Vulnerabilities > Improper Input Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-03 | CVE-2021-27921 | Improper Input Validation vulnerability in multiple products Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for a BLP container, and thus an attempted memory allocation can be very large. | 7.5 |
| 2021-03-01 | CVE-2018-25004 | Improper Input Validation vulnerability in Mongodb A user authorized to performing a specific type of query may trigger a denial of service by issuing a generic explain command on a find query. | 4.9 |
| 2021-02-26 | CVE-2021-0404 | Improper Input Validation vulnerability in Google Android 11.0 In mobile_log_d, there is a possible information disclosure due to improper input validation. | 4.4 |
| 2021-02-22 | CVE-2020-11194 | Improper Input Validation vulnerability in Qualcomm products Possible out of bound access in TA while processing a command from NS side due to improper length check of response buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking | 7.8 |
| 2021-02-17 | CVE-2020-7849 | Improper Input Validation vulnerability in Uprism Curix 1.3.6 A vulnerability of uPrism.io CURIX(Video conferecing solution) could allow an unauthenticated attacker to execute arbitrary code. | 8.8 |
| 2021-02-17 | CVE-2020-24505 | Improper Input Validation vulnerability in Intel Ethernet Network Adapter 700 Firmware Insufficient input validation in the firmware for the Intel(R) 700-series of Ethernet Controllers before version 7.3 may allow a privileged user to potentially enable denial of service via local access. | 4.4 |
| 2021-02-17 | CVE-2020-24502 | Improper Input Validation vulnerability in Intel Ethernet Network Adapter E810 Firmware Improper input validation in some Intel(R) Ethernet E810 Adapter drivers for Linux before version 1.0.4 and before version 1.4.29.0 for Windows*, may allow an authenticated user to potentially enable a denial of service via local access. | 5.5 |
| 2021-02-17 | CVE-2020-24496 | Improper Input Validation vulnerability in Intel products Insufficient input validation in the firmware for Intel(R) 722 Ethernet Controllers before version 1.4.3 may allow a privileged user to potentially enable denial of service via local access. | 4.4 |
| 2021-02-17 | CVE-2020-24491 | Improper Input Validation vulnerability in Intel Core I3, Core I5 and Core I7 Debug message containing addresses of memory transactions in some Intel(R) 10th Generation Core Processors supporting SGX may allow a privileged user to potentially enable information disclosure via local access. | 4.4 |
| 2021-02-17 | CVE-2020-24453 | Improper Input Validation vulnerability in Intel Epid Software Development KIT Improper input validation in the Intel(R) EPID SDK before version 8, may allow an authenticated user to potentially enable an escalation of privilege via local access. | 7.8 |