Lista CVE - 2022 / Gennaio
Visualizzazione 201 - 300 di 1988 CVE per Gennaio 2022 (Pagina 3 di 20)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2021-41842 | 2022-01-05 | An issue was discovered in AtaLegacySmm in the kernel 5.0... |
| CVE-2021-45971 | 2022-01-05 | An issue was discovered in SdHostDriver in Insyde InsydeH2O with... |
| CVE-2020-23986 | 2022-01-05 | Github Read Me Stats commit 3c7220e4f7144f6cb068fd433c774f6db47ccb95 was discovered to contain... |
| CVE-2020-27428 | 2022-01-05 | A DOM-based cross-site scripting (XSS) vulnerability in Scratch-Svg-Renderer v0.2.0 allows... |
| CVE-2021-46039 | 2022-01-06 | A Pointer Dereference Vulnerabilty exists in GPAC 1.0.1 via the... |
| CVE-2021-46040 | 2022-01-06 | A Pointer Dereference Vulnerabilty exists in GPAC 1.0.1 via the... |
| CVE-2021-46041 | 2022-01-06 | A Segmentation Fault Vulnerability exists in GPAC 1.0.1 via the... |
| CVE-2021-46042 | 2022-01-06 | A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the... |
| CVE-2021-46043 | 2022-01-06 | A Pointer Dereference Vulnerability exits in GPAC 1.0.1 in the... |
| CVE-2021-46044 | 2022-01-06 | A Pointer Dereference Vulnerabilty exists in GPAC 1.0.1via ShiftMetaOffset.isra, which... |
| CVE-2021-43947 | 2022-01-06 | Affected versions of Atlassian Jira Server and Data Center allow... |
| CVE-2022-0121 | 2022-01-06 | Cross-site Scripting in hoppscotch/hoppscotch |
| CVE-2021-46143 | 2022-01-06 | In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3,... |
| CVE-2021-46142 | 2022-01-06 | An issue was discovered in uriparser before 0.9.6. It performs... |
| CVE-2021-46141 | 2022-01-06 | An issue was discovered in uriparser before 0.9.6. It performs... |
| CVE-2021-46144 | 2022-01-06 | Roundcube before 1.4.13 and 1.5.x before 1.5.2 allows XSS via... |
| CVE-2022-22704 | 2022-01-06 | The zabbix-agent2 package before 5.4.9-r1 for Alpine Linux sometimes allows... |
| CVE-2022-0122 | 2022-01-06 | Open Redirect in digitalbazaar/forge |
| CVE-2021-46145 | 2022-01-06 | The keyfob subsystem in Honda Civic 2012 vehicles allows a... |
| CVE-2022-22707 | 2022-01-06 | In lighttpd 1.4.46 through 1.4.63, the mod_extforward_Forwarded function of the... |
| CVE-2021-36737 | 2022-01-06 | XSS in V3 Demo Portlet |
| CVE-2021-36738 | 2022-01-06 | XSS vulnerability in the JSP version of the Apache Pluto Applicant MVCBean CDI portlet |
| CVE-2021-36739 | 2022-01-06 | XSS vulnerability in the MVCBean JSP portlet maven archetype |
| CVE-2021-44351 | 2022-01-06 | An arbitrary file read vulnerability exists in NavigateCMS 2.9 via... |
| CVE-2021-44564 | 2022-01-06 | A security vulnerability originally reported in the SYNC2101 product, and... |
| CVE-2021-44584 | 2022-01-06 | Cross-site scripting (XSS) vulnerability in index.php in emlog version <=... |
| CVE-2021-27738 | 2022-01-06 | Improper Access Control to Streaming Coordinator & SSRF |
| CVE-2021-31522 | 2022-01-06 | Apache Kylin unsafe class loading |
| CVE-2021-36774 | 2022-01-06 | Mysql JDBC Connector Deserialize RCE |
| CVE-2021-45456 | 2022-01-06 | Command injection |
| CVE-2021-45457 | 2022-01-06 | Overly broad CORS configuration |
| CVE-2021-45458 | 2022-01-06 | Hardcoded credentials |
| CVE-2021-44878 | 2022-01-06 | If an OpenID Connect provider supports the "none" algorithm (i.e.,... |
| CVE-2021-44590 | 2022-01-06 | In libming 0.4.8, a memory exhaustion vulnerability exist in the... |
| CVE-2021-44591 | 2022-01-06 | In libming 0.4.8, the parseSWF_DEFINELOSSLESS2 function in util/parser.c lacks a... |
| CVE-2021-46080 | 2022-01-06 | A Cross Site Request Forgery (CSRF) vulnerability exists in Vehicle... |
| CVE-2021-46076 | 2022-01-06 | Sourcecodester Vehicle Service Management System 1.0 is vulnerable to File... |
| CVE-2021-46075 | 2022-01-06 | A Privilege Escalation vulnerability exists in Sourcecodester Vehicle Service Management... |
| CVE-2021-46074 | 2022-01-06 | A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodester... |
| CVE-2021-46073 | 2022-01-06 | A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodester... |
| CVE-2021-46072 | 2022-01-06 | A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle... |
| CVE-2021-46071 | 2022-01-06 | A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle... |
| CVE-2021-46070 | 2022-01-06 | A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle... |
| CVE-2021-46069 | 2022-01-06 | A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle... |
| CVE-2021-45744 | 2022-01-06 | A Stored Cross Site Scripting (XSS) vulnerability exists in bludit... |
| CVE-2021-45745 | 2022-01-06 | A Stored Cross Site Scripting (XSS) vulnerability exists in Bludit... |
| CVE-2021-46067 | 2022-01-06 | In Vehicle Service Management System 1.0 an attacker can steal... |
| CVE-2021-46068 | 2022-01-06 | A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle... |
| CVE-2021-46078 | 2022-01-06 | An Unrestricted File Upload vulnerability exists in Sourcecodester Vehicle Service... |
| CVE-2021-46079 | 2022-01-06 | An Unrestricted File Upload vulnerability exists in Sourcecodester Vehicle Service... |
| CVE-2022-0128 | 2022-01-06 | Out-of-bounds Read in vim/vim |
| CVE-2021-28714 | 2022-01-06 | Guest can force Linux netback driver to hog large amounts... |
| CVE-2021-28715 | 2022-01-06 | Guest can force Linux netback driver to hog large amounts... |
| CVE-2021-4194 | 2022-01-06 | Improper Access Control in bookstackapp/bookstack |
| CVE-2021-43045 | 2022-01-06 | Possible DOS vulnerabilities in C# Avro SDK |
| CVE-2021-42841 | 2022-01-06 | Insta HMS before 12.4.10 is vulnerable to XSS because of... |
| CVE-2022-21661 | 2022-01-06 | SQL injection in WordPress |
| CVE-2022-21664 | 2022-01-06 | SQL injection in WordPress |
| CVE-2022-21663 | 2022-01-06 | Authenticated Object Injection in Multisites in WordPress |
| CVE-2022-21662 | 2022-01-06 | Stored XSS in WordPress |
| CVE-2021-42392 | 2022-01-07 | The org.h2.util.JdbcUtils.getConnection method of the H2 database takes as parameters... |
| CVE-2021-44528 | 2022-01-07 | A open redirect vulnerability exists in Action Pack >= 6.0.0... |
| CVE-2021-46045 | 2022-01-07 | GPAC 1.0.1 is affected by: Abort failed. The impact is:... |
| CVE-2021-46046 | 2022-01-07 | A Pointer Derefernce Vulnerbility exists GPAC 1.0.1 the gf_isom_box_size function,... |
| CVE-2021-46047 | 2022-01-07 | A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the... |
| CVE-2021-46049 | 2022-01-07 | A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the... |
| CVE-2021-46051 | 2022-01-07 | A Pointer Dereference Vulnerability exists in GPAC 1.0.1 via the... |
| CVE-2022-22815 | 2022-01-07 | path_getbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path. |
| CVE-2022-22816 | 2022-01-07 | path_getbbox in path.c in Pillow before 9.0.0 has a buffer... |
| CVE-2022-22817 | 2022-01-07 | PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions,... |
| CVE-2021-22569 | 2022-01-07 | Denial of Service of protobuf-java parsing procedure |
| CVE-2021-25743 | 2022-01-07 | ANSI escape characters in kubectl output are not being filtered |
| CVE-2021-38674 | 2022-01-07 | Reflected XSS Vulnerability in TFTP |
| CVE-2021-20046 | 2022-01-07 | A Stack-based buffer overflow in the SonicOS HTTP Content-Length response... |
| CVE-2021-20048 | 2022-01-07 | A Stack-based buffer overflow in the SonicOS SessionID HTTP response... |
| CVE-2020-9057 | 2022-01-07 | Z-Wave devices based on Silicon Labs 100, 200, and 300... |
| CVE-2020-9058 | 2022-01-07 | Z-Wave devices based on Silicon Labs 500 series chipsets using... |
| CVE-2020-9059 | 2022-01-07 | Z-Wave devices based on Silicon Labs 500 series chipsets using... |
| CVE-2020-9060 | 2022-01-07 | Z-Wave devices based on Silicon Labs 500 series chipsets using... |
| CVE-2020-9061 | 2022-01-07 | Z-Wave devices using Silicon Labs 500 and 700 series chipsets,... |
| CVE-2021-46146 | 2022-01-07 | An issue was discovered in MediaWiki before 1.35.5, 1.36.x before... |
| CVE-2021-46150 | 2022-01-07 | An issue was discovered in MediaWiki before 1.35.5, 1.36.x before... |
| CVE-2021-46149 | 2022-01-07 | An issue was discovered in MediaWiki before 1.35.5, 1.36.x before... |
| CVE-2021-46148 | 2022-01-07 | An issue was discovered in MediaWiki before 1.35.5, 1.36.x before... |
| CVE-2021-46147 | 2022-01-07 | An issue was discovered in MediaWiki before 1.35.5, 1.36.x before... |
| CVE-2020-29050 | 2022-01-07 | SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal... |
| CVE-2022-0132 | 2022-01-07 | Server-Side Request Forgery (SSRF) in chocobozzz/peertube |
| CVE-2022-0133 | 2022-01-07 | Improper Access Control in chocobozzz/peertube |
| CVE-2022-21667 | 2022-01-07 | Denial of Service in soketi |
| CVE-2021-38894 | 2022-01-07 | IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could allow a... |
| CVE-2021-38895 | 2022-01-07 | IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 is vulnerable to... |
| CVE-2021-38921 | 2022-01-07 | IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 uses weaker than... |
| CVE-2021-38956 | 2022-01-07 | IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could disclose sensitive... |
| CVE-2021-38957 | 2022-01-07 | IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could disclose sensitive... |
| CVE-2021-38990 | 2022-01-07 | IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a... |
| CVE-2021-42749 | 2022-01-07 | In Beaver Themer, attackers can bypass conditional logic controls (for... |
| CVE-2021-42748 | 2022-01-07 | In Beaver Builder through 2.5.0.3, attackers can bypass the visibility... |
| CVE-2021-23594 | 2022-01-07 | Sandbox Bypass |
| CVE-2021-23568 | 2022-01-07 | Prototype Pollution |
| CVE-2021-23543 | 2022-01-07 | Sandbox Bypass |