Vulnerabilities > Insufficient Verification of Data Authenticity
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-25 | CVE-2022-41156 | Insufficient Verification of Data Authenticity vulnerability in Etm-S Ondiskplayeragent 1.3.8.12 Remote code execution vulnerability due to insufficient verification of URLs, etc. | 7.8 |
| 2022-11-23 | CVE-2022-36111 | Insufficient Verification of Data Authenticity vulnerability in Codenotary Immudb immudb is a database with built-in cryptographic proof and verification. | 5.3 |
| 2022-11-22 | CVE-2022-39199 | Insufficient Verification of Data Authenticity vulnerability in Codenotary Immudb immudb is a database with built-in cryptographic proof and verification. | 5.9 |
| 2022-11-10 | CVE-2022-3703 | Insufficient Verification of Data Authenticity vulnerability in Etictelecom Remote Access Server Firmware 4.5.0 All versions of ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior’s web portal is vulnerable to accepting malicious firmware packages that could provide a backdoor to an attacker and provide privilege escalation to the device. | 10.0 |
| 2022-11-09 | CVE-2022-0031 | Insufficient Verification of Data Authenticity vulnerability in Paloaltonetworks Cortex Xsoar 6.5.0/6.6.0/6.8.0 A local privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XSOAR engine software running on a Linux operating system allows a local attacker with shell access to the engine to execute programs with elevated privileges. | 6.7 |
| 2022-11-08 | CVE-2022-27513 | Insufficient Verification of Data Authenticity vulnerability in Citrix Application Delivery Controller Firmware and Gateway Remote desktop takeover via phishing | 9.6 |
| 2022-11-02 | CVE-2022-26122 | Insufficient Verification of Data Authenticity vulnerability in Fortinet Fortimail and Fortios An insufficient verification of data authenticity vulnerability [CWE-345] in FortiClient, FortiMail and FortiOS AV engines version 6.2.168 and below and version 6.4.274 and below may allow an attacker to bypass the AV engine via manipulating MIME attachment with junk and pad characters in base64. | 8.6 |
| 2022-10-25 | CVE-2022-34845 | Insufficient Verification of Data Authenticity vulnerability in Robustel R1510 Firmware 3.1.16/3.3.0 A firmware update vulnerability exists in the sysupgrade functionality of Robustel R1510 3.1.16 and 3.3.0. | 2.7 |
| 2022-09-13 | CVE-2022-20396 | Insufficient Verification of Data Authenticity vulnerability in Google Android 12.1/13.0 In SettingsActivity.java, there is a possible way to make a device discoverable over Bluetooth, without permission or user interaction, due to a permissions bypass. | 5.5 |
| 2022-08-29 | CVE-2022-38625 | Insufficient Verification of Data Authenticity vulnerability in Patlite products Patlite NH-FB v1.46 and below was discovered to contain insufficient firmware validation during the upgrade firmware file upload process. | 8.8 |