Latest Improper Input Validation Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2020-09-16 CVE-2020-14513 CodeMeter (All versions prior to 6.81) and the software using it may crash while processing a specifically crafted license file due to unverified length fields. 0.0
2020-09-14 CVE-2020-13317 Improper Input Validation vulnerability in Gitlab 13.1.0/13.1.1
A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8, and 13.3.4.
network
low complexity
gitlab
CWE-20
4.0
2020-09-11 CVE-2020-16862 Improper Input Validation vulnerability in Microsoft Dynamics 365 9.0
A remote code execution vulnerability exists in Microsoft Dynamics 365 (on-premises) when the server fails to properly sanitize web requests to an affected Dynamics server, aka 'Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability'.
network
low complexity
microsoft
CWE-20
6.5
2020-09-11 CVE-2020-16860 Improper Input Validation vulnerability in Microsoft Dynamics 365 9.0
A remote code execution vulnerability exists in Microsoft Dynamics 365 (on-premises) when the server fails to properly sanitize web requests to an affected Dynamics server, aka 'Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability'.
network
low complexity
microsoft
CWE-20
6.5
2020-09-11 CVE-2020-16857 Improper Input Validation vulnerability in Microsoft Dynamics 365 FOR Finance and Operations 10.0.11
A remote code execution vulnerability exists in Microsoft Dynamics 365 for Finance and Operations (on-premises) version 10.0.11, aka 'Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability'.
network
low complexity
microsoft
CWE-20
6.5
2020-09-11 CVE-2020-1205 Improper Input Validation vulnerability in Microsoft products
A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'.
4.9
2020-09-11 CVE-2020-1044 Improper Input Validation vulnerability in Microsoft SQL Server Reporting Services 2017/2019
A security feature bypass vulnerability exists in SQL Server Reporting Services (SSRS) when the server improperly validates attachments uploaded to reports, aka 'SQL Server Reporting Services Security Feature Bypass Vulnerability'.
network
low complexity
microsoft
CWE-20
4.0
2020-09-11 CVE-2020-16216 Improper Input Validation vulnerability in Philips products
Patient Information Center iX (PICiX) Versions B.02, C.02, C.03, PerformanceBridge Focal Point Version A.01, IntelliVue patient monitors MX100, MX400-MX850, and MP2-MP90 Versions N and prior, IntelliVue X3 and X2 Versions N and prior.
low complexity
philips
CWE-20
6.1
2020-09-10 CVE-2020-15170 Improper Input Validation vulnerability in Ctrip Apollo
apollo-adminservice before version 1.7.1 does not implement access controls.
network
ctrip
CWE-20
6.8
2020-09-09 CVE-2020-6361 Improper Input Validation vulnerability in SAP 3D Visual Enterprise Viewer 9
SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated RLE files received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation.
network
sap
CWE-20
4.3