Vulnerabilities > Improper Input Validation

DATE CVE VULNERABILITY TITLE RISK
2021-02-24 CVE-2021-1450 A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected device. 0.0
2021-02-24 CVE-2021-1367 A vulnerability in the Protocol Independent Multicast (PIM) feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. 0.0
2021-02-23 CVE-2021-20252 A flaw was found in Red Hat 3scale API Management Platform 2. 0.0
2021-02-23 CVE-2021-20194 There is a vulnerability in the linux kernel versions higher than 5.2 (if kernel compiled with config params CONFIG_BPF_SYSCALL=y , CONFIG_BPF=y , CONFIG_CGROUPS=y , CONFIG_CGROUP_BPF=y , CONFIG_HARDENED_USERCOPY not set, and BPF hook to getsockopt is registered). 0.0
2021-02-23 CVE-2020-29075 Improper Input Validation vulnerability in Adobe products
Acrobat Reader DC versions 2020.013.20066 (and earlier), 2020.001.30010 (and earlier) and 2017.011.30180 (and earlier) are affected by an information exposure vulnerability, that could enable an attacker to get a DNS interaction and track if the user has opened or closed a PDF file when loaded from the filesystem without a prompt.
network
adobe CWE-20
4.3
2021-02-22 CVE-2020-11195 Improper Input Validation vulnerability in Qualcomm products
Out of bound write and read in TA while processing command from NS side due to improper length check on command and response buffers in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
local
low complexity
qualcomm CWE-20
7.2
2021-02-17 CVE-2020-7849 Improper Input Validation vulnerability in Uprism Curix 1.3.6
A vulnerability of uPrism.io CURIX(Video conferecing solution) could allow an unauthenticated attacker to execute arbitrary code.
network
uprism CWE-20
6.8
2021-02-17 CVE-2020-24505 Improper Input Validation vulnerability in Intel Ethernet Network Adapter 700 Firmware
Insufficient input validation in the firmware for the Intel(R) 700-series of Ethernet Controllers before version 7.3 may allow a privileged user to potentially enable denial of service via local access.
local
low complexity
intel CWE-20
2.1
2021-02-17 CVE-2020-24502 Improper Input Validation vulnerability in Intel Ethernet Network Adapter E810 Firmware
Improper input validation in some Intel(R) Ethernet E810 Adapter drivers for Linux before version 1.0.4 and before version 1.4.29.0 for Windows*, may allow an authenticated user to potentially enable a denial of service via local access.
local
low complexity
intel CWE-20
2.1
2021-02-17 CVE-2020-24496 Improper Input Validation vulnerability in Intel products
Insufficient input validation in the firmware for Intel(R) 722 Ethernet Controllers before version 1.4.3 may allow a privileged user to potentially enable denial of service via local access.
local
low complexity
intel CWE-20
2.1