Lista CVE - 2022 / Agosto
Visualizzazione 1801 - 1900 di 2306 CVE per Agosto 2022 (Pagina 19 di 24)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2022-36499 | 2022-08-25 | H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function DEleteusergroup. |
| CVE-2022-36502 | 2022-08-25 | H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function UpdateWanParams. |
| CVE-2022-36503 | 2022-08-25 | H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function UpdateMacClone. |
| CVE-2022-36505 | 2022-08-25 | H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function EDitusergroup. |
| CVE-2022-36506 | 2022-08-25 | H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function SetMacAccessMode. |
| CVE-2022-36504 | 2022-08-25 | H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function Edit_BasicSSID. |
| CVE-2022-36507 | 2022-08-25 | H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function AddWlanMacList. |
| CVE-2022-36509 | 2022-08-25 | H3C GR3200 MiniGR1B0V100R014 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList. |
| CVE-2022-36508 | 2022-08-25 | H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function SetAPInfoById. |
| CVE-2022-36510 | 2022-08-25 | H3C GR2200 MiniGR1A0V100R014 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList. |
| CVE-2022-36514 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function WanModeSetMultiWan. |
| CVE-2022-36515 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function addactionlist. |
| CVE-2022-36511 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function EditApAdvanceInfo. |
| CVE-2022-36513 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function edditactionlist. |
| CVE-2022-36517 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function debug_wlan_advance. |
| CVE-2022-36516 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function ap_version_check. |
| CVE-2022-36518 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function EditWlanMacList. |
| CVE-2022-36520 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function DEleteusergroup. |
| CVE-2022-37066 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateDDNS. |
| CVE-2022-37067 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateWanParamsMulti. |
| CVE-2022-37068 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateMacCloneFinal. |
| CVE-2022-37069 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateSnat. |
| CVE-2022-37070 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a command injection vulnerability via the param parameter at DelL2tpLNSList. |
| CVE-2022-36519 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function AddWlanMacList. |
| CVE-2022-37071 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateOne2One. |
| CVE-2022-37073 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateWanModeMulti. |
| CVE-2022-37072 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function UpdateWanLinkspyMulti. |
| CVE-2022-37075 | 2022-08-25 | TOTOLink A7000R V9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the ip parameter in the function setDiagnosisCfg. |
| CVE-2022-37074 | 2022-08-25 | H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function switch_debug_info_set. |
| CVE-2022-37076 | 2022-08-25 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection vulnerability via the FileName parameter in the function UploadFirmwareFile. |
| CVE-2022-37077 | 2022-08-25 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the pppoeUser parameter. |
| CVE-2022-37078 | 2022-08-25 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection vulnerability via the lang parameter at /setting/setLanguageCfg. |
| CVE-2022-37079 | 2022-08-25 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg. |
| CVE-2022-37080 | 2022-08-25 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the command parameter at setting/setTracerouteCfg. |
| CVE-2022-37081 | 2022-08-25 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection vulnerability via the command parameter at setting/setTracerouteCfg. |
| CVE-2022-37082 | 2022-08-25 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection vulnerability via the host_time parameter at the function NTPSyncWithHost. |
| CVE-2022-37083 | 2022-08-25 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection vulnerability via the ip parameter at the function setDiagnosisCfg. |
| CVE-2022-37084 | 2022-08-25 | TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a stack overflow via the sPort parameter at the addEffect function. |
| CVE-2022-37085 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the AddWlanMacList function. |
| CVE-2022-37086 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function Asp_SetTimingtimeWifiAndLed. |
| CVE-2022-37087 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function SetMobileAPInfoById. |
| CVE-2022-37089 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function EditMacList. |
| CVE-2022-37088 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function SetAP5GWifiById. |
| CVE-2022-37090 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function Edit_BasicSSID. |
| CVE-2022-37091 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function EditWlanMacList. |
| CVE-2022-37092 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function SetAPWifiorLedInfoById. |
| CVE-2022-37093 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function AddMacList. |
| CVE-2022-37094 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function Edit_BasicSSID_5G. |
| CVE-2022-37095 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function UpdateWanParams. |
| CVE-2022-37096 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function EnableIpv6. |
| CVE-2022-37097 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function SetAPInfoById. |
| CVE-2022-37099 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function UpdateSnat. |
| CVE-2022-37098 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function UpdateIpv6Params. |
| CVE-2022-37100 | 2022-08-25 | H3C H200 H200V100R004 was discovered to contain a stack overflow via the function UpdateMacClone. |
| CVE-2022-37798 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function formSetVirtualSer. |
| CVE-2022-37799 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the time parameter at the function setSmartPowerManagement. |
| CVE-2022-37800 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function fromSetRouteStatic. |
| CVE-2022-37801 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the list parameter at the function formSetQosBand. |
| CVE-2022-37802 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromNatStaticSetting. |
| CVE-2022-37804 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the time parameter in the function saveParentControlInfo. |
| CVE-2022-37803 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromAddressNat. |
| CVE-2022-37811 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the startIp parameter in the function formSetPPTPServer. |
| CVE-2022-37812 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the firewallEn parameter in the function formSetFirewallCfg. |
| CVE-2022-37805 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function fromWizardHandle. |
| CVE-2022-37806 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the page parameter in the function fromDhcpListClient. |
| CVE-2022-36455 | 2022-08-25 | TOTOLink A3600R V4.1.2cu.5182_B20201102 was discovered to contain a command injection vulnerability via the username parameter in /cstecgi.cgi. |
| CVE-2022-37807 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function formSetClientState. |
| CVE-2022-37819 | 2022-08-25 | Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the timezone parameter in the function fromSetSysTime. |
| CVE-2022-37821 | 2022-08-25 | Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the ProvinceCode parameter in the function formSetProvince. |
| CVE-2022-37823 | 2022-08-25 | Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function formSetVirtualSer. |
| CVE-2022-37808 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the index parameter in the function formWifiWpsOOB. |
| CVE-2022-37810 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a command injection vulnerability via the mac parameter in the function formWriteFacMac. |
| CVE-2022-37809 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the speed_dir parameter in the function formSetSpeedWan. |
| CVE-2022-37813 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function fromSetSysTime. |
| CVE-2022-37818 | 2022-08-25 | Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the list parameter at the function formSetQosBand. |
| CVE-2022-37815 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the PPPOEPassword parameter in the function formQuickIndex. |
| CVE-2022-37817 | 2022-08-25 | Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the function fromSetIpMacBind. |
| CVE-2022-37824 | 2022-08-25 | Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the shareSpeed parameter in the function fromSetWifiGusetBasic. |
| CVE-2022-37814 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain multiple stack overflows via the deviceMac and the device_id parameters in the function addWifiMacFilter. |
| CVE-2022-37820 | 2022-08-25 | Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the ddnsEn parameter in the function formSetSysToolDDNS. |
| CVE-2022-37816 | 2022-08-25 | Tenda AC1206 V15.03.06.23 was discovered to contain a stack overflow via the function fromSetIpMacBind. |
| CVE-2022-37822 | 2022-08-25 | Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the function fromSetRouteStatic. |
| CVE-2022-37245 | 2022-08-25 | MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the Blacklist endpoint. |
| CVE-2022-37244 | 2022-08-25 | MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to IFRAME Injectionvia the currentRequest parameter. after login leads to inject malicious tag leads to IFRAME injection. |
| CVE-2022-37243 | 2022-08-25 | MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the whitelist endpoint. |
| CVE-2022-37242 | 2022-08-25 | MDaemon Technologies SecurityGateway for Email Servers 8.5.2, is vulnerable to HTTP Response splitting via the data parameter. |
| CVE-2022-37241 | 2022-08-25 | MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the data_leak_list_ajax endpoint. |
| CVE-2022-37240 | 2022-08-25 | MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to HTTP Response splitting via the format parameter. |
| CVE-2022-37239 | 2022-08-25 | MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the rulles_list_ajax endpoint. |
| CVE-2022-37238 | 2022-08-25 | MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the currentRequest parameter. |
| CVE-2022-37292 | 2022-08-25 | Tenda AX12 V22.03.01.21_CN is vulnerable to Buffer Overflow. This overflow is triggered in the sub_42FDE4 function, which satisfies the request of the upper-level interface function sub_430124, that is, handles the... |
| CVE-2022-37158 | 2022-08-25 | RuoYi v3.8.3 has a Weak password vulnerability in the management system. |
| CVE-2022-37162 | 2022-08-25 | Claroline 13.5.7 and prior is vulnerable to Cross Site Scripting (XSS). An attacker can obtain javascript code execution by adding arbitrary javascript code in the 'Location' field of a calendar... |
| CVE-2022-37161 | 2022-08-25 | Claroline 13.5.7 and prior is vulnerable to Cross Site Scripting (XSS) via SVG file upload. |
| CVE-2022-37159 | 2022-08-25 | Claroline 13.5.7 and prior is vulnerable to Remote code execution via arbitrary file upload. |
| CVE-2022-37160 | 2022-08-25 | Claroline 13.5.7 and prior allows an authenticated attacker to elevate privileges via the arbitrary creation of a privileged user. By combining the XSS vulnerability present in several upload forms and... |
| CVE-2022-2991 | 2022-08-25 | A heap-based buffer overflow was found in the Linux kernel's LightNVM subsystem. The issue results from the lack of proper validation of the length of user-supplied data prior to copying... |
| CVE-2022-2463 | 2022-08-25 | ISaGRAF Workbench Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-22 |
| CVE-2022-2464 | 2022-08-25 | ISaGRAF Workbench Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-22 |
| CVE-2022-2465 | 2022-08-25 | ISaGRAF Workbench Deserialization of Untrusted Data CWE-502 |