Vulnerabilities > Insufficient Verification of Data Authenticity
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-07 | CVE-2020-19769 | Insufficient Verification of Data Authenticity vulnerability in Rtb1 Project Rtb1 1.0 A lack of target address verification in the BurnMe() function of Rob The Bank 1.0 allows attackers to steal tokens from victim users via a crafted script. | 7.5 |
| 2021-09-03 | CVE-2021-40491 | Insufficient Verification of Data Authenticity vulnerability in multiple products The ftp client in GNU Inetutils before 2.2 does not validate addresses returned by PASV/LSPV responses to make sure they match the server address. | 6.5 |
| 2021-08-30 | CVE-2021-37421 | Insufficient Verification of Data Authenticity vulnerability in Zohocorp Manageengine Adselfservice Plus Zoho ManageEngine ADSelfService Plus 6103 and prior is vulnerable to admin portal access-restriction bypass. | 9.8 |
| 2021-08-25 | CVE-2021-1586 | Insufficient Verification of Data Authenticity vulnerability in Cisco Nx-Os 15.0(2E)/15.1(1H) A vulnerability in the Multi-Pod or Multi-Site network configurations for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, remote attacker to unexpectedly restart the device, resulting in a denial of service (DoS) condition. | 8.6 |
| 2021-08-12 | CVE-2021-38597 | Insufficient Verification of Data Authenticity vulnerability in Wolfssl wolfSSL before 4.8.1 incorrectly skips OCSP verification in certain situations of irrelevant response data that contains the NoCheck extension. | 5.9 |
| 2021-08-05 | CVE-2021-21739 | Insufficient Verification of Data Authenticity vulnerability in ZTE Zxctn 6120H Firmware 5.10.00B24 A ZTE's product of the transport network access layer has a security vulnerability. | 4.6 |
| 2021-08-03 | CVE-2021-22419 | Insufficient Verification of Data Authenticity vulnerability in Huawei Harmonyos 2.0 A component of the HarmonyOS has a Insufficient Verification of Data Authenticity vulnerability. | 5.5 |
| 2021-07-12 | CVE-2021-21588 | Insufficient Verification of Data Authenticity vulnerability in Dell Powerflex Presentation Server 3.5 Dell EMC PowerFlex, v3.5.x contain a Cross-Site WebSocket Hijacking Vulnerability in the Presentation Server/WebUI. | 4.3 |
| 2021-07-09 | CVE-2021-36367 | Insufficient Verification of Data Authenticity vulnerability in Putty PuTTY through 0.75 proceeds with establishing an SSH session even if it has never sent a substantive authentication response. | 8.1 |
| 2021-06-24 | CVE-2021-23998 | Insufficient Verification of Data Authenticity vulnerability in Mozilla Thunderbird Through complicated navigations with new windows, an HTTP page could have inherited a secure lock icon from an HTTPS page. | 6.5 |