Vulnerabilities > Improper Input Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-28 | CVE-2020-14273 | Improper Input Validation vulnerability in Hcltech Domino 10.0.1/11.0.0/11.0.1 HCL Domino is susceptible to a Denial of Service (DoS) vulnerability due to insufficient validation of input to its public API. | 7.5 |
| 2020-12-24 | CVE-2020-9137 | Improper Input Validation vulnerability in Huawei products There is a privilege escalation vulnerability in some versions of CloudEngine 12800,CloudEngine 5800,CloudEngine 6800 and CloudEngine 7800. | 6.7 |
| 2020-12-24 | CVE-2020-27727 | Improper Input Validation vulnerability in F5 products On BIG-IP version 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.4, when an authenticated administrative user installs RPMs using the iAppsLX REST installer, the BIG-IP system does not sufficiently validate user input, allowing the user read access to the filesystem. | 4.9 |
| 2020-12-22 | CVE-2020-24679 | Improper Input Validation vulnerability in ABB Symphony + Historian and Symphony + Operations A S+ Operations and S+ Historian service is subject to a DoS by special crafted messages. | 9.8 |
| 2020-12-22 | CVE-2019-11781 | Improper Input Validation vulnerability in Odoo Improper input validation in portal component in Odoo Community 12.0 and earlier and Odoo Enterprise 12.0 and earlier, allows remote attackers to trick victims into modifying their account via crafted links, leading to privilege escalation. | 8.8 |
| 2020-12-22 | CVE-2018-15632 | Improper Input Validation vulnerability in Odoo Improper input validation in database creation logic in Odoo Community 11.0 and earlier and Odoo Enterprise 11.0 and earlier, allows remote attackers to initialize an empty database on which they can connect with default credentials. | 9.1 |
| 2020-12-21 | CVE-2020-3999 | Improper Input Validation vulnerability in VMWare Esxi, Fusion and Workstation VMware ESXi (7.0 prior to ESXi70U1c-17325551), VMware Workstation (16.x prior to 16.0 and 15.x prior to 15.5.7), VMware Fusion (12.x prior to 12.0 and 11.x prior to 11.5.7) and VMware Cloud Foundation contain a denial of service vulnerability due to improper input validation in GuestInfo. | 6.5 |
| 2020-12-18 | CVE-2020-27154 | Improper Input Validation vulnerability in Mitel Businesscti Enterprise 6.4.10/7.0.0/7.0.2 The chat window of Mitel BusinessCTI Enterprise (MBC-E) Client for Windows before 6.4.11 and 7.x before 7.0.3 could allow an attacker to gain access to user information by sending arbitrary code, due to improper input validation. | 8.8 |
| 2020-12-18 | CVE-2020-25611 | Improper Input Validation vulnerability in Mitel Micollab The AWV portal of Mitel MiCollab before 9.2 could allow an attacker to gain access to conference information by sending arbitrary code due to improper input validation, aka XSS. | 6.1 |
| 2020-12-18 | CVE-2020-25606 | Improper Input Validation vulnerability in Mitel Micollab The AWV component of Mitel MiCollab before 9.2 could allow an attacker to view system information by sending arbitrary code due to improper input validation, aka XSS. | 6.1 |