Vulnerabilities > Improper Input Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-11-12 | CVE-2020-8756 | Improper Input Validation vulnerability in Intel Converged Security and Manageability Engine Improper input validation in subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable escalation of privilege via local access. | 6.7 |
| 2020-11-12 | CVE-2020-7472 | Improper Input Validation vulnerability in Sugarcrm An authorization bypass and PHP local-file-include vulnerability in the installation component of SugarCRM before 8.0, 8.0 before 8.0.7, 9.0 before 9.0.4, and 10.0 before 10.0.0 allows for unauthenticated remote code execution against a configured SugarCRM instance via crafted HTTP requests. | 9.8 |
| 2020-11-12 | CVE-2020-12322 | Improper Input Validation vulnerability in Intel products Improper input validation in some Intel(R) Wireless Bluetooth(R) products before version 21.110 may allow an unauthenticated user to potentially enable denial of service via adjacent access. | 6.5 |
| 2020-11-12 | CVE-2020-12314 | Improper Input Validation vulnerability in Intel Proset/Wireless Wifi Improper input validation in some Intel(R) PROSet/Wireless WiFi products before version 21.110 may allow an unauthenticated user to potentially enable denial of service via adjacent access. | 6.5 |
| 2020-11-12 | CVE-2020-0590 | Improper Input Validation vulnerability in multiple products Improper input validation in BIOS firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2020-11-12 | CVE-2020-11201 | Improper Input Validation vulnerability in Qualcomm products Arbitrary access to DSP memory due to improper check in loaded library for data received from CPU side' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in QCM6125, QCS410, QCS603, QCS605, QCS610, QCS6125, SA6145P, SA6155, SA6155P, SA8155, SA8155P, SDA640, SDA845, SDM640, SDM830, SDM845, SDX50M, SDX55, SDX55M, SM6125, SM6150, SM6250, SM6250P, SM7125, SM7150, SM7150P, SM8150, SM8150P | 7.8 |
| 2020-11-10 | CVE-2020-0442 | Improper Input Validation vulnerability in Google Android In Message and toBundle of Notification.java, there is a possible UI slowdown or crash due to improper input validation. | 7.5 |
| 2020-11-09 | CVE-2020-8268 | Improper Input Validation vulnerability in Json8-Merge-Patch Project Json8-Merge-Patch Prototype pollution vulnerability in json8-merge-patch npm package < 1.0.3 may allow attackers to inject or modify methods and properties of the global object constructor. | 7.5 |
| 2020-11-09 | CVE-2020-28349 | Improper Input Validation vulnerability in Chirpstack Network Server 3.9.0 An inaccurate frame deduplication process in ChirpStack Network Server 3.9.0 allows a malicious gateway to perform uplink Denial of Service via malformed frequency attributes in CollectAndCallOnceCollect in internal/uplink/collect.go. | 6.5 |
| 2020-11-06 | CVE-2020-5643 | Improper Input Validation vulnerability in Cybozu Garoon 5.0.0/5.0.1/5.0.2 Improper input validation vulnerability in Cybozu Garoon 5.0.0 to 5.0.2 allows a remote authenticated attacker to delete some data of the bulletin board via unspecified vector. | 6.5 |