE Software 7.4 High2021-03-24
CVE-2021-21320 User content sandbox can be confused into opening arbitrary documents — matrix-react-sdk 2.6 Low2021-03-02
CVE-2020-15262 Invalid integrity hashes in webpack-subresource-integrity — webpack-subresource-integrity 3.7 Low2020-10-19
CVE-2019-16000 Cisco Umbrella Roaming Client for Windows Install Vulnerability — Cisco Umbrella Enterprise Roaming Client for Windows 6.0 -2020-09-23
CVE-2019-16007 Cisco AnyConnect Secure Mobility Client for Android Service Hijack Vulnerability — Cisco AnyConnect Secure Mobility Client 7.1 -2020-09-23
CVE-2020-13178 Teradici PCoIP Standard Agent和Graphics Agent 数据伪造问题漏洞 — - PCoIP Standard Agent for Windows - PCoIP Graphics Agent for Windows 6.7 -2020-08-11
CVE-2020-11985 Apache HTTP Server 数据伪造问题漏洞 — Apache HTTP Server 5.3 -2020-08-07
CVE-2020-3220 Cisco IOS XE Software IPsec VPN Denial of Service Vulnerability — Cisco IOS XE Software 16.4.1 5.9 -2020-06-03
CVE-2020-7487 多款Schneider Electric产品数据伪造问题漏洞 — EcoStruxure Machine Expert (all versions)SoMachine, SoMachine Motion (all versions)Modicon M218 Logic Controller (all versions)Modicon M241 Logic Controller (all versions)Modicon M251 Logic Controller (all versions)Modicon M258 Logic Controller (all versions) 9.8 -2020-04-22
CVE-2019-18905 Deprecated functionality in autoyast2 automatically imports gpg keys without checking them — SUSE Linux Enterprise Server 12 4.8 Medium2020-04-03
CVE-2019-17636 Eclipse Theia 数据伪造问题漏洞 — Eclipse Theia 9.1 -2020-03-10
CVE-2020-3174 Cisco NX-OS Software Anycast Gateway Invalid ARP Vulnerability — Cisco NX-OS Software 7.3(2)D1(1d) 8.2 -2020-02-26
CVE-2019-12620 Cisco HyperFlex Software Counter Value Injection Vulnerability — Cisco HyperFlex HX-Series 5.3 -2019-09-18
CVE-2019-10181 icedtea-web 数据伪造问题漏洞 — icedtea-web 8.1 -2019-07-31
CVE-2019-1932 Cisco Advanced Malware Protection for Endpoints Windows Command Injection Vulnerability — Cisco AMP for Endpoints 6.7 -2019-07-06
CVE-2019-3875 Red Hat Keycloak 信任管理问题漏洞 — keycloak 6.5 -2019-06-12
CVE-2019-10157 Red Hat Keycloak Node.js adapter 授权问题漏洞 — keycloak 5.5 -2019-06-12
CVE-2019-1880 Cisco Unified Computing System BIOS Signature Bypass Vulnerability — Cisco Unified Computing System (Managed) 4.4 -2019-06-05
CVE-2015-3956 多款Hospira产品安全漏洞 — Plum A+ Infusion System 9.8 -2019-03-25

Vulnerabilities classified as CWE-345 (对数据真实性的验证不充分) represent 218 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.