Vulnerabilities > Improper Input Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-23 | CVE-2021-27420 | Improper Input Validation vulnerability in GE products GE UR firmware versions prior to version 8.1x web server task does not properly handle receipt of unsupported HTTP verbs, resulting in the web server becoming temporarily unresponsive after receiving a series of unsupported HTTP requests. | 5.3 |
| 2022-03-23 | CVE-2021-4219 | Improper Input Validation vulnerability in Imagemagick A flaw was found in ImageMagick. | 5.5 |
| 2022-03-23 | CVE-2021-44040 | Improper Input Validation vulnerability in multiple products Improper Input Validation vulnerability in request line parsing of Apache Traffic Server allows an attacker to send invalid requests. | 7.5 |
| 2022-03-22 | CVE-2022-27228 | Improper Input Validation vulnerability in Bitrix24 20.0.0/20.0.975 In the vote (aka "Polls, Votes") module before 21.0.100 of Bitrix Site Manager, a remote unauthenticated attacker can execute arbitrary code. | 9.8 |
| 2022-03-18 | CVE-2022-22588 | Improper Input Validation vulnerability in Apple Iphone OS A resource exhaustion issue was addressed with improved input validation. | 5.5 |
| 2022-03-16 | CVE-2020-25721 | Improper Input Validation vulnerability in Samba Kerberos acceptors need easy access to stable AD identifiers (eg objectSid). | 8.8 |
| 2022-03-16 | CVE-2021-39701 | Improper Input Validation vulnerability in Google Android 11.0/12.0 In serviceConnection of ControlsProviderLifecycleManager.kt, there is a possible way to keep service running in foreground without notification or permission due to improper input validation. | 7.8 |
| 2022-03-11 | CVE-2022-25839 | Improper Input Validation vulnerability in Url-Js Project Url-Js The package url-js before 2.1.0 are vulnerable to Improper Input Validation due to improper parsing, which makes it is possible for the hostname to be spoofed. | 5.3 |
| 2022-03-11 | CVE-2018-25031 | Improper Input Validation vulnerability in Smartbear Swagger UI Swagger UI 4.1.2 and earlier could allow a remote attacker to conduct spoofing attacks. | 4.3 |
| 2022-03-10 | CVE-2021-38910 | Improper Input Validation vulnerability in IBM Datapower Gateway IBM DataPower Gateway V10CD, 10.0.1, and 2108.4.1 could allow a remote attacker to bypass security restrictions, caused by the improper validation of input. | 5.3 |