Vulnerabilities > Insufficient Verification of Data Authenticity

DATE CVE VULNERABILITY TITLE RISK
2023-08-08 CVE-2023-36541 Insufficient Verification of Data Authenticity vulnerability in Zoom
Insufficient verification of data authenticity in Zoom Desktop Client for Windows before 5.14.5 may allow an authenticated user to enable an escalation of privilege via network access.
network
low complexity
zoom CWE-345
8.8
2023-08-06 CVE-2023-4177 Insufficient Verification of Data Authenticity vulnerability in Empowerid 7.205.0.0
A vulnerability was found in EmpowerID up to 7.205.0.0.
low complexity
empowerid CWE-345
5.7
2023-08-04 CVE-2023-36134 Insufficient Verification of Data Authenticity vulnerability in PHPjabbers Class Scheduling System 1.0
In PHP Jabbers Class Scheduling System 1.0, lack of verification when changing an email address and/or password (on the Profile Page) allows remote attackers to take over accounts.
network
low complexity
phpjabbers CWE-345
critical
9.8
2023-08-04 CVE-2023-36139 Insufficient Verification of Data Authenticity vulnerability in PHPjabbers Cleaning Business Software 1.0
In PHPJabbers Cleaning Business Software 1.0, lack of verification when changing an email address and/or password (on the Profile Page) allows remote attackers to take over accounts.
network
low complexity
phpjabbers CWE-345
critical
9.8
2023-08-03 CVE-2023-3749 Insufficient Verification of Data Authenticity vulnerability in Johnsoncontrols Videoedge 5.4.1/5.7.1
A local user could edit the VideoEdge configuration file and interfere with VideoEdge operation.
local
low complexity
johnsoncontrols CWE-345
5.5
2023-07-29 CVE-2023-2314 Insufficient Verification of Data Authenticity vulnerability in Google Chrome
Insufficient data validation in DevTools in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
network
low complexity
google CWE-345
6.5
2023-07-13 CVE-2023-30562 Insufficient Verification of Data Authenticity vulnerability in BD Alaris Guardrails Editor 12.1.2
A GRE dataset file within Systems Manager can be tampered with and distributed to PCUs.
low complexity
bd CWE-345
6.7
2023-07-13 CVE-2023-25178 Insufficient Verification of Data Authenticity vulnerability in Honeywell C300 Firmware
Controller may be loaded with malicious firmware which could enable remote code execution. See Honeywell Security Notification for recommendations on upgrading and versioning.
network
low complexity
honeywell CWE-345
critical
9.8
2023-06-19 CVE-2023-30759 Insufficient Verification of Data Authenticity vulnerability in Ricoh Printer Driver Packager NX 1.0.02/1.1.25
The driver installation package created by Printer Driver Packager NX v1.0.02 to v1.1.25 fails to detect its modification and may spawn an unexpected process with the administrative privilege.
local
low complexity
ricoh CWE-345
7.8
2023-06-09 CVE-2023-2897 Insufficient Verification of Data Authenticity vulnerability in Brizy
The Brizy Page Builder plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 2.4.18.
network
low complexity
brizy CWE-345
5.3