Vulnerabilities > Insufficient Verification of Data Authenticity
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-16 | CVE-2020-1755 | Insufficient Verification of Data Authenticity vulnerability in Moodle In Moodle before 3.8.2, 3.7.5, 3.6.9 and 3.5.11, X-Forwarded-For headers could be used to spoof a user's IP, in order to bypass remote address checks. | 5.3 |
| 2022-08-16 | CVE-2022-30264 | Insufficient Verification of Data Authenticity vulnerability in Emerson products The Emerson ROC and FloBoss RTU product lines through 2022-05-02 perform insecure filesystem operations. | 9.8 |
| 2022-08-10 | CVE-2022-37008 | Insufficient Verification of Data Authenticity vulnerability in Huawei Emui, Harmonyos and Magic UI The recovery module has a vulnerability of bypassing the verification of an update package before use. | 7.5 |
| 2022-07-28 | CVE-2022-30315 | Insufficient Verification of Data Authenticity vulnerability in Honeywell Safety Manager Firmware Honeywell Experion PKS Safety Manager (SM and FSC) through 2022-05-06 has Insufficient Verification of Data Authenticity. | 9.8 |
| 2022-07-26 | CVE-2022-30269 | Insufficient Verification of Data Authenticity vulnerability in Motorola Ace1000 Firmware Motorola ACE1000 RTUs through 2022-05-02 mishandle application integrity. | 8.8 |
| 2022-07-26 | CVE-2022-30272 | Insufficient Verification of Data Authenticity vulnerability in Motorola Ace1000 Firmware The Motorola ACE1000 RTU through 2022-05-02 mishandles firmware integrity. | 7.2 |
| 2022-07-26 | CVE-2022-29958 | Insufficient Verification of Data Authenticity vulnerability in Jtekt products JTEKT TOYOPUC PLCs through 2022-04-29 do not ensure data integrity. | 9.8 |
| 2022-07-14 | CVE-2022-28370 | Insufficient Verification of Data Authenticity vulnerability in Verizon Lvskihp Outdoorunit Firmware 3.33.101.0 On Verizon 5G Home LVSKIHP OutDoorUnit (ODU) 3.33.101.0 devices, the RPC endpoint crtc_fw_upgrade provides a means of provisioning a firmware update for the device. | 7.5 |
| 2022-07-13 | CVE-2022-34763 | Insufficient Verification of Data Authenticity vulnerability in Schneider-Electric products A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists that could cause loading of unauthorized firmware images due to improper verification of the firmware signature. | 7.5 |
| 2022-07-12 | CVE-2022-31598 | Insufficient Verification of Data Authenticity vulnerability in SAP Business Objects Business Intelligence Platform 420 Due to insufficient input validation, SAP Business Objects - version 420, allows an authenticated attacker to submit a malicious request through an allowed operation. | 5.4 |