Vulnerabilities > Improper Input Validation
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-09-23 | CVE-2019-15957 | Improper Input Validation vulnerability in Cisco products A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an authenticated, remote attacker with administrative privileges to inject arbitrary commands into the underlying operating system. | 7.2 |
2020-09-23 | CVE-2019-15974 | Improper Input Validation vulnerability in Cisco Managed Services Accelerator A vulnerability in the web interface of Cisco Managed Services Accelerator (MSX) could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. | 6.1 |
2020-09-23 | CVE-2020-3133 | Improper Input Validation vulnerability in Cisco Email Security Appliance A vulnerability in the email message scanning of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass configured filters on the device. | 7.5 |
2020-09-23 | CVE-2020-3130 | Improper Input Validation vulnerability in Cisco Unity Connection A vulnerability in the web management interface of Cisco Unity Connection could allow an authenticated remote attacker to overwrite files on the underlying filesystem. | 6.5 |
2020-09-23 | CVE-2020-3116 | Improper Input Validation vulnerability in Cisco Webex Meetings Online and Webex Meetings Server A vulnerability in the way Cisco Webex applications process Universal Communications Format (UCF) files could allow an attacker to cause a denial of service (DoS) condition. | 5.5 |
2020-09-22 | CVE-2020-4618 | Improper Input Validation vulnerability in IBM Data Risk Manager IBM Data Risk Manager (iDNA) 2.0.6 could allow a privileged user to cause a denial of service due to improper input validation. | 4.9 |
2020-09-21 | CVE-2020-6571 | Improper Input Validation vulnerability in multiple products Insufficient data validation in Omnibox in Google Chrome prior to 85.0.4183.83 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name. | 4.3 |
2020-09-21 | CVE-2020-6567 | Improper Input Validation vulnerability in multiple products Insufficient validation of untrusted input in command line handling in Google Chrome on Windows prior to 85.0.4183.83 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. | 6.5 |
2020-09-19 | CVE-2020-25787 | Improper Input Validation vulnerability in Tt-Rss Tiny RSS 17.4 An issue was discovered in Tiny Tiny RSS (aka tt-rss) before 2020-09-16. | 9.8 |
2020-09-18 | CVE-2020-0325 | Improper Input Validation vulnerability in Google Android 11.0 In NFC, there is a missing bounds check. | 4.4 |