Vulnerabilities > Improper Input Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-05-18 | CVE-2017-6652 | Improper Input Validation vulnerability in Cisco Telepresence Ix5000 8.2.0Base A vulnerability in the web framework of the Cisco TelePresence IX5000 Series could allow an unauthenticated, remote attacker to access arbitrary files on an affected device. | 7.5 |
| 2017-05-18 | CVE-2017-9065 | Improper Input Validation vulnerability in multiple products In WordPress before 4.7.5, there is a lack of capability checks for post meta data in the XML-RPC API. | 7.5 |
| 2017-05-18 | CVE-2017-9043 | Improper Input Validation vulnerability in GNU Binutils 2.28 readelf.c in GNU Binutils 2017-04-12 has a "shift exponent too large for type unsigned long" issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ELF file. | 7.8 |
| 2017-05-17 | CVE-2017-8849 | Improper Input Validation vulnerability in multiple products smb4k before 2.0.1 allows local users to gain root privileges by leveraging failure to verify arguments to the mount helper DBUS service. | 7.8 |
| 2017-05-17 | CVE-2017-5215 | Improper Input Validation vulnerability in Codextrous B2J Contact 2.1.12 The Codextrous B2J Contact (aka b2j_contact) extension before 2.1.13 for Joomla! allows a rename attack that bypasses a "safe file extension" protection mechanism, leading to remote code execution. | 9.8 |
| 2017-05-16 | CVE-2017-3873 | Improper Input Validation vulnerability in Cisco Aironet Access Point Firmware 8.3102.0 A vulnerability in the Plug-and-Play (PnP) subsystem of the Cisco Aironet 1800, 2800, and 3800 Series Access Points running a Lightweight Access Point (AP) or Mobility Express image could allow an unauthenticated, adjacent attacker to execute arbitrary code with root privileges. | 7.5 |
| 2017-05-16 | CVE-2017-3825 | Improper Input Validation vulnerability in Cisco Telepresence CE and Telepresence TC A vulnerability in the ICMP ingress packet processing of Cisco TelePresence Collaboration Endpoint (CE) Software could allow an unauthenticated, remote attacker to cause the TelePresence endpoint to reload unexpectedly, resulting in a denial of service (DoS) condition. | 7.5 |
| 2017-05-16 | CVE-2014-9933 | Improper Input Validation vulnerability in Google Android Due to missing input validation in all Android releases from CAF using the Linux kernel, HLOS can write to fuses for which it should not have access. | 7.8 |
| 2017-05-15 | CVE-2017-7478 | Improper Input Validation vulnerability in Openvpn OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. | 7.5 |
| 2017-05-15 | CVE-2017-8934 | Improper Input Validation vulnerability in Pcmanfm Project Pcmanfm 1.2.5 PCManFM 1.2.5 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (application unavailability). | 5.5 |