Vulnerabilities > Insufficient Verification of Data Authenticity
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-03 | CVE-2020-3220 | Insufficient Verification of Data Authenticity vulnerability in Cisco IOS XE A vulnerability in the hardware crypto driver of Cisco IOS XE Software for Cisco 4300 Series Integrated Services Routers and Cisco Catalyst 9800-L Wireless Controllers could allow an unauthenticated, remote attacker to disconnect legitimate IPsec VPN sessions to an affected device. | 6.8 |
| 2020-05-07 | CVE-2020-6081 | Insufficient Verification of Data Authenticity vulnerability in Codesys Runtime 3.5.14.30 An exploitable code execution vulnerability exists in the PLC_Task functionality of 3S-Smart Software Solutions GmbH CODESYS Runtime 3.5.14.30. | 8.8 |
| 2020-04-22 | CVE-2020-7487 | Insufficient Verification of Data Authenticity vulnerability in Schneider-Electric products A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists which could allow the attacker to execute malicious code on the Modicon M218, M241, M251, and M258 controllers. | 9.8 |
| 2020-04-14 | CVE-2019-11480 | Insufficient Verification of Data Authenticity vulnerability in Canonical C-Kernel 20190716 The pc-kernel snap build process hardcoded the --allow-insecure-repositories and --allow-unauthenticated apt options when creating the build chroot environment. | 8.1 |
| 2020-04-13 | CVE-2020-6443 | Insufficient Verification of Data Authenticity vulnerability in multiple products Insufficient data validation in developer tools in Google Chrome prior to 81.0.4044.92 allowed a remote attacker who had convinced the user to use devtools to execute arbitrary code via a crafted HTML page. | 8.8 |
| 2020-04-13 | CVE-2019-1866 | Insufficient Verification of Data Authenticity vulnerability in Cisco Webex Business Suite 39 Cisco Webex Business Suite before 39.1.0 contains a vulnerability that could allow an unauthenticated, remote attacker to affect the integrity of the application. | 3.7 |
| 2020-04-06 | CVE-2020-10266 | Insufficient Verification of Data Authenticity vulnerability in Universal-Robots Ur+ UR+ (Universal Robots+) is a platform of hardware and software component sellers, for Universal Robots robots. | 8.1 |
| 2020-04-03 | CVE-2019-18905 | Insufficient Verification of Data Authenticity vulnerability in Opensuse Autoyast2 4.0.703.20.1/4.1.93.9.1 A Insufficient Verification of Data Authenticity vulnerability in autoyast2 of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15 allows remote attackers to MITM connections when deprecated and unused functionality of autoyast is used to create images. | 5.9 |
| 2020-04-01 | CVE-2020-11470 | Insufficient Verification of Data Authenticity vulnerability in Zoom Meetings 4.6.8 Zoom Client for Meetings through 4.6.8 on macOS has the disable-library-validation entitlement, which allows a local process (with the user's privileges) to obtain unprompted microphone and camera access by loading a crafted library and thereby inheriting Zoom Client's microphone and camera access. | 3.3 |
| 2020-03-24 | CVE-2020-10831 | Insufficient Verification of Data Authenticity vulnerability in Google Android An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. | 7.5 |