Vulnerabilities > Improper Input Validation

DATE	CVE	VULNERABILITY TITLE	RISK
2024-11-17	CVE-2024-0793	A flaw was found in kube-controller-manager. network low complexity CWE-20	7.7
2024-11-15	CVE-2021-1464	A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization checking and gain restricted access to the configuration information of an affected system. This vulnerability exists because the affected software has insufficient input validation for certain commands. network low complexity CWE-20	5.0
2024-11-15	CVE-2021-1470	A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to improper input validation of SQL queries to an affected system. network low complexity CWE-20	4.9
2024-11-15	CVE-2021-1482	A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization checking and gain access to sensitive information on an affected system. This vulnerability is due to insufficient authorization checks. network low complexity CWE-20	6.4
2024-11-14	CVE-2022-2232	A flaw was found in the Keycloak package. network low complexity CWE-20	7.5
2024-11-12	CVE-2024-11079	A flaw was found in Ansible-Core. network high complexity CWE-20	5.5
2024-10-08	CVE-2024-20659	Windows Hyper-V Security Feature Bypass Vulnerability high complexity CWE-20	7.1
2024-10-01	CVE-2024-9407	A vulnerability exists in the bind-propagation option of the Dockerfile RUN --mount instruction. local high complexity CWE-20	4.7
2024-09-10	CVE-2024-37965	Microsoft SQL Server Elevation of Privilege Vulnerability network low complexity CWE-20	8.8
2024-07-26	CVE-2024-25090	Improper Input Validation vulnerability in Apache Roller Insufficient input validation and sanitation in Profile name & screenname, Bookmark name & description and blogroll name features in all versions of Apache Roller on all platforms allows an authenticated user to perform an XSS attack. network low complexity apache CWE-20	5.4

Vulnerabilities > Improper Input Validation {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Improper Input Validation"}]}

Vulnerabilities > Improper Input Validation