Vulnerabilities > Insufficient Verification of Data Authenticity
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-08 | CVE-2023-36541 | Insufficient Verification of Data Authenticity vulnerability in Zoom Insufficient verification of data authenticity in Zoom Desktop Client for Windows before 5.14.5 may allow an authenticated user to enable an escalation of privilege via network access. | 8.8 |
| 2023-08-06 | CVE-2023-4177 | Insufficient Verification of Data Authenticity vulnerability in Empowerid 7.205.0.0 A vulnerability was found in EmpowerID up to 7.205.0.0. | 5.7 |
| 2023-08-04 | CVE-2023-36134 | Insufficient Verification of Data Authenticity vulnerability in PHPjabbers Class Scheduling System 1.0 In PHP Jabbers Class Scheduling System 1.0, lack of verification when changing an email address and/or password (on the Profile Page) allows remote attackers to take over accounts. | 9.8 |
| 2023-08-04 | CVE-2023-36139 | Insufficient Verification of Data Authenticity vulnerability in PHPjabbers Cleaning Business Software 1.0 In PHPJabbers Cleaning Business Software 1.0, lack of verification when changing an email address and/or password (on the Profile Page) allows remote attackers to take over accounts. | 9.8 |
| 2023-08-03 | CVE-2023-3749 | Insufficient Verification of Data Authenticity vulnerability in Johnsoncontrols Videoedge 5.4.1/5.7.1 A local user could edit the VideoEdge configuration file and interfere with VideoEdge operation. | 5.5 |
| 2023-08-02 | CVE-2023-36858 | Insufficient Verification of Data Authenticity vulnerability in F5 products An insufficient verification of data vulnerability exists in BIG-IP Edge Client for Windows and macOS that may allow an attacker to modify its configured server list. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated. | 5.5 |
| 2023-07-29 | CVE-2023-2314 | Insufficient Verification of Data Authenticity vulnerability in Google Chrome Insufficient data validation in DevTools in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. | 6.5 |
| 2023-07-25 | CVE-2023-37920 | Insufficient Verification of Data Authenticity vulnerability in Kennethreitz Certifi Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. | 9.8 |
| 2023-07-13 | CVE-2023-30562 | Insufficient Verification of Data Authenticity vulnerability in BD Alaris Guardrails Editor 12.1.2 A GRE dataset file within Systems Manager can be tampered with and distributed to PCUs. | 6.7 |
| 2023-07-13 | CVE-2023-25178 | Insufficient Verification of Data Authenticity vulnerability in Honeywell C300 Firmware Controller may be loaded with malicious firmware which could enable remote code execution. See Honeywell Security Notification for recommendations on upgrading and versioning. | 9.8 |