Vulnerabilities > Insufficient Verification of Data Authenticity
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-01 | CVE-2020-26547 | Insufficient Verification of Data Authenticity vulnerability in Monal Monal before 4.9 does not implement proper sender verification on MAM and Message Carbon (XEP-0280) results. | 9.8 |
| 2020-11-07 | CVE-2020-16122 | Insufficient Verification of Data Authenticity vulnerability in multiple products PackageKit's apt backend mistakenly treated all local debs as trusted. | 7.8 |
| 2020-10-22 | CVE-2020-27670 | Insufficient Verification of Data Authenticity vulnerability in multiple products An issue was discovered in Xen through 4.14.x allowing x86 guest OS users to cause a denial of service (data corruption), cause a data leak, or possibly gain privileges because an AMD IOMMU page-table entry can be half-updated. | 7.8 |
| 2020-10-19 | CVE-2020-15262 | Insufficient Verification of Data Authenticity vulnerability in Webpack-Subresource-Integrity Project Webpack-Subresource-Integrity In webpack-subresource-integrity before version 1.5.1, all dynamically loaded chunks receive an invalid integrity hash that is ignored by the browser, and therefore the browser cannot validate their integrity. | 3.7 |
| 2020-10-16 | CVE-2020-9885 | Insufficient Verification of Data Authenticity vulnerability in Apple products An issue existed in the handling of iMessage tapbacks. | 5.5 |
| 2020-10-16 | CVE-2020-26893 | Insufficient Verification of Data Authenticity vulnerability in Clamxav An issue was discovered in ClamXAV 3 before 3.1.1. | 7.8 |
| 2020-10-12 | CVE-2020-9230 | Insufficient Verification of Data Authenticity vulnerability in Huawei Ws5800-10 Firmware 10.0.3.25 WS5800-10 version 10.0.3.25 has a denial of service vulnerability. | 6.5 |
| 2020-09-24 | CVE-2020-15222 | Insufficient Verification of Data Authenticity vulnerability in ORY Fosite In ORY Fosite (the security first OAuth2 & OpenID Connect framework for Go) before version 0.31.0, when using "private_key_jwt" authentication the uniqueness of the `jti` value is not checked. | 8.1 |
| 2020-09-23 | CVE-2019-16000 | Insufficient Verification of Data Authenticity vulnerability in Cisco Umbrella Roaming Client 2.2.238 A vulnerability in the automatic update process of Cisco Umbrella Roaming Client for Windows could allow an authenticated, local attacker to install arbitrary, unapproved applications on a targeted device. | 4.4 |
| 2020-09-23 | CVE-2019-16007 | Insufficient Verification of Data Authenticity vulnerability in Cisco Anyconnect Secure Mobility Client A vulnerability in the inter-service communication of Cisco AnyConnect Secure Mobility Client for Android could allow an unauthenticated, local attacker to perform a service hijack attack on an affected device or cause a denial of service (DoS) condition. | 7.1 |