Vulnerabilities > Improper Input Validation

DATE CVE VULNERABILITY TITLE RISK
2024-10-01 CVE-2024-9407 A vulnerability exists in the bind-propagation option of the Dockerfile RUN --mount instruction.
local
high complexity
CWE-20
4.7
2024-09-10 CVE-2024-37965 Microsoft SQL Server Elevation of Privilege Vulnerability
network
low complexity
CWE-20
8.8
2024-07-26 CVE-2024-25090 Improper Input Validation vulnerability in Apache Roller
Insufficient input validation and sanitation in Profile name & screenname, Bookmark name & description and blogroll name features in all versions of Apache Roller on all platforms allows an authenticated user to perform an XSS attack.
network
low complexity
apache CWE-20
5.4
2024-07-17 CVE-2024-23469 Improper Input Validation vulnerability in Solarwinds Access Rights Manager
SolarWinds Access Rights Manager (ARM) is susceptible to a Remote Code Execution vulnerability.
network
low complexity
solarwinds CWE-20
critical
9.8
2024-07-11 CVE-2024-5681 Improper Input Validation vulnerability in Schneider-Electric Ecostruxure Foxboro DCS Control Core Services
CWE-20: Improper Input Validation vulnerability exists that could cause local denial-of-service, privilege escalation, and potentially kernel execution when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver.
local
low complexity
schneider-electric CWE-20
7.8
2024-07-02 CVE-2024-0158 Improper Input Validation vulnerability in Dell products
Dell BIOS contains an improper input validation vulnerability.
local
low complexity
dell CWE-20
6.7
2024-06-13 CVE-2024-34108 Improper Input Validation vulnerability in Adobe Commerce and Magento
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user.
network
low complexity
adobe CWE-20
7.2
2024-06-13 CVE-2024-34109 Improper Input Validation vulnerability in Adobe Commerce and Magento
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user.
network
low complexity
adobe CWE-20
7.2
2024-06-13 CVE-2024-26127 Improper Input Validation vulnerability in Adobe Experience Manager
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation vulnerability that could result in a security feature bypass.
network
low complexity
adobe CWE-20
3.5
2024-06-13 CVE-2024-36226 Improper Input Validation vulnerability in Adobe Experience Manager
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation vulnerability that could result in a security feature bypass.
network
low complexity
adobe CWE-20
3.5