Vulnerabilities > Improper Input Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-14 | CVE-2021-27196 | Improper Input Validation vulnerability in Hitachienergy products Improper Input Validation vulnerability in Hitachi ABB Power Grids Relion 670 Series, Relion 670/650 Series, Relion 670/650/SAM600-IO, Relion 650, REB500, RTU500 Series, FOX615 (TEGO1), MSM, GMS600, PWC600 allows an attacker with access to the IEC 61850 network with knowledge of how to reproduce the attack, as well as the IP addresses of the different IEC 61850 access points (of IEDs/products), to force the device to reboot, which renders the device inoperable for approximately 60 seconds. | 7.5 |
| 2021-06-11 | CVE-2020-12985 | Improper Input Validation vulnerability in AMD Radeon PRO Software and Radeon Software An insufficient pointer validation vulnerability in the AMD Graphics Driver for Windows 10 may lead to escalation of privilege or denial of service. | 7.8 |
| 2021-06-11 | CVE-2020-12986 | Improper Input Validation vulnerability in AMD Radeon PRO Software and Radeon Software An insufficient pointer validation vulnerability in the AMD Graphics Driver for Windows 10 may cause arbitrary code execution in the kernel, leading to escalation of privilege or denial of service. | 7.8 |
| 2021-06-11 | CVE-2021-0481 | Improper Input Validation vulnerability in Google Android In onActivityResult of EditUserPhotoController.java, there is a possible access of unauthorized files due to an unexpected URI handler. | 7.8 |
| 2021-06-11 | CVE-2021-0485 | Improper Input Validation vulnerability in Google Android 11.0 In getMinimalSize of PipBoundsAlgorithm.java, there is a possible bypass of restrictions on background processes due to a permissions bypass. | 7.8 |
| 2021-06-11 | CVE-2021-22765 | Improper Input Validation vulnerability in Schneider-Electric products A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code execution via a specially crafted HTTP packet | 9.8 |
| 2021-06-11 | CVE-2021-25411 | Improper Input Validation vulnerability in Google Android 10.0/11.0 Improper address validation vulnerability in RKP api prior to SMR JUN-2021 Release 1 allows root privileged local attackers to write read-only kernel memory. | 4.4 |
| 2021-06-11 | CVE-2021-25415 | Improper Input Validation vulnerability in Google Android 10.0/11.0 Assuming EL1 is compromised, an improper address validation in RKP prior to SMR JUN-2021 Release 1 allows local attackers to remap EL2 memory as writable. | 5.5 |
| 2021-06-11 | CVE-2021-25416 | Improper Input Validation vulnerability in Google Android 10.0/11.0 Assuming EL1 is compromised, an improper address validation in RKP prior to SMR JUN-2021 Release 1 allows local attackers to create executable kernel page outside code area. | 6.5 |
| 2021-06-11 | CVE-2021-25683 | Improper Input Validation vulnerability in Canonical Apport It was discovered that the get_starttime() function in data/apport did not properly parse the /proc/pid/stat file from the kernel. | 7.8 |