Vulnerabilities > Insufficient Verification of Data Authenticity
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-18 | CVE-2023-28863 | Insufficient Verification of Data Authenticity vulnerability in AMI Megarac Sp-X 12/13 AMI MegaRAC SPx12 and SPx13 devices have Insufficient Verification of Data Authenticity. | 9.1 |
| 2023-04-13 | CVE-2023-27748 | Insufficient Verification of Data Authenticity vulnerability in Blackvue Dr750-2Ch IR LTE Firmware and Dr750-2Ch LTE Firmware BlackVue DR750-2CH LTE v.1.012_2022.10.26 does not employ authenticity check for uploaded firmware. | 9.8 |
| 2023-04-10 | CVE-2023-26467 | Insufficient Verification of Data Authenticity vulnerability in Pega Synchronization Engine A man in the middle can redirect traffic to a malicious server in a compromised configuration. | 5.4 |
| 2023-03-29 | CVE-2022-48431 | Insufficient Verification of Data Authenticity vulnerability in Jetbrains Intellij Idea In JetBrains IntelliJ IDEA before 2023.1 in some cases, Gradle and Maven projects could be imported without the “Trust Project” confirmation. | 7.8 |
| 2023-03-21 | CVE-2023-27979 | Insufficient Verification of Data Authenticity vulnerability in Schneider-Electric Custom Reports, Igss Dashboard and Igss Data Server A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server that could allow the renaming of files in the IGSS project report directory, this could lead to denial of service when an attacker sends specific crafted messages to the Data Server TCP port. | 6.5 |
| 2023-03-21 | CVE-2023-27977 | Insufficient Verification of Data Authenticity vulnerability in Schneider-Electric Custom Reports, Igss Dashboard and Igss Data Server A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server that could cause access to delete files in the IGSS project report directory, this could lead to loss of data when an attacker sends specific crafted messages to the Data Server TCP port. | 5.3 |
| 2023-03-21 | CVE-2023-27982 | Insufficient Verification of Data Authenticity vulnerability in Schneider-Electric Custom Reports, Igss Dashboard and Igss Data Server A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server that could cause manipulation of dashboard files in the IGSS project report directory, when an attacker sends specific crafted messages to the Data Server TCP port, this could lead to remote code execution when a victim eventually opens a malicious dashboard file. | 8.8 |
| 2023-03-13 | CVE-2023-0350 | Insufficient Verification of Data Authenticity vulnerability in Akuvox E11 Firmware Akuvox E11 does not ensure that a file extension is associated with the file provided. | 6.5 |
| 2023-03-06 | CVE-2017-20180 | Insufficient Verification of Data Authenticity vulnerability in Zerocoin Libzerocoin A vulnerability classified as critical has been found in Zerocoin libzerocoin. | 7.5 |
| 2023-03-04 | CVE-2023-26481 | Insufficient Verification of Data Authenticity vulnerability in Goauthentik Authentik authentik is an open-source Identity Provider. | 6.5 |