CWE-20— Improper Input Validation
11,434 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-20page 66 of 229
- CVE-2015-0679NONECVSS 0.0EG 0.02015-03-28
The web-authentication functionality on Cisco Wireless LAN Controller (WLC) devices 7.3(103.8) and 7.4(110.0) allows remote attackers to cause a denial of service (device reload) via a malformed password, aka Bug ID CSCui57980.
- CVE-2015-0685NONECVSS 0.0EG 0.02015-04-03
Cisco IOS XE before 3.7.5S on ASR 1000 devices does not properly handle route adjacencies, which allows remote attackers to cause a denial of service (device hang) via crafted IP packets, aka Bug ID CSCub31873.
- CVE-2015-0810NONECVSS 0.0EG 0.02015-04-01
Mozilla Firefox before 37.0 on OS X does not ensure that the cursor is visible, which allows remote attackers to conduct clickjacking attacks via a Flash object in conjunction with DIV elements associated with layered presentation, and cra…
- CVE-2015-0879NONECVSS 0.0EG 0.02015-02-20
CREAR AL-Mail32 before 1.13d allows remote attackers to cause a denial of service (application crash) via a (1) CON, (2) AUX, or (3) NUL device name in the filename of an attachment.
- CVE-2015-0980NONECVSS 0.0EG 0.02015-03-14
Format string vulnerability in BACnOPCServer.exe in the SOAP web interface in SCADA Engine BACnet OPC Server before 2.1.371.24 allows remote attackers to execute arbitrary code via format string specifiers in a request.
- CVE-2015-1043NONECVSS 0.0EG 0.02015-01-29
The Host Guest File System (HGFS) in VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, and VMware Fusion 6.x before 6.0.5 and 7.x before 7.0.1 allows guest OS users to cause a guest OS denial of service via unspecified…
- CVE-2015-1049NONECVSS 0.0EG 0.02015-02-02
The web server on Siemens SCALANCE X-200IRT switches with firmware before 5.2.0 allows remote attackers to hijack sessions via unspecified vectors.
- CVE-2015-1326MEDIUMCVSS 5.7EG 5.72019-04-22
python-dbusmock before version 0.15.1 AddTemplate() D-Bus method call or DBusTestCase.spawn_server_template() method could be tricked into executing malicious code if an attacker supplies a .pyc file.
- CVE-2015-1371NONECVSS 0.0EG 0.02015-01-27
Unrestricted file upload vulnerability in ferretCMS 1.0.4-alpha allows remote administrators to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in custom/uploads/.
- CVE-2015-1380NONECVSS 0.0EG 0.02015-02-03
jcc.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service (abort) via a crafted chunk-encoded body.
- CVE-2015-1382NONECVSS 0.0EG 0.02015-02-03
parsers.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service (invalid read and crash) via vectors related to an HTTP time header.
- CVE-2015-1425CRITICALCVSS 9.8EG 9.82020-02-18
JAKWEB Gecko CMS has Multiple Input Validation Vulnerabilities
- CVE-2015-1483NONECVSS 0.0EG 0.02015-03-06
Symantec NetBackup OpsCenter 7.6.0.2 through 7.6.1 on Linux and UNIX allows remote attackers to execute arbitrary JavaScript code via unspecified vectors.
- CVE-2015-1525MEDIUMCVSS 5.5EG 5.52020-01-24
audio/AudioPolicyManagerBase.cpp in Android before 5.1 allows attackers to cause a denial of service (audio_policy application outage) via a crafted application that provides a NULL device address.
- CVE-2015-1604NONECVSS 0.0EG 0.02015-02-19
Unrestricted file upload vulnerability in asys/site/files.php in Adminsystems CMS before 4.0.2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct req…
- CVE-2015-1607MEDIUMCVSS 5.5EG 5.52019-11-20
kbx/keybox-search.c in GnuPG before 1.4.19, 2.0.x before 2.0.27, and 2.1.x before 2.1.2 does not properly handle bitwise left-shifts, which allows remote attackers to cause a denial of service (invalid read operation) via a crafted keyring…
- CVE-2015-1609NONECVSS 0.0EG 0.02015-03-30
MongoDB before 2.4.13 and 2.6.x before 2.6.8 allows remote attackers to cause a denial of service via a crafted UTF-8 string in a BSON request.
- CVE-2015-1782NONECVSS 0.0EG 0.02015-03-13
The kex_agree_methods function in libssh2 before 1.5.0 allows remote servers to cause a denial of service (crash) or have other unspecified impact via crafted length values in an SSH_MSG_KEXINIT packet.
- CVE-2015-1787NONECVSS 0.0EG 0.02015-03-19
The ssl3_get_client_key_exchange function in s3_srvr.c in OpenSSL 1.0.2 before 1.0.2a, when client authentication and an ephemeral Diffie-Hellman ciphersuite are enabled, allows remote attackers to cause a denial of service (daemon crash) …
- CVE-2015-1855MEDIUMCVSS 5.9EG 5.92019-11-29
verify_certificate_identity in the OpenSSL extension in Ruby before 2.0.0 patchlevel 645, 2.1.x before 2.1.6, and 2.2.x before 2.2.2 does not properly validate hostnames, which allows remote attackers to spoof servers via vectors related t…
- CVE-2015-2053NONECVSS 0.0EG 0.02015-02-23
The log viewer in McAfee Agent (MA) before 4.8.0 Patch 3 and 5.0.0, when the "Accept connections only from the ePO server" option is disabled, allows remote attackers to conduct clickjacking attacks via a crafted web page, aka an "http-gen…
- CVE-2015-2055NONECVSS 0.0EG 0.02015-02-23
Zhone GPON 2520 with firmware R4.0.2.566b allows remote attackers to cause a denial of service via a long string in the oldpassword parameter.
- CVE-2015-2081CRITICALCVSS 9.8EG 9.82018-02-20
Datto ALTO and SIRIS devices allow Remote Code Execution via unauthenticated requests to PHP scripts.
- CVE-2015-2177HIGHCVSS 7.5EG 0.02015-03-07
Siemens SIMATIC S7-300 CPU devices allow remote attackers to cause a denial of service (defect-mode transition) via crafted packets on (1) TCP port 102 or (2) Profibus.
- CVE-2015-2186HIGHCVSS 7.5EG 7.52018-02-03
The Ansible edxapp role in the Configuration Repo in edX allows remote websites to spoof edX accounts by leveraging use of the string literal "False" instead of a boolean False for the CORS_ORIGIN_ALLOW_ALL setting. Note: this vulnerabilit…
- CVE-2015-2187NONECVSS 0.0EG 0.02015-03-08
The dissect_atn_cpdlc_heur function in asn1/atn-cpdlc/packet-atn-cpdlc-template.c in the ATN-CPDLC dissector in Wireshark 1.12.x before 1.12.4 does not properly follow the TRY/ENDTRY code requirements, which allows remote attackers to caus…
- CVE-2015-2202HIGHCVSS 7.2EG 7.22023-09-05
Aruba AirWave before 7.7.14.2 and 8.x before 8.0.7 allows administrative users to escalate privileges to root on the underlying OS.
- CVE-2015-2291HIGHCVSS 7.8EG 9.0⚠ KEV2017-08-09
(1) IQVW32.sys before 1.3.1.0 and (2) IQVW64.sys before 1.3.1.0 in the Intel Ethernet diagnostics driver for Windows allows local users to cause a denial of service or possibly execute arbitrary code with kernel privileges via a crafted (a…
- CVE-2015-2545HIGHCVSS 7.8EG 9.0⚠ KEV2015-09-09
Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2013 RT SP1 allows remote attackers to execute arbitrary code via a crafted EPS image, aka "Microsoft Office Malformed EPS File Vulnerability."
- CVE-2015-2684NONECVSS 0.0EG 0.02015-03-31
Shibboleth Service Provider (SP) before 2.5.4 allows remote authenticated users to cause a denial of service (crash) via a crafted SAML message.
- CVE-2015-2689HIGHCVSS 7.5EG 7.52020-01-24
Tor before 0.2.4.26 and 0.2.5.x before 0.2.5.11 does not properly handle pending-connection resolve states during periods of high DNS load, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via …
- CVE-2015-2752NONECVSS 0.0EG 0.02015-04-01
The XEN_DOMCTL_memory_mapping hypercall in Xen 3.2.x through 4.5.x, when using a PCI passthrough device, is not preemptible, which allows local x86 HVM domain users to cause a denial of service (host CPU consumption) via a crafted request …
- CVE-2015-2753NONECVSS 0.0EG 0.02015-03-31
FreeXL before 1.0.0i allows remote attackers to cause a denial of service (stack corruption) or possibly execute arbitrary code via a crafted sector in a workbook.
- CVE-2015-2754NONECVSS 0.0EG 0.02015-03-31
FreeXL before 1.0.0i allows remote attackers to cause a denial of service (stack corruption) and possibly execute arbitrary code via a crafted workbook, related to a "premature EOF."
- CVE-2015-2765NONECVSS 0.0EG 0.02015-03-27
The Email Security Gateway in Websense TRITON AP-EMAIL before 8.0.0 allows remote attackers to conduct clickjacking attacks via unspecified vectors.
- CVE-2015-2776NONECVSS 0.0EG 0.02015-03-31
The parse_SST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service (memory consumption) via a crafted shared strings table in a workbook.
- CVE-2015-2784CRITICALCVSS 9.8EG 9.82020-01-21
The papercrop gem before 0.3.0 for Ruby on Rails does not properly handle crop input.
- CVE-2015-2790NONECVSS 0.0EG 0.02015-03-30
Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1 allow remote attackers to cause a denial of service (memory corruption and crash) via a crafted (1) Ubyte Size in a DataSubBlock structure or (2) LZWMinimumCodeSize in a GIF image.
- CVE-2015-2819NONECVSS 0.0EG 0.02015-04-01
SAP Sybase SQL Anywhere 11 and 16 allows remote attackers to cause a denial of service (crash) via a crafted request, aka SAP Security Note 2108161.
- CVE-2015-2923MEDIUMCVSS 6.5EG 6.52020-02-20
The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in FreeBSD through 10.1 allows remote attackers to reconfigure a hop-limit setting via a small hop_limit value in a Router Advertisement (RA) message.
- CVE-2015-3150HIGHCVSS 7.1EG 7.12020-01-14
abrt-dbus in Automatic Bug Reporting Tool (ABRT) allows local users to delete or change the ownership of arbitrary files via the problem directory argument to the (1) ChownProblemDir, (2) DeleteElement, or (3) DeleteProblem method.
- CVE-2015-4410HIGHCVSS 7.5EG 7.52020-02-20
The Moped::BSON::ObjecId.legal? method in rubygem-moped before commit dd5a7c14b5d2e466f7875d079af71ad19774609b allows remote attackers to cause a denial of service (worker resource consumption) or perform a cross-site scripting (XSS) attac…
- CVE-2015-4664CRITICALCVSS 9.8EG 9.82018-06-18
An improper input validation vulnerability in CA Privileged Access Manager 2.4.4.4 and earlier allows remote attackers to execute arbitrary commands.
- CVE-2015-5159HIGHCVSS 7.5EG 7.52018-10-30
python-kdcproxy before 0.3.2 allows remote attackers to cause a denial of service via a large POST request.
- CVE-2015-5230HIGHCVSS 7.5EG 7.52020-01-15
The DNS packet parsing/generation code in PowerDNS (aka pdns) Authoritative Server 3.4.x before 3.4.6 allows remote attackers to cause a denial of service (crash) via crafted query packets.
- CVE-2015-5606HIGHCVSS 7.5EG 7.52019-04-03
Vordel XML Gateway (acquired by Axway) version 7.2.2 could allow remote attackers to cause a denial of service via a specially crafted request.
- CVE-2015-5674MEDIUMCVSS 6.5EG 6.52018-02-05
The routed daemon in FreeBSD 9.3 before 9.3-RELEASE-p22, 10.2-RC2 before 10.2-RC2-p1, 10.2-RC1 before 10.2-RC1-p2, 10.2 before 10.2-BETA2-p3, and 10.1 before 10.1-RELEASE-p17 allows remote authenticated users to cause a denial of service (…
- CVE-2015-6461MEDIUMCVSS 5.4EG 5.42019-03-21
Remote file inclusion allows an attacker to craft a specific URL referencing the Schneider Electric Modicon BMXNOC0401, BMXNOE0100, BMXNOE0110, BMXNOE0110H, BMXNOR0200H, BMXP342020, BMXP342020H, BMXP342030, BMXP3420302, BMXP3420302H, or BM…
- CVE-2015-6497HIGHCVSS 8.8EG 8.82020-01-15
The create function in app/code/core/Mage/Catalog/Model/Product/Api/V2.php in Magento Community Edition (CE) before 1.9.2.1 and Enterprise Edition (EE) before 1.14.2.1, when used with PHP before 5.4.24 or 5.5.8, allows remote authenticated…
- CVE-2015-6563MEDIUMCVSS 6.4EG 0.02015-08-24
The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login acces…
Map vulnerabilities like CWE-20 to your infrastructure
EchelonGraph correlates every CVE — across CWE-20 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →