Vulnerabilities > Download of Code Without Integrity Check
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-23 | CVE-2021-41714 | Download of Code Without Integrity Check vulnerability in Tipask In Tipask < 3.5.9, path parameters entered by the user are not validated when downloading attachments, a registered user can download arbitrary files on the Tipask server such as .env, /etc/passwd, laravel.log, causing infomation leakage. | 6.5 |
| 2022-05-18 | CVE-2022-22786 | Download of Code Without Integrity Check vulnerability in Zoom Meetings and Rooms The Zoom Client for Meetings for Windows before version 5.10.0 and Zoom Rooms for Conference Room for Windows before version 5.10.0, fails to properly check the installation version during the update process. | 8.8 |
| 2022-03-10 | CVE-2022-24644 | Download of Code Without Integrity Check vulnerability in Zzinc Keymouse Firmware 2.02/3.05/3.08 ZZ Inc. | 8.8 |
| 2022-01-04 | CVE-2021-44168 | Download of Code Without Integrity Check vulnerability in Fortinet Fortios A download of code without integrity check vulnerability in the "execute restore src-vis" command of FortiOS before 7.0.3 may allow a local authenticated attacker to download arbitrary files on the device via specially crafted update packages. | 7.8 |
| 2021-12-28 | CVE-2020-7883 | Download of Code Without Integrity Check vulnerability in Wowsoft Printchaser 2.2021.804.1 Printchaser v2.2021.804.1 and earlier versions contain a vulnerability, which could allow remote attacker to download and execute remote file by setting the argument, variable in the activeX module. | 9.8 |
| 2021-10-28 | CVE-2020-7875 | Download of Code Without Integrity Check vulnerability in Dext5 Dext5Upload 2.7.1262310 DEXT5 Upload 5.0.0.117 and earlier versions contain a vulnerability, which could allow remote attacker to download and execute remote file by setting the argument, variable in the activeX module. | 8.8 |
| 2021-09-09 | CVE-2020-7873 | Download of Code Without Integrity Check vulnerability in Ksystem K-System Wellcomm 1.1/4.0 Download of code without integrity check vulnerability in ActiveX control of Younglimwon Co., Ltd allows the attacker to cause a arbitrary file download and execution. | 9.8 |
| 2021-09-09 | CVE-2020-7874 | Download of Code Without Integrity Check vulnerability in Tobesoft Nexacro 14.0.0.0 Download of code without integrity check vulnerability in NEXACRO14 Runtime ActiveX control of tobesoft Co., Ltd allows the attacker to cause an arbitrary file download and execution. | 8.8 |
| 2021-09-08 | CVE-2021-30658 | Download of Code Without Integrity Check vulnerability in Apple Macos This issue was addressed with improved handling of file metadata. | 5.5 |
| 2021-09-08 | CVE-2021-30669 | Download of Code Without Integrity Check vulnerability in Apple mac OS X and Macos A logic issue was addressed with improved state management. | 5.5 |