Vulnerabilities > Improper Input Validation

DATE CVE VULNERABILITY TITLE RISK
2020-09-18 CVE-2020-0325 Improper Input Validation vulnerability in Google Android 11.0
In NFC, there is a missing bounds check.
local
low complexity
google CWE-20
4.4
4.4
2020-09-17 CVE-2020-0363 Improper Input Validation vulnerability in Google Android 11.0
In libmedia, there is a possible resource exhaustion due to improper input validation.
network
low complexity
google CWE-20
6.5
6.5
2020-09-17 CVE-2020-0362 Improper Input Validation vulnerability in Google Android 11.0
In libstagefright, there is a possible resource exhaustion due to improper input validation.
network
low complexity
google CWE-20
6.5
6.5
2020-09-17 CVE-2020-0351 Improper Input Validation vulnerability in Google Android 11.0
In libstagefright, there is possible CPU exhaustion due to improper input validation.
network
low complexity
google CWE-20
6.5
6.5
2020-09-17 CVE-2020-0333 Improper Input Validation vulnerability in Google Android 11.0
In UrlQuerySanitizer, there is a possible improper input validation.
network
low complexity
google CWE-20
critical
 9.8
9.8
2020-09-17 CVE-2020-0320 Improper Input Validation vulnerability in Google Android 11.0
In libstagefright, there is a possible resource exhaustion due to improper input validation.
network
low complexity
google CWE-20
6.5
6.5
2020-09-17 CVE-2020-0301 Improper Input Validation vulnerability in Google Android 11.0
In libstagefright, there is a possible resource exhaustion due to improper input validation.
network
low complexity
google CWE-20
6.5
6.5
2020-09-17 CVE-2020-0287 Improper Input Validation vulnerability in Google Android 11.0
In libmkvextractor, there is a possible resource exhaustion due to a missing bounds check.
network
low complexity
google CWE-20
6.5
6.5
2020-09-17 CVE-2020-14338 Improper Input Validation vulnerability in Redhat Xerces 2.11.0/2.12.0
A flaw was found in Wildfly's implementation of Xerces, specifically in the way the XMLSchemaValidator class in the JAXP component of Wildfly enforced the "use-grammar-pool-only" feature.
network
low complexity
redhat CWE-20
5.3
5.3
2020-09-16 CVE-2020-24377 Improper Input Validation vulnerability in Free products
A DNS rebinding vulnerability in the Freebox OS web interface in Freebox Server before 4.2.3.
network
low complexity
free CWE-20
critical
 9.6
9.6