Vulnerabilities > Improper Input Validation

DATE CVE VULNERABILITY TITLE RISK
2023-03-07 CVE-2023-20650 Improper Input Validation vulnerability in Google Android 12.0/13.0
In apu, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-20
6.7
2023-03-07 CVE-2023-20651 Improper Input Validation vulnerability in Google Android 12.0/13.0
In apu, there is a possible out of bounds read due to a missing bounds check.
local
low complexity
google CWE-20
4.4
2023-02-28 CVE-2023-20932 Improper Input Validation vulnerability in Google Android
In onCreatePreferences of EditInfoFragment.java, there is a possible way to read contacts belonging to other users due to improper input validation.
local
low complexity
google CWE-20
3.3
2023-02-24 CVE-2023-25696 Improper Input Validation vulnerability in Apache Apache-Airflow-Providers-Apache-Hive
Improper Input Validation vulnerability in the Apache Airflow Hive Provider. This issue affects Apache Airflow Hive Provider versions before 5.1.3.
network
low complexity
apache CWE-20
critical
9.8
2023-02-17 CVE-2023-24329 Improper Input Validation vulnerability in multiple products
An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters.
network
low complexity
python fedoraproject netapp CWE-20
7.5
2023-02-16 CVE-2022-29494 Improper Input Validation vulnerability in Intel Openbmc Egs0.91179
Improper input validation in firmware for OpenBMC in some Intel(R) platforms before versions egs-0.91-179 and bhs-04-45 may allow an authenticated user to potentially enable denial of service via network access.
network
low complexity
intel CWE-20
6.5
2023-02-16 CVE-2022-33190 Improper Input Validation vulnerability in Intel System Usage Report
Improper input validation in the Intel(R) SUR software before version 2.4.8902 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-20
7.8
2023-02-16 CVE-2022-33964 Improper Input Validation vulnerability in Intel System Usage Report
Improper input validation in the Intel(R) SUR software before version 2.4.8902 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
network
low complexity
intel CWE-20
critical
9.8
2023-02-16 CVE-2022-26837 Improper Input Validation vulnerability in Intel products
Improper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
local
high complexity
intel CWE-20
7.0
2023-02-16 CVE-2022-27892 Improper Input Validation vulnerability in Palantir Gotham 3.22.10.4
Palantir Gotham versions prior to 3.22.11.2 included an unauthenticated endpoint that would have allowed an attacker to exhaust the memory of the Gotham dispatch service.
network
low complexity
palantir CWE-20
7.5