Vulnerabilities > Improper Input Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-18 | CVE-2023-22439 | Improper Input Validation vulnerability in Gallagher Command Centre and Controller 6000 Firmware Improper input validation of a large HTTP request in the Controller 6000 and Controller 7000 optional diagnostic web interface (Port 80) can be used to perform a Denial of Service of the diagnostic web interface. This issue affects: Gallagher Controller 6000 and 7000 8.90 prior to vCR8.90.231204a (distributed in 8.90.1620 (MR2)), 8.80 prior to vCR8.80.231204a (distributed in 8.80.1369 (MR3)), 8.70 prior to vCR8.70.231204a (distributed in 8.70.2375 (MR5)), 8.60 prior to vCR8.60.231116a (distributed in 8.60.2550 (MR7)), all versions of 8.50 and prior. | 4.3 |
| 2023-12-18 | CVE-2023-32727 | Improper Input Validation vulnerability in Zabbix Server 7.0.0 An attacker who has the privilege to configure Zabbix items can use function icmpping() with additional malicious command inside it to execute arbitrary code on the current Zabbix server. | 7.2 |
| 2023-12-15 | CVE-2023-48608 | Improper Input Validation vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.18 and earlier are affected by an Improper Input Validation vulnerability. | 3.5 |
| 2023-12-15 | CVE-2023-6835 | Improper Input Validation vulnerability in Wso2 API Manager and IOT Server Multiple WSO2 products have been identified as vulnerable due to lack of server-side input validation in the Forum feature, API rating could be manipulated. | 5.3 |
| 2023-12-15 | CVE-2023-48387 | Improper Input Validation vulnerability in Twca Jcicsecuritytool 4.2.3.32 TAIWAN-CA(TWCA) JCICSecurityTool fails to check the source website and access locations when executing multiple Registry-related functions. | 8.8 |
| 2023-12-07 | CVE-2023-49958 | Improper Input Validation vulnerability in Dallmann-Consulting Open Charge Point Protocol An issue was discovered in Dalmann OCPP.Core through 1.2.0 for OCPP (Open Charge Point Protocol) for electric vehicles. | 7.5 |
| 2023-12-05 | CVE-2023-33042 | Improper Input Validation vulnerability in Qualcomm products Transient DOS in Modem after RRC Setup message is received. | 7.5 |
| 2023-12-05 | CVE-2023-48693 | Improper Input Validation vulnerability in Microsoft Azure Rtos Threadx Azure RTOS ThreadX is an advanced real-time operating system (RTOS) designed specifically for deeply embedded applications. | 9.8 |
| 2023-12-04 | CVE-2023-40097 | Improper Input Validation vulnerability in Google Android In hasPermissionForActivity of PackageManagerHelper.java, there is a possible URI grant due to improper input validation. | 7.8 |
| 2023-11-30 | CVE-2023-49095 | Improper Input Validation vulnerability in Nexryai Nexkey 12.121.9 nexkey is a microblogging platform. | 7.5 |