Vulnerabilities > Improper Input Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-17 | CVE-2021-30261 | Improper Input Validation vulnerability in Qualcomm products Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from HLOS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables | 7.8 |
| 2021-09-14 | CVE-2021-23028 | Improper Input Validation vulnerability in F5 products On version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.2, and 13.1.x before 13.1.4, when JSON content profiles are configured for URLs as part of an F5 Advanced Web Application Firewall (WAF)/BIG-IP ASM security policy and applied to a virtual server, undisclosed requests may cause the BIG-IP ASM bd process to terminate. | 7.5 |
| 2021-09-14 | CVE-2021-23030 | Improper Input Validation vulnerability in F5 Big-Ip Application Security Manager On BIG-IP Advanced WAF and BIG-IP ASM version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.3, 13.1.x before 13.1.4.1, and all versions of 12.1.x, when a WebSocket profile is configured on a virtual server, undisclosed requests can cause bd to terminate. | 7.5 |
| 2021-09-14 | CVE-2021-23036 | Improper Input Validation vulnerability in F5 products On version 16.0.x before 16.0.1.2, when a BIG-IP ASM and DataSafe profile are configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. | 7.5 |
| 2021-09-14 | CVE-2021-20569 | Improper Input Validation vulnerability in IBM Security Secret Server IBM Security Secret Server up to 11.0 could allow an attacker to enumerate usernames due to improper input validation. | 5.3 |
| 2021-09-09 | CVE-2021-25452 | Improper Input Validation vulnerability in Google Android 10.0/11.0 An improper input validation vulnerability in loading graph file in DSP driver prior to SMR Sep-2021 Release 1 allows attackers to perform permanent denial of service on the device. | 5.5 |
| 2021-09-09 | CVE-2021-25457 | Improper Input Validation vulnerability in Google Android 10.0/11.0 An improper input validation vulnerability in DSP driver prior to SMR Sep-2021 Release 1 allows local attackers to get a limited kernel memory information. | 3.3 |
| 2021-09-09 | CVE-2021-25465 | Improper Input Validation vulnerability in Samsung Themes An improper scheme check vulnerability in Samsung Themes prior to version 5.2.01 allows attackers to perform Man-in-the-middle attack. | 7.0 |
| 2021-09-09 | CVE-2021-1960 | Improper Input Validation vulnerability in Qualcomm products Improper handling of ASB-C broadcast packets with crafted opcode in LMP can lead to uncontrolled resource consumption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking | 6.5 |
| 2021-09-08 | CVE-2020-24672 | Improper Input Validation vulnerability in ABB Base Software A vulnerability in Base Software for SoftControl allows an attacker to insert and run arbitrary code in a computer running the affected product. | 9.8 |