Vulnerabilities > Improper Validation of Specified Quantity in Input
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-12 | CVE-2022-20689 | Improper Validation of Specified Quantity in Input vulnerability in Cisco products Multiple vulnerabilities in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an unauthenticated, adjacent attacker to cause Cisco Discovery Protocol memory corruption on an affected device. These vulnerabilities are due to missing length validation checks when processing Cisco Discovery Protocol messages. | 8.8 |
| 2022-12-12 | CVE-2022-20690 | Improper Validation of Specified Quantity in Input vulnerability in Cisco products Multiple vulnerabilities in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an unauthenticated, adjacent attacker to cause Cisco Discovery Protocol memory corruption on an affected device. These vulnerabilities are due to missing length validation checks when processing Cisco Discovery Protocol messages. | 8.8 |
| 2022-12-12 | CVE-2022-20691 | Improper Validation of Specified Quantity in Input vulnerability in Cisco products A vulnerability in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Adaptive Telephone Adapter firmware could allow an unauthenticated, adjacent attacker to cause a DoS condition of an affected device. This vulnerability is due to missing length validation of certain Cisco Discovery Protocol packet header fields. | 6.5 |
| 2022-12-01 | CVE-2022-41968 | Improper Validation of Specified Quantity in Input vulnerability in Nextcloud Server Nextcloud Server is an open source personal cloud server. | 5.3 |
| 2022-11-22 | CVE-2022-4111 | Improper Validation of Specified Quantity in Input vulnerability in Tooljet Unrestricted file size limit can lead to DoS in tooljet/tooljet <1.27 by allowing a logged in attacker to upload profile pictures over 2MB. | 6.5 |
| 2022-11-18 | CVE-2022-41896 | Improper Validation of Specified Quantity in Input vulnerability in Google Tensorflow TensorFlow is an open source platform for machine learning. | 7.5 |
| 2022-11-16 | CVE-2022-41877 | Improper Validation of Specified Quantity in Input vulnerability in multiple products FreeRDP is a free remote desktop protocol library and clients. | 4.6 |
| 2022-11-15 | CVE-2022-25727 | Improper Validation of Specified Quantity in Input vulnerability in Qualcomm products Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music | 9.8 |
| 2022-11-11 | CVE-2022-36938 | Improper Validation of Specified Quantity in Input vulnerability in Facebook Redex DexLoader function get_stringidx_fromdex() in Redex prior to commit 3b44c64 can load an out of bound address when loading the string index table, potentially allowing remote code execution during processing of a 3rd party Android APK file. | 9.8 |
| 2022-11-08 | CVE-2022-20445 | Improper Validation of Specified Quantity in Input vulnerability in Google Android In process_service_search_rsp of sdp_discovery.cc, there is a possible out of bounds read due to improper input validation. | 7.5 |