Vulnerabilities > Insufficient Verification of Data Authenticity
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-09 | CVE-2021-36367 | Insufficient Verification of Data Authenticity vulnerability in Putty PuTTY through 0.75 proceeds with establishing an SSH session even if it has never sent a substantive authentication response. | 8.1 |
| 2021-06-24 | CVE-2021-23998 | Insufficient Verification of Data Authenticity vulnerability in Mozilla Thunderbird Through complicated navigations with new windows, an HTTP page could have inherited a secure lock icon from an HTTPS page. | 6.5 |
| 2021-06-24 | CVE-2021-29963 | Insufficient Verification of Data Authenticity vulnerability in Mozilla Firefox Address bar search suggestions in private browsing mode were re-using session data from normal mode. | 4.3 |
| 2021-06-15 | CVE-2021-33887 | Insufficient Verification of Data Authenticity vulnerability in Onepeloton Ttr01 Firmware Ptv55G Insufficient verification of data authenticity in Peloton TTR01 up to and including PTV55G allows an attacker with physical access to boot into a modified kernel/ramdisk without unlocking the bootloader. | 6.8 |
| 2021-06-04 | CVE-2021-33840 | Insufficient Verification of Data Authenticity vulnerability in Luca-App Luca The server in Luca through 1.1.14 allows remote attackers to cause a denial of service (insertion of many fake records related to COVID-19) because Phone Number data lacks a digital signature. | 7.5 |
| 2021-06-02 | CVE-2021-28678 | Insufficient Verification of Data Authenticity vulnerability in multiple products An issue was discovered in Pillow before 8.2.0. | 5.5 |
| 2021-05-24 | CVE-2020-28900 | Insufficient Verification of Data Authenticity vulnerability in Nagios Fusion and Nagios XI Insufficient Verification of Data Authenticity in Nagios Fusion 4.1.8 and earlier and Nagios XI 5.7.5 and earlier allows for Escalation of Privileges or Code Execution as root via vectors related to an untrusted update package to upgrade_to_latest.sh. | 9.8 |
| 2021-05-20 | CVE-2021-22339 | Insufficient Verification of Data Authenticity vulnerability in Huawei Manageone There is a denial of service vulnerability in some versions of ManageOne. | 6.5 |
| 2021-05-20 | CVE-2020-24395 | Insufficient Verification of Data Authenticity vulnerability in Hom.Ee Brain Cube Core 2.28.2/2.28.4 The USB firmware update script of homee Brain Cube v2 (2.28.2 and 2.28.4) devices allows an attacker with physical access to install compromised firmware. | 6.8 |
| 2021-05-11 | CVE-2021-30005 | Insufficient Verification of Data Authenticity vulnerability in Jetbrains Pycharm In JetBrains PyCharm before 2020.3.4, local code execution was possible because of insufficient checks when getting the project from VCS. | 7.8 |