Vulnerabilities > Improper Input Validation

DATE CVE VULNERABILITY TITLE RISK
2021-04-02 CVE-2021-21532 Improper Input Validation vulnerability in Dell Wyse Thinos 8.6
Dell Wyse ThinOS 8.6 MR9 contains remediation for an improper management server validation vulnerability that could be potentially exploited to redirect a client to an attacker-controlled management server, thus allowing the attacker to change the device configuration or certificate file.
low complexity
dell CWE-20
6.3
2021-04-02 CVE-2021-1748 Improper Input Validation vulnerability in Apple products
A validation issue was addressed with improved input sanitization.
network
low complexity
apple CWE-20
8.8
2021-04-02 CVE-2020-10001 Improper Input Validation vulnerability in multiple products
An input validation issue was addressed with improved memory handling.
local
low complexity
apple debian CWE-20
5.5
2021-04-02 CVE-2021-30004 Improper Input Validation vulnerability in W1.Fi Hostapd and WPA Supplicant
In wpa_supplicant and hostapd 2.9, forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c.
network
low complexity
w1-fi CWE-20
5.3
2021-03-30 CVE-2021-29418 Improper Input Validation vulnerability in Netmask Project Netmask
The netmask package before 2.0.1 for Node.js mishandles certain unexpected characters in an IP address string, such as an octal digit of 9.
network
low complexity
netmask-project CWE-20
5.3
2021-03-24 CVE-2021-1469 Improper Input Validation vulnerability in Cisco Jabber
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept protected network traffic, or cause a denial of service (DoS) condition.
network
low complexity
cisco CWE-20
7.2
2021-03-24 CVE-2020-7839 Improper Input Validation vulnerability in Markany Maepsbroker 2.5.0.31
In MaEPSBroker 2.5.0.31 and prior, a command injection vulnerability caused by improper input validation checks when parsing brokerCommand parameter.
network
low complexity
markany CWE-20
critical
9.8
2021-03-18 CVE-2021-20631 Improper Input Validation vulnerability in Cybozu Office
Improper input validation vulnerability in Custom App of Cybozu Office 10.0.0 to 10.8.4 allows authenticated attacker to alter the data of Custom App via unspecified vectors.
network
low complexity
cybozu CWE-20
6.5
2021-03-12 CVE-2021-21726 Improper Input Validation vulnerability in ZTE products
Some ZTE products have an input verification vulnerability in the diagnostic function interface.
local
low complexity
zte CWE-20
2.3
2021-03-10 CVE-2021-0377 Improper Input Validation vulnerability in Google Android 11.0
In DeltaPerformer::Write of delta_performer.cc, there is a possible use of untrusted input due to improper input validation.
local
low complexity
google CWE-20
5.5