Vulnerabilities > Improper Input Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-06 | CVE-2021-29136 | Improper Input Validation vulnerability in multiple products Open Container Initiative umoci before 0.4.7 allows attackers to overwrite arbitrary host paths via a crafted image that causes symlink traversal when "umoci unpack" or "umoci raw unpack" is used. | 5.5 |
| 2021-04-02 | CVE-2021-21533 | Improper Input Validation vulnerability in Dell Wyse Management Suite Wyse Management Suite versions up to 3.2 contains a vulnerability wherein a malicious authenticated user can cause a denial of service in the job status retrieval page, also affecting other users that would have normally access to the same subset of job details | 4.3 |
| 2021-04-02 | CVE-2021-21532 | Improper Input Validation vulnerability in Dell Wyse Thinos 8.6 Dell Wyse ThinOS 8.6 MR9 contains remediation for an improper management server validation vulnerability that could be potentially exploited to redirect a client to an attacker-controlled management server, thus allowing the attacker to change the device configuration or certificate file. | 6.3 |
| 2021-04-02 | CVE-2021-1748 | Improper Input Validation vulnerability in Apple products A validation issue was addressed with improved input sanitization. | 8.8 |
| 2021-04-02 | CVE-2020-10001 | Improper Input Validation vulnerability in multiple products An input validation issue was addressed with improved memory handling. | 5.5 |
| 2021-04-02 | CVE-2021-30004 | Improper Input Validation vulnerability in W1.Fi Hostapd and WPA Supplicant In wpa_supplicant and hostapd 2.9, forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c. | 5.3 |
| 2021-03-30 | CVE-2021-29418 | Improper Input Validation vulnerability in Netmask Project Netmask The netmask package before 2.0.1 for Node.js mishandles certain unexpected characters in an IP address string, such as an octal digit of 9. | 5.3 |
| 2021-03-24 | CVE-2021-1469 | Improper Input Validation vulnerability in Cisco Jabber Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition. | 7.2 |
| 2021-03-24 | CVE-2020-7839 | Improper Input Validation vulnerability in Markany Maepsbroker 2.5.0.31 In MaEPSBroker 2.5.0.31 and prior, a command injection vulnerability caused by improper input validation checks when parsing brokerCommand parameter. | 9.8 |
| 2021-03-18 | CVE-2021-20631 | Improper Input Validation vulnerability in Cybozu Office Improper input validation vulnerability in Custom App of Cybozu Office 10.0.0 to 10.8.4 allows authenticated attacker to alter the data of Custom App via unspecified vectors. | 6.5 |