Vulnerabilities > Improper Input Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-24 | CVE-2017-5041 | Improper Input Validation vulnerability in Google Chrome Google Chrome prior to 57.0.2987.100 incorrectly handled back-forward navigation, which allowed a remote attacker to display incorrect information for a site via a crafted HTML page. | 4.3 |
| 2017-04-24 | CVE-2017-2340 | Improper Input Validation vulnerability in Juniper Junos 15.1/16.1 On Juniper Networks Junos OS 15.1 releases from 15.1R3 to 15.1R4, 16.1 prior to 16.1R3, on M/MX platforms where Enhanced Subscriber Management for DHCPv6 subscribers is configured, a vulnerability in processing IPv6 ND packets originating from subscribers and destined to M/MX series routers can result in a PFE (Packet Forwarding Engine) hang or crash. | 5.3 |
| 2017-04-24 | CVE-2017-2313 | Improper Input Validation vulnerability in Juniper Junos Juniper Networks devices running affected Junos OS versions may be impacted by the receipt of a crafted BGP UPDATE which can lead to an rpd (routing process daemon) crash and restart. | 7.5 |
| 2017-04-21 | CVE-2016-3109 | Improper Input Validation vulnerability in Shopware The backend/Login/load/ script in Shopware before 5.1.5 allows remote attackers to execute arbitrary code. | 9.8 |
| 2017-04-21 | CVE-2016-2173 | Improper Input Validation vulnerability in multiple products org.springframework.core.serializer.DefaultDeserializer in Spring AMQP before 1.5.5 allows remote attackers to execute arbitrary code. | 9.8 |
| 2017-04-21 | CVE-2016-4841 | Improper Input Validation vulnerability in Cybozu Mailwise Cybozu Mailwise before 5.4.0 allows remote attackers to inject arbitrary email headers. | 4.3 |
| 2017-04-21 | CVE-2017-7220 | Improper Input Validation vulnerability in Opentext Documentum Content Server OpenText Documentum Content Server allows superuser access via sys_obj_save or save of a crafted object, followed by an unauthorized "UPDATE dm_dbo.dm_user_s SET user_privileges=16" command, aka an "RPC save-commands" attack. | 8.8 |
| 2017-04-20 | CVE-2017-6619 | Improper Input Validation vulnerability in Cisco Integrated Management Controller Supervisor 3.0(1C) A vulnerability in the web-based GUI of Cisco Integrated Management Controller (IMC) 3.0(1c) could allow an authenticated, remote attacker to execute arbitrary commands on an affected system. | 8.8 |
| 2017-04-20 | CVE-2017-6616 | Improper Input Validation vulnerability in Cisco Integrated Management Controller Supervisor 3.0(1C) A vulnerability in the web-based GUI of Cisco Integrated Management Controller (IMC) 3.0(1c) could allow an authenticated, remote attacker to execute arbitrary code on an affected system. | 8.8 |
| 2017-04-20 | CVE-2017-6613 | Improper Input Validation vulnerability in Cisco Prime Network Registrar A vulnerability in the DNS input packet processor for Cisco Prime Network Registrar could allow an unauthenticated, remote attacker to cause the DNS process to momentarily restart, which could lead to a partial denial of service (DoS) condition on the affected system. | 5.8 |