Vulnerabilities > Download of Code Without Integrity Check
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-05 | CVE-2023-45842 | Download of Code Without Integrity Check vulnerability in Buildroot 2023.08.1 Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. | 8.1 |
| 2023-11-29 | CVE-2023-46887 | Download of Code Without Integrity Check vulnerability in Dreamer CMS Project Dreamer CMS In Dreamer CMS before 4.0.1, the backend attachment management office has an Arbitrary File Download vulnerability. | 7.5 |
| 2023-11-15 | CVE-2023-5984 | Download of Code Without Integrity Check vulnerability in Schneider-Electric Ion8650 Firmware and Ion8800 Firmware A CWE-494 Download of Code Without Integrity Check vulnerability exists that could allow modified firmware to be uploaded when an authorized admin user begins a firmware update procedure which could result in full control over the device. | 4.9 |
| 2023-10-30 | CVE-2023-45799 | Download of Code Without Integrity Check vulnerability in Mlsoft Tco!Stream In MLSoft TCO!stream versions 8.0.22.1115 and below, a vulnerability exists due to insufficient permission validation. | 9.8 |
| 2023-09-03 | CVE-2023-37220 | Download of Code Without Integrity Check vulnerability in Synel products Synel Terminals - CWE-494: Download of Code Without Integrity Check | 9.8 |
| 2023-08-23 | CVE-2023-4041 | Download of Code Without Integrity Check vulnerability in Silabs Gecko Bootloader 4.3.0/4.3.1 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'), Out-of-bounds Write, Download of Code Without Integrity Check vulnerability in Silicon Labs Gecko Bootloader on ARM (Firmware Update File Parser modules) allows Code Injection, Authentication Bypass.This issue affects "Standalone" and "Application" versions of Gecko Bootloader. | 9.8 |
| 2023-08-11 | CVE-2023-40254 | Download of Code Without Integrity Check vulnerability in Genians Genian NAC and Genian Ztna Download of Code Without Integrity Check vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Malicious Software Update.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42 (Revision 117460); Genian NAC Suite V5.0: from V5.0.0 through V5.0.54; Genian ZTNA: from V6.0.0 through V6.0.15. | 9.8 |
| 2023-08-09 | CVE-2023-37864 | Download of Code Without Integrity Check vulnerability in Phoenixcontact products In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote attacker with SNMPv2 write privileges may use an a special SNMP request to gain full access to the device. | 7.2 |
| 2023-06-08 | CVE-2023-29401 | Download of Code Without Integrity Check vulnerability in Gin-Gonic GIN The filename parameter of the Context.FileAttachment function is not properly sanitized. | 4.3 |
| 2023-04-11 | CVE-2023-22635 | Download of Code Without Integrity Check vulnerability in Fortinet Forticlient A download of code without Integrity check vulnerability [CWE-494] in FortiClientMac version 7.0.0 through 7.0.7, 6.4 all versions, 6.2 all versions, 6.0 all versions, 5.6 all versions, 5.4 all versions, 5.2 all versions, 5.0 all versions and 4.0 all versions may allow a local attacker to escalate their privileges via modifying the installer upon upgrade. | 7.8 |