Vulnerabilities > Improper Input Validation

DATE CVE VULNERABILITY TITLE RISK
2022-09-23 CVE-2022-35893 Improper Input Validation vulnerability in Insyde Insydeh2O
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5.
local
low complexity
insyde CWE-20
8.2
2022-09-23 CVE-2022-22423 Improper Input Validation vulnerability in IBM Common Cryptographic Architecture
IBM Common Cryptographic Architecture (CCA 5.x MTM for 4767 and CCA 7.x MTM for 4769) could allow a local user to cause a denial of service due to improper input validation.
local
low complexity
ibm CWE-20
5.5
2022-09-23 CVE-2022-24280 Improper Input Validation vulnerability in Apache Pulsar
Improper Input Validation vulnerability in Proxy component of Apache Pulsar allows an attacker to make TCP/IP connection attempts that originate from the Pulsar Proxy's IP address.
network
low complexity
apache CWE-20
6.5
2022-09-22 CVE-2021-27774 Improper Input Validation vulnerability in Hcltech HCL Digital Experience 8.5/9.0/9.5
User input included in error response, which could be used in a phishing attack.
network
low complexity
hcltech CWE-20
5.4
2022-09-22 CVE-2022-35896 Improper Input Validation vulnerability in Insyde Insydeh2O
An issue SMM memory leak vulnerability in SMM driver (SMRAM was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5.
local
low complexity
insyde CWE-20
6.0
2022-09-20 CVE-2022-37395 Improper Input Validation vulnerability in Huawei Cv81-Wdm FW Firmware 01.70.49.29.46
A Huawei device has an input verification vulnerability.
network
low complexity
huawei CWE-20
7.5
2022-09-19 CVE-2022-23766 Improper Input Validation vulnerability in Bigfile Bigfileagent
An improper input validation vulnerability leading to arbitrary file execution was discovered in BigFileAgent.
network
low complexity
bigfile CWE-20
8.8
2022-09-16 CVE-2021-40017 Improper Input Validation vulnerability in Huawei Emui and Harmonyos
The HW_KEYMASTER module lacks the validity check of the key format.
network
low complexity
huawei CWE-20
critical
9.8
2022-09-16 CVE-2022-35415 Improper Input Validation vulnerability in NI Configuration Manager
An improper input validation in NI System Configuration Manager before 22.5 may allow a privileged user to potentially enable escalation of privilege via local access.
local
low complexity
ni CWE-20
7.8
2022-09-15 CVE-2022-3001 Improper Input Validation vulnerability in Milesight Video Management Systems Firmware 40.7.0.79
This vulnerability exists in Milesight Video Management Systems (VMS), all firmware versions prior to 40.7.0.79-r1, due to improper input handling at camera’s web-based management interface.
network
low complexity
milesight CWE-20
7.5