CWE-1287— Improper Validation of Specified Type of Input
The product receives input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expected type.— MITRE CWE catalog
140 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-1287page 3 of 3
- CVE-2025-59275HIGHCVSS 7.8EG 7.82025-10-14
Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileges locally.
- CVE-2025-59277HIGHCVSS 7.8EG 7.82025-10-14
Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileges locally.
- CVE-2025-59278HIGHCVSS 7.8EG 7.82025-10-14
Improper validation of specified type of input in Windows Authentication Methods allows an authorized attacker to elevate privileges locally.
- CVE-2025-60633MEDIUMCVSS 6.5EG 6.52025-11-24
An issue was discovered in Free5GC v4.0.0 and v4.0.1 allowing an attacker to cause a denial of service via the Nudm_SubscriberDataManagement API.
- CVE-2025-61672MEDIUMCVSS 5.3EG 5.32025-10-08
Synapse is an open source Matrix homeserver implementation. Lack of validation for device keys in Synapse before 1.138.3 and in Synapse 1.139.0 allow an attacker registered on the victim homeserver to degrade federation functionality, unpr…
- CVE-2025-6298MEDIUMCVSS 6.7EG 6.72025-11-11
ACAP applications can gain elevated privileges due to improper input validation, potentially leading to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned A…
- CVE-2025-8108MEDIUMCVSS 6.7EG 6.72025-11-11
An ACAP configuration file has improper permissions and lacks input validation, which could potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of un…
- CVE-2025-8402MEDIUMCVSS 4.9EG 4.92025-08-21
Mattermost versions 10.8.x <= 10.8.3, 10.5.x <= 10.5.8, 9.11.x <= 9.11.17, 10.10.x <= 10.10.0, 10.9.x <= 10.9.3 fail to validate import data which allows a system admin to crash the server via the bulk import feature.
- CVE-2025-8556LOWCVSS 3.7EG 3.72025-08-06
A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection and incorrect point validation during Diffie-Hellman key exchange.
- CVE-2025-9041HIGHCVSS 8.7EG 8.72025-08-14
A security issue exists due to improper handling of CIP Class 32’s request when a module is inhibited on the 5094-IF8 device. It causes the module to enter a fault state with the Module LED flashing red. Upon un-inhibiting, the module re…
- CVE-2025-9042HIGHCVSS 8.7EG 8.72025-08-14
A security issue exists due to improper handling of CIP Class 32’s request when a module is inhibited on the 5094-IY8 device. It causes the module to enter a fault state with the Module LED flashing red. Upon un-inhibiting, the module re…
- CVE-2025-9524MEDIUMCVSS 4.3EG 4.32025-11-11
The VAPIX API port.cgi did not have sufficient input validation, which may result in process crashes and impact usability. This vulnerability can only be exploited after authenticating with a viewer- operator- or administrator-privileged s…
- CVE-2026-0802MEDIUMCVSS 6.0EG 6.02026-05-12
An ACAP configuration file lacked sufficient input validation, which could allow command injection and potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the install…
- CVE-2026-10825HIGHCVSS 7.1EG 7.12026-06-16
A denial-of-service vulnerability exists in the WebSocket API due to insufficient validation and handling of JSON-based requests. A low-privileged authenticated attacker can send a specially crafted request that causes service disruption a…
- CVE-2026-11460HIGHCVSS 7.3EG 7.32026-06-07
A flaw has been found in Boost Serialization up to 1.91. The impacted element is an unknown function. This manipulation causes improper validation of specified type of input. It is possible to initiate the attack remotely. The exploit has …
- CVE-2026-2003MEDIUMCVSS 4.3EG 4.32026-02-12
Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, bu…
- CVE-2026-2004HIGHCVSS 8.8EG 8.82026-02-12
Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.…
- CVE-2026-20074HIGHCVSS 7.4EG 7.42026-03-11
A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) multi-instance routing feature of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause the IS-IS process to restart unexpectedly. This…
- CVE-2026-20119HIGHCVSS 7.5EG 7.52026-02-04
A vulnerability in the text rendering subsystem of Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affecte…
- CVE-2026-2092HIGHCVSS 7.7EG 7.72026-03-18
A flaw was found in Keycloak. Keycloak's Security Assertion Markup Language (SAML) broker endpoint does not properly validate encrypted assertions when the overall SAML response is not signed. An attacker with a valid signed SAML assertion…
- CVE-2026-21932HIGHCVSS 7.4EG 7.42026-01-20
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: AWT, JavaFX). Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0…
- CVE-2026-24307CRITICALCVSS 9.3EG 9.32026-01-22
Improper validation of specified type of input in M365 Copilot allows an unauthorized attacker to disclose information over a network.
- CVE-2026-25179HIGHCVSS 7.0EG 7.02026-03-10
Improper validation of specified type of input in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
- CVE-2026-25639HIGHCVSS 7.5EG 7.52026-02-09
Axios is a promise based HTTP client for the browser and Node.js. Prior to versions 0.30.3 and 1.13.5, the mergeConfig function in axios crashes with a TypeError when processing configuration objects containing __proto__ as an own property…
- CVE-2026-26115HIGHCVSS 8.8EG 8.82026-03-10
Improper validation of specified type of input in SQL Server allows an authorized attacker to elevate privileges over a network.
- CVE-2026-29645HIGHCVSS 7.5EG 7.52026-04-20
NEMU (OpenXiangShan/NEMU) before v2025.12.r2 contains an improper instruction-validation flaw in its RISC-V Vector (RVV) decoder. The decoder does not correctly validate the funct3 field when decoding vsetvli/vsetivli/vsetvl, allowing cert…
- CVE-2026-33806HIGHCVSS 7.5EG 7.52026-04-15
Impact: Fastify applications using schema.body.content for per-content-type body validation can have validation bypassed entirely by prepending a space to the Content-Type header. The body is still parsed correctly but schema validation i…
- CVE-2026-40851HIGHCVSS 8.4EG 8.42026-05-27
A local attacker can perform a confusion attack on the cfgparser via a specially crafted file on an USB stick leading to code execution. This can result in a total loss of confidentiality, integrity and availability.
- CVE-2026-44249HIGHCVSS 8.1EG 8.12026-06-08
Netty is a network application framework for development of protocol servers and clients. In netty-handler prior to versions 4.1.135.Final and 4.2.15.Final, an attacker can bypass IPv6 subnet rules due to an incorrect masking operation in …
- CVE-2026-44935CRITICALCVSS 9.9EG 9.92026-07-01
Missing validation of "valuesFrom" references in Helm Deployer of SUSE Rancher Fleet 0.15 before 0.15.2, 0.14 before 0.14.6, 0.13 before 0.13.11 and 0.12 before 0.12.15 could be used by owners of one tenant to access fleet credentials of o…
- CVE-2026-4598HIGHCVSS 7.5EG 7.52026-03-23
Versions of the package jsrsasign before 11.1.1 are vulnerable to Infinite loop via the bnModInverse function in ext/jsbn2.js when the BigInteger.modInverse implementation receives zero or negative inputs, allowing an attacker to hang the …
- CVE-2026-4646MEDIUMCVSS 4.3EG 4.32026-05-26
Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11.x <= 10.11.14... Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11.x <= 10.11.14 fail to validate user-supplied input in API req…
- CVE-2026-47675MEDIUMCVSS 4.3EG 4.32026-05-28
Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.21, the serialize() function in hono/cookie validates domain and path options against characters that corrupt Set-Cookie header syntax (;, …
- CVE-2026-49941HIGHCVSS 7.5EG 7.52026-06-04
Net::CIDR::Set versions through 0.20 for Perl did not validate IP addresses. The add method called the _encode method to parse addresses. If the addresses did not look like netmasks or network ranges, then they were assumed to single IP a…
- CVE-2026-54235MEDIUMCVSS 6.5EG 6.52026-06-17
vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.23.1rc0, ll temperature validation gates use comparison operators (<, >), which silently evaluate to False for NaN and for positive Infinity in Python's I…
- CVE-2026-5946HIGHCVSS 7.5EG 7.52026-05-20
Multiple flaws have been identified in `named` related to the handling of DNS messages whose CLASS is not Internet (`IN`) — for example, `CHAOS` or `HESIOD`, or DNS messages that specify meta-classes (`ANY` or `NONE`) in the question sec…
- CVE-2026-7887MEDIUMCVSS 6.4EG 6.42026-05-21
For Concrete CMS 9.5.0 and below, OAuth 2.0 Authorization-Code Handler Bypasses Account Status. A user with uIsActive=0 (suspended, banned, terminated employee) can still authenticate via OAuth and receive valid API tokens. The Concrete …
- CVE-2026-9521HIGHCVSS 7.3EG 7.32026-05-26
A security vulnerability has been detected in fraillt bitsery up to 5.2.4. Affected is the function loadFromSharedState in the library include/bitsery/ext/std_smart_ptr.h. Such manipulation leads to improper validation of specified type of…
- CVE-2026-9742MEDIUMCVSS 5.9EG 7.52026-06-09
When OIDC authentication is enabled in configuration, clients may set specific values in the "mechanism" parameter of the "authenticate" command that lead to server crash. The authenticate command is accessible to unauthenticated clients, …
- CVE-2026-9753HIGHCVSS 8.1EG 8.12026-06-09
The $_internalApplyOplogUpdate aggregation pipeline stage can be used to execute a document diff containing a malformed binary diff to return memory out-of-bounds or crash the server. $_internalApplyOplogUpdate can be executed by any authe…
Map vulnerabilities like CWE-1287 to your infrastructure
EchelonGraph correlates every CVE — across CWE-1287 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →