Vulnerabilities > Improper Input Validation

DATE CVE VULNERABILITY TITLE RISK
2023-03-27 CVE-2023-25865 Adobe Substance 3D Stager versions 2.0.0 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
CWE-20
7.8
2023-03-27 CVE-2023-25867 Adobe Substance 3D Stager versions 2.0.0 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
CWE-20
7.8
2023-03-27 CVE-2022-47924 An high privileged attacker may pass crafted arguments to the validate function of csaf-validator-lib of a locally installed Secvisogram in versions < 0.1.0 wich can result in arbitrary code execution and DoS once the users triggers the validation.
local
low complexity
CWE-20
6.5
2023-03-27 CVE-2022-47925 The validate JSON endpoint of the Secvisogram csaf-validator-service in versions < 0.1.0 processes tests with unexpected names.
network
low complexity
CWE-20
5.3
2023-03-22 CVE-2023-25859 Improper Input Validation vulnerability in Adobe Illustrator
Illustrator version 26.5.2 (and earlier) and 27.2.0 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-20
7.8
2023-03-21 CVE-2023-27984 Improper Input Validation vulnerability in Schneider-Electric Custom Reports, Igss Dashboard and Igss Data Server
A CWE-20: Improper Input Validation vulnerability exists in Custom Reports that could cause a macro to be executed, potentially leading to remote code execution when a user opens a malicious report file planted by an attacker.
network
low complexity
schneider-electric CWE-20
8.8
2023-03-16 CVE-2023-21453 Improper Input Validation vulnerability in Samsung Android 13.0
Improper input validation vulnerability in SoftSim TA prior to SMR Mar-2023 Release 1 allows local attackers access to protected data.
local
low complexity
samsung CWE-20
5.5
2023-03-16 CVE-2023-24571 Improper Input Validation vulnerability in Dell Embedded BOX PC 3000 Firmware 1.16.0
Dell BIOS contains an Improper Input Validation vulnerability.
local
low complexity
dell CWE-20
6.7
2023-03-10 CVE-2020-5002 Improper Input Validation vulnerability in IBM Financial Transaction Manager
IBM Financial Transaction Manager 3.2.0 through 3.2.10 could allow an authenticated user to perform unauthorized actions due to improper validation.
network
low complexity
ibm CWE-20
8.8
2023-03-10 CVE-2023-24975 Improper Input Validation vulnerability in IBM Spectrum Symphony 7.3.0
IBM Spectrum Symphony 7.3 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers.
network
low complexity
ibm CWE-20
6.1