Vulnerabilities > Origin Validation Error

DATE CVE VULNERABILITY TITLE RISK
2021-03-09 CVE-2021-21163 Origin Validation Error vulnerability in multiple products
Insufficient data validation in Reader Mode in Google Chrome on iOS prior to 89.0.4389.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page and a malicious server.
network
low complexity
google fedoraproject debian CWE-346
6.5
2021-02-24 CVE-2021-1231 Origin Validation Error vulnerability in Cisco Nx-Os
A vulnerability in the Link Layer Discovery Protocol (LLDP) for Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, adjacent attacker to disable switching on a small form-factor pluggable (SFP) interface.
low complexity
cisco CWE-346
4.7
2021-02-12 CVE-2021-27197 Origin Validation Error vulnerability in Pelco Digital Sentry Server
DSUtility.dll in Pelco Digital Sentry Server before 7.19.67 has an arbitrary file write vulnerability.
network
low complexity
pelco CWE-346
8.1
2021-02-09 CVE-2021-21136 Origin Validation Error vulnerability in multiple products
Insufficient policy enforcement in WebView in Google Chrome on Android prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google microsoft CWE-346
6.5
2021-02-09 CVE-2021-21135 Origin Validation Error vulnerability in multiple products
Inappropriate implementation in Performance API in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
network
low complexity
google microsoft CWE-346
6.5
2021-01-19 CVE-2020-4881 Origin Validation Error vulnerability in IBM Planning Analytics 2.0
IBM Planning Analytics 2.0 could allow a remote attacker to obtain sensitive information, caused by the lack of server hostname verification for SSL/TLS communication.
network
low complexity
ibm CWE-346
7.5
2021-01-19 CVE-2020-28481 Origin Validation Error vulnerability in Socket Socket.Io
The package socket.io before 2.4.0 are vulnerable to Insecure Defaults due to CORS Misconfiguration.
network
low complexity
socket CWE-346
4.3
2020-12-21 CVE-2020-6881 Origin Validation Error vulnerability in ZTE products
ZTE E8810/E8820/E8822 series routers have an MQTT DoS vulnerability, which is caused by the failure of the device to verify the validity of abnormal messages.
network
low complexity
zte CWE-346
7.5
2020-12-18 CVE-2020-26251 Origin Validation Error vulnerability in Openzaak Open Zaak
Open Zaak is a modern, open-source data- and services-layer to enable zaakgericht werken, a Dutch approach to case management.
network
high complexity
openzaak CWE-346
4.7
2020-12-14 CVE-2020-15733 Origin Validation Error vulnerability in Bitdefender Antivirus Plus 12.0/23.0.24.120/24.0.26.136
An Origin Validation Error vulnerability in the SafePay component of Bitdefender Antivirus Plus allows a web resource to misrepresent itself in the URL bar.
network
low complexity
bitdefender CWE-346
6.5