Vulnerabilities > Improper Validation of Integrity Check Value

DATE CVE VULNERABILITY TITLE RISK
2023-03-06 CVE-2022-45142 Improper Validation of Integrity Check Value vulnerability in Heimdal Project Heimdal 7.7.1/7.8.0
The fix for CVE-2022-3437 included changing memcmp to be constant time and a workaround for a compiler bug by adding "!= 0" comparisons to the result of memcmp.
network
low complexity
heimdal-project CWE-354
7.5
2023-02-08 CVE-2022-45191 Improper Validation of Integrity Check Value vulnerability in Microchip Rn4870 Firmware 1.43
An issue was discovered on Microchip RN4870 1.43 devices.
low complexity
microchip CWE-354
6.5
2023-02-02 CVE-2023-23119 Improper Validation of Integrity Check Value vulnerability in UI Af-2X Firmware
The use of the cyclic redundancy check (CRC) algorithm for integrity check during firmware update makes Ubiquiti airFiber AF2X Radio firmware version 3.2.2 and earlier vulnerable to firmware modification attacks.
network
high complexity
ui CWE-354
5.9
2023-02-02 CVE-2023-23120 Improper Validation of Integrity Check Value vulnerability in Trendnet Tv-Ip651Wi Firmware
The use of the cyclic redundancy check (CRC) algorithm for integrity check during firmware update makes TRENDnet TV-IP651WI Network Camera firmware version v1.07.01 and earlier vulnerable to firmware modification attacks.
network
high complexity
trendnet CWE-354
5.9
2022-12-19 CVE-2022-46402 Improper Validation of Integrity Check Value vulnerability in Microchip products
The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) accepts PairCon_rmSend with incorrect values.
low complexity
microchip CWE-354
6.5
2022-10-11 CVE-2022-36360 Improper Validation of Integrity Check Value vulnerability in Siemens Logo!8 BM Fs-05 Firmware and Logo! 8 BM Firmware
A vulnerability has been identified in LOGO! 8 BM (incl.
network
low complexity
siemens CWE-354
7.5
2022-09-20 CVE-2022-38955 Improper Validation of Integrity Check Value vulnerability in Netgear Wpn824Ext Firmware 1.1.11.1.9
An exploitable firmware modification vulnerability was discovered on the Netgear WPN824EXT WiFi Range Extender.
network
high complexity
netgear CWE-354
7.5
2022-09-20 CVE-2022-38956 Improper Validation of Integrity Check Value vulnerability in Netgear Wpn824Ext Firmware 1.1.11.1.9
An exploitable firmware downgrade vulnerability was discovered on the Netgear WPN824EXT WiFi Range Extender.
network
high complexity
netgear CWE-354
5.3
2022-08-15 CVE-2022-35961 Improper Validation of Integrity Check Value vulnerability in Openzeppelin Contracts and Contracts Upgradeable
OpenZeppelin Contracts is a library for secure smart contract development.
network
low complexity
openzeppelin CWE-354
6.5
2022-07-12 CVE-2022-33711 Improper Validation of Integrity Check Value vulnerability in Samsung Android USB Driver
Improper validation of integrity check vulnerability in Samsung USB Driver Windows Installer for Mobile Phones prior to version 1.7.56.0 allows local attackers to delete arbitrary directory using directory junction.
local
low complexity
samsung CWE-354
2.1