Vulnerabilities > Improper Input Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-23 | CVE-2022-32226 | Improper Input Validation vulnerability in Rocket.Chat An improper access control vulnerability exists in Rocket.Chat <v5, <v4.8.2 and <v4.7.5 due to input data in the getUsersOfRoom Meteor server method is not type validated, so that MongoDB query operator objects are accepted by the server, so that instead of a matching rid String a$regex query can be executed, bypassing the room access permission check for every but the first matching room. | 4.3 |
| 2022-09-23 | CVE-2022-35893 | Improper Input Validation vulnerability in Insyde Insydeh2O An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. | 8.2 |
| 2022-09-23 | CVE-2022-22423 | Improper Input Validation vulnerability in IBM Common Cryptographic Architecture IBM Common Cryptographic Architecture (CCA 5.x MTM for 4767 and CCA 7.x MTM for 4769) could allow a local user to cause a denial of service due to improper input validation. | 5.5 |
| 2022-09-23 | CVE-2022-24280 | Improper Input Validation vulnerability in Apache Pulsar Improper Input Validation vulnerability in Proxy component of Apache Pulsar allows an attacker to make TCP/IP connection attempts that originate from the Pulsar Proxy's IP address. | 6.5 |
| 2022-09-22 | CVE-2021-27774 | Improper Input Validation vulnerability in Hcltech HCL Digital Experience 8.5/9.0/9.5 User input included in error response, which could be used in a phishing attack. | 5.4 |
| 2022-09-22 | CVE-2022-35896 | Improper Input Validation vulnerability in Insyde Insydeh2O An issue SMM memory leak vulnerability in SMM driver (SMRAM was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. | 6.0 |
| 2022-09-20 | CVE-2022-37395 | Improper Input Validation vulnerability in Huawei Cv81-Wdm FW Firmware 01.70.49.29.46 A Huawei device has an input verification vulnerability. | 7.5 |
| 2022-09-19 | CVE-2022-23766 | Improper Input Validation vulnerability in Bigfile Bigfileagent An improper input validation vulnerability leading to arbitrary file execution was discovered in BigFileAgent. | 8.8 |
| 2022-09-16 | CVE-2021-40017 | Improper Input Validation vulnerability in Huawei Emui and Harmonyos The HW_KEYMASTER module lacks the validity check of the key format. | 9.8 |
| 2022-09-16 | CVE-2022-35415 | Improper Input Validation vulnerability in NI Configuration Manager An improper input validation in NI System Configuration Manager before 22.5 may allow a privileged user to potentially enable escalation of privilege via local access. | 7.8 |