Lista CVE - 2022 / Febbraio
Visualizzazione 501 - 600 di 1942 CVE per Febbraio 2022 (Pagina 6 di 20)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2021-46153 | 2022-02-09 | A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains a memory corruption vulnerability while parsing NEU files. This could allow... |
| CVE-2021-46154 | 2022-02-09 | A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains a stack based buffer overflow vulnerability while parsing NEU files. This... |
| CVE-2021-46155 | 2022-02-09 | A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains a stack based buffer overflow vulnerability while parsing NEU files. This... |
| CVE-2021-46156 | 2022-02-09 | A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains an out of bounds write past the end of an allocated... |
| CVE-2021-46157 | 2022-02-09 | A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains a memory corruption vulnerability while parsing NEU files. This could allow... |
| CVE-2021-46158 | 2022-02-09 | A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains a stack based buffer overflow vulnerability while parsing NEU files. This... |
| CVE-2021-46159 | 2022-02-09 | A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains an out of bounds write past the end of an allocated... |
| CVE-2021-46160 | 2022-02-09 | A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains an out of bounds write past the end of an allocated... |
| CVE-2021-46161 | 2022-02-09 | A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains an out of bounds write past the end of an allocated... |
| CVE-2022-23102 | 2022-02-09 | A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0). Affected products contain an open redirect vulnerability. An attacker could trick a valid authenticated user to... |
| CVE-2022-23312 | 2022-02-09 | A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP9 Security Patch 1). The integrated web application "Online Help" in affected product contains a Cross-Site Scripting... |
| CVE-2021-44911 | 2022-02-09 | XE before 1.11.6 is vulnerable to Unrestricted file upload via modules/menu/menu.admin.controller.php. When uploading the Mouse over button and When selected button, there is no restriction on the file suffix, which... |
| CVE-2021-44912 | 2022-02-09 | In XE 1.116, when uploading the Normal button, there is no restriction on the file suffix, which leads to any file uploading to the files directory. Since .htaccess only restricts... |
| CVE-2022-21844 | 2022-02-09 | HEVC Video Extensions Remote Code Execution Vulnerability |
| CVE-2022-21926 | 2022-02-09 | HEVC Video Extensions Remote Code Execution Vulnerability |
| CVE-2022-21927 | 2022-02-09 | HEVC Video Extensions Remote Code Execution Vulnerability |
| CVE-2022-21957 | 2022-02-09 | Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability |
| CVE-2022-21965 | 2022-02-09 | Microsoft Teams Denial of Service Vulnerability |
| CVE-2022-21968 | 2022-02-09 | Microsoft SharePoint Server Security Feature Bypass Vulnerability |
| CVE-2022-21971 | 2022-02-09 | Windows Runtime Remote Code Execution Vulnerability |
| CVE-2022-21974 | 2022-02-09 | Roaming Security Rights Management Services Remote Code Execution Vulnerability |
| CVE-2022-21981 | 2022-02-09 | Windows Common Log File System Driver Elevation of Privilege Vulnerability |
| CVE-2022-21984 | 2022-02-09 | Windows DNS Server Remote Code Execution Vulnerability |
| CVE-2022-21985 | 2022-02-09 | Windows Remote Access Connection Manager Information Disclosure Vulnerability |
| CVE-2022-21986 | 2022-02-09 | .NET Denial of Service Vulnerability |
| CVE-2022-21987 | 2022-02-09 | Microsoft SharePoint Server Spoofing Vulnerability |
| CVE-2022-21988 | 2022-02-09 | Microsoft Office Visio Remote Code Execution Vulnerability |
| CVE-2022-21989 | 2022-02-09 | Windows Kernel Elevation of Privilege Vulnerability |
| CVE-2022-21991 | 2022-02-09 | Visual Studio Code Remote Development Extension Remote Code Execution Vulnerability |
| CVE-2022-21992 | 2022-02-09 | Windows Mobile Device Management Remote Code Execution Vulnerability |
| CVE-2022-21993 | 2022-02-09 | Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability |
| CVE-2022-21994 | 2022-02-09 | Windows DWM Core Library Elevation of Privilege Vulnerability |
| CVE-2022-21995 | 2022-02-09 | Windows Hyper-V Remote Code Execution Vulnerability |
| CVE-2022-21996 | 2022-02-09 | Win32k Elevation of Privilege Vulnerability |
| CVE-2022-21997 | 2022-02-09 | Windows Print Spooler Elevation of Privilege Vulnerability |
| CVE-2022-21998 | 2022-02-09 | Windows Common Log File System Driver Information Disclosure Vulnerability |
| CVE-2022-21999 | 2022-02-09 | Windows Print Spooler Elevation of Privilege Vulnerability |
| CVE-2022-22000 | 2022-02-09 | Windows Common Log File System Driver Elevation of Privilege Vulnerability |
| CVE-2022-22001 | 2022-02-09 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability |
| CVE-2022-22002 | 2022-02-09 | Windows User Account Profile Picture Denial of Service Vulnerability |
| CVE-2022-22003 | 2022-02-09 | Microsoft Office Graphics Remote Code Execution Vulnerability |
| CVE-2022-22004 | 2022-02-09 | Microsoft Office ClickToRun Remote Code Execution Vulnerability |
| CVE-2022-22005 | 2022-02-09 | Microsoft SharePoint Server Remote Code Execution Vulnerability |
| CVE-2022-22709 | 2022-02-09 | VP9 Video Extensions Remote Code Execution Vulnerability |
| CVE-2022-22710 | 2022-02-09 | Windows Common Log File System Driver Denial of Service Vulnerability |
| CVE-2022-22712 | 2022-02-09 | Windows Hyper-V Denial of Service Vulnerability |
| CVE-2022-22715 | 2022-02-09 | Named Pipe File System Elevation of Privilege Vulnerability |
| CVE-2022-22716 | 2022-02-09 | Microsoft Excel Information Disclosure Vulnerability |
| CVE-2022-22717 | 2022-02-09 | Windows Print Spooler Elevation of Privilege Vulnerability |
| CVE-2022-22718 | 2022-02-09 | Windows Print Spooler Elevation of Privilege Vulnerability |
| CVE-2022-23252 | 2022-02-09 | Microsoft Office Information Disclosure Vulnerability |
| CVE-2022-23254 | 2022-02-09 | Microsoft Power BI Information Disclosure Vulnerability |
| CVE-2022-23255 | 2022-02-09 | Microsoft OneDrive for Android Security Feature Bypass Vulnerability |
| CVE-2022-23256 | 2022-02-09 | Azure Data Explorer Spoofing Vulnerability |
| CVE-2022-23269 | 2022-02-09 | Microsoft Dynamics GP Spoofing Vulnerability |
| CVE-2022-23271 | 2022-02-09 | Microsoft Dynamics GP Elevation Of Privilege Vulnerability |
| CVE-2022-23272 | 2022-02-09 | Microsoft Dynamics GP Elevation Of Privilege Vulnerability |
| CVE-2022-23273 | 2022-02-09 | Microsoft Dynamics GP Elevation Of Privilege Vulnerability |
| CVE-2022-23274 | 2022-02-09 | Microsoft Dynamics GP Remote Code Execution Vulnerability |
| CVE-2022-23276 | 2022-02-09 | SQL Server for Linux Containers Elevation of Privilege Vulnerability |
| CVE-2022-23280 | 2022-02-09 | Microsoft Outlook for Mac Security Feature Bypass Vulnerability |
| CVE-2021-41441 | 2022-02-09 | A DoS attack in the web application of D-Link DIR-X1860 before v1.10WWB09_Beta allows a remote unauthenticated attacker to reboot the router via sending a specially crafted URL to an authenticated... |
| CVE-2021-45330 | 2022-02-09 | An issue exsits in Gitea through 1.15.7, which could let a malicious user gain privileges due to client side cookies not being deleted and the session remains valid on the... |
| CVE-2021-45331 | 2022-02-09 | An Authentication Bypass vulnerability exists in Gitea before 1.5.0, which could let a malicious user gain privileges. If captured, the TOTP code for the 2FA can be submitted correctly more... |
| CVE-2021-41442 | 2022-02-09 | An HTTP smuggling attack in the web application of D-Link DIR-X1860 before v1.10WWB09_Beta allows a remote unauthenticated attacker to DoS the web application via sending a specific HTTP packet. |
| CVE-2021-45286 | 2022-02-09 | Directory Traversal vulnerability exists in ZZCMS 2021 via the skin parameter in 1) index.php, 2) bottom.php, and 3) top_index.php. |
| CVE-2022-21660 | 2022-02-09 | Missing authorization in gin-vue-admin |
| CVE-2021-36302 | 2022-02-09 | All Dell EMC Integrated System for Microsoft Azure Stack Hub versions contain a privilege escalation vulnerability. A remote malicious user with standard level JEA credentials may potentially exploit this vulnerability... |
| CVE-2022-22566 | 2022-02-09 | Select Dell Client Commercial and Consumer platforms contain a pre-boot direct memory access (DMA) vulnerability. An authenticated attacker with physical access to the system may potentially exploit this vulnerability in... |
| CVE-2022-22567 | 2022-02-09 | Select Dell Client Commercial and Consumer platforms are vulnerable to an insufficient verification of data authenticity vulnerability. An authenticated malicious user may exploit this vulnerability in order to install modified... |
| CVE-2022-23615 | 2022-02-09 | Partial authorization bypass on document save in xwiki-platform |
| CVE-2022-23616 | 2022-02-09 | Remote code execution in xwiki-platform |
| CVE-2022-23617 | 2022-02-09 | Missing authorization in xwiki-platform |
| CVE-2022-23618 | 2022-02-09 | Open Redirect in xwiki-platform |
| CVE-2022-23619 | 2022-02-09 | Information exposure in xwiki-platform |
| CVE-2022-23620 | 2022-02-09 | Path traversal in xwiki-platform-skin-skinx |
| CVE-2022-23621 | 2022-02-09 | Missing authorization in xwiki-platform |
| CVE-2022-23622 | 2022-02-09 | Cross site scripting in registration template in xwiki-platform |
| CVE-2022-23628 | 2022-02-09 | Array literal misordering in github.com/open-policy-agent/opa |
| CVE-2022-23631 | 2022-02-09 | Prototype Pollution leading to Remote Code Execution in superjson |
| CVE-2022-0534 | 2022-02-09 | A vulnerability was found in htmldoc version 1.9.15 where the stack out-of-bounds read takes place in gif_get_code() and occurs when opening a malicious GIF file, which can result in a... |
| CVE-2021-39991 | 2022-02-09 | There is an unauthorized rewriting vulnerability with the memory access management module on ACPU.Successful exploitation of this vulnerability may affect service confidentiality. |
| CVE-2021-39986 | 2022-02-09 | There is an unauthorized rewriting vulnerability with the memory access management module on ACPU.Successful exploitation of this vulnerability may affect service confidentiality. |
| CVE-2021-37115 | 2022-02-09 | There is an unauthorized rewriting vulnerability with the memory access management module on ACPU.Successful exploitation of this vulnerability may affect service confidentiality. |
| CVE-2021-37109 | 2022-02-09 | There is a security protection bypass vulnerability with the modem.Successful exploitation of this vulnerability may cause memory protection failure. |
| CVE-2021-37107 | 2022-02-09 | There is an improper memory access permission configuration on ACPU.Successful exploitation of this vulnerability may cause out-of-bounds access. |
| CVE-2021-39992 | 2022-02-09 | There is an improper security permission configuration vulnerability on ACPU.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability. |
| CVE-2021-39994 | 2022-02-09 | There is an arbitrary address access vulnerability with the product line test code.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability. |
| CVE-2021-39997 | 2022-02-09 | There is a vulnerability of unstrict input parameter verification in the audio assembly.Successful exploitation of this vulnerability may cause out-of-bounds access. |
| CVE-2021-40045 | 2022-02-09 | There is a vulnerability of signature verification mechanism failure in system upgrade through recovery mode.Successful exploitation of this vulnerability may affect service confidentiality. |
| CVE-2021-40044 | 2022-02-09 | There is a permission verification vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may cause unauthorized operations. |
| CVE-2021-40015 | 2022-02-09 | There is a race condition vulnerability in the binder driver subsystem in the kernel.Successful exploitation of this vulnerability may affect kernel stability. |
| CVE-2022-23047 | 2022-02-09 | Exponent CMS 2.6.0patch2 allows an authenticated admin user to inject persistent JavaScript code inside the "Site/Organization Name","Site Title" and "Site Header" parameters while updating the site settings on "/exponentcms/administration/configure_site" |
| CVE-2022-23048 | 2022-02-09 | Exponent CMS 2.6.0patch2 allows an authenticated admin user to upload a malicious extension in the format of a ZIP file with a PHP file inside it. After upload it, the... |
| CVE-2022-23049 | 2022-02-09 | Exponent CMS 2.6.0patch2 allows an authenticated user to inject persistent JavaScript code on the "User-Agent" header when logging in. When an administrator user visits the "User Sessions" tab, the JavaScript... |
| CVE-2021-0066 | 2022-02-09 | Improper input validation in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and Killer(TM) Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable escalation... |
| CVE-2021-0099 | 2022-02-09 | Insufficient control flow management in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable an escalation of privilege via local access. |
| CVE-2021-0060 | 2022-02-09 | Insufficient compartmentalization in HECI subsystem for the Intel(R) SPS before versions SPS_E5_04.01.04.516.0, SPS_E5_04.04.04.033.0, SPS_E5_04.04.03.281.0, SPS_E5_03.01.03.116.0, SPS_E3_05.01.04.309.0, SPS_02.04.00.101.0, SPS_SoC-A_05.00.03.114.0, SPS_SoC-X_04.00.04.326.0, SPS_SoC-X_03.00.03.117.0, IGN_E5_91.00.00.167.0, SPS_PHI_03.01.03.078.0 may allow an authenticated user to potentially enable... |
| CVE-2021-0072 | 2022-02-09 | Improper input validation in firmware for some Intel(R) PROSet/Wireless Wi-Fi in multiple operating systems and some Killer(TM) Wi-Fi in Windows 10 and 11 may allow a privileged user to potentially... |
| CVE-2021-0093 | 2022-02-09 | Incorrect default permissions in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service via local access. |