Vulnerabilities > Origin Validation Error

DATE CVE VULNERABILITY TITLE RISK
2021-02-12 CVE-2021-27197 Origin Validation Error vulnerability in Pelco Digital Sentry Server
DSUtility.dll in Pelco Digital Sentry Server before 7.19.67 has an arbitrary file write vulnerability.
network
low complexity
pelco CWE-346
8.1
2021-02-09 CVE-2021-21136 Origin Validation Error vulnerability in multiple products
Insufficient policy enforcement in WebView in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google microsoft CWE-346
6.5
2021-02-09 CVE-2021-21135 Origin Validation Error vulnerability in multiple products
Inappropriate implementation in Performance API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google microsoft CWE-346
6.5
2021-01-19 CVE-2020-4881 Origin Validation Error vulnerability in IBM Planning Analytics 2.0
IBM Planning Analytics 2.0 could allow a remote attacker to obtain sensitive information, caused by the lack of server hostname verification for SSL/TLS communication.
network
low complexity
ibm CWE-346
7.5
2021-01-19 CVE-2020-28481 Origin Validation Error vulnerability in Socket Socket.Io
The package socket.io before 2.4.0 are vulnerable to Insecure Defaults due to CORS Misconfiguration.
network
low complexity
socket CWE-346
4.3
2020-12-21 CVE-2020-6881 Origin Validation Error vulnerability in ZTE products
ZTE E8810/E8820/E8822 series routers have an MQTT DoS vulnerability, which is caused by the failure of the device to verify the validity of abnormal messages.
network
low complexity
zte CWE-346
7.5
2020-12-18 CVE-2020-26251 Origin Validation Error vulnerability in Openzaak Open Zaak
Open Zaak is a modern, open-source data- and services-layer to enable zaakgericht werken, a Dutch approach to case management.
network
high complexity
openzaak CWE-346
4.7
2020-12-14 CVE-2020-15733 Origin Validation Error vulnerability in Bitdefender Antivirus Plus 12.0/23.0.24.120/24.0.26.136
An Origin Validation Error vulnerability in the SafePay component of Bitdefender Antivirus Plus allows a web resource to misrepresent itself in the URL bar.
network
low complexity
bitdefender CWE-346
6.5
2020-12-08 CVE-2020-26234 Origin Validation Error vulnerability in Apereo Opencast
Opencast before versions 8.9 and 7.9 disables HTTPS hostname verification of its HTTP client used for a large portion of Opencast's HTTP requests.
network
high complexity
apereo CWE-346
4.8
2020-12-08 CVE-2020-26253 Origin Validation Error vulnerability in Getkirby Kirby
Kirby is a CMS.
network
high complexity
getkirby CWE-346
5.9