Lista CVE - 2022 / Settembre
Visualizzazione 301 - 400 di 2148 CVE per Settembre 2022 (Pagina 4 di 22)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2022-26464 | 2022-09-06 | In vow, there is a possible out of bounds write... |
| CVE-2022-26465 | 2022-09-06 | In audio ipi, there is a possible out of bounds... |
| CVE-2022-26466 | 2022-09-06 | In audio ipi, there is a possible out of bounds... |
| CVE-2022-26467 | 2022-09-06 | In rpmb, there is a possible out of bounds write... |
| CVE-2022-26468 | 2022-09-06 | In preloader (usb), there is a possible out of bounds... |
| CVE-2022-26469 | 2022-09-06 | In MtkEmail, there is a possible escalation of privilege due... |
| CVE-2022-26470 | 2022-09-06 | In aie, there is a possible out of bounds write... |
| CVE-2022-27664 | 2022-09-06 | In net/http in Go before 1.18.6 and 1.19.x before 1.19.1,... |
| CVE-2022-32264 | 2022-09-06 | sys/netinet/tcp_timer.h in FreeBSD before 7.0 contains a denial-of-service (DoS) vulnerability... |
| CVE-2022-31860 | 2022-09-06 | An issue was discovered in OpenRemote through 1.0.4 allows attackers... |
| CVE-2022-31790 | 2022-09-06 | WatchGuard Firebox and XTM appliances allow an unauthenticated remote attacker... |
| CVE-2022-36670 | 2022-09-06 | PCProtect Endpoint prior to v5.17.470 for Microsoft Windows lacks tamper... |
| CVE-2022-37771 | 2022-09-06 | IObit Malware Fighter v9.2 for Microsoft Windows lacks tamper protection,... |
| CVE-2020-21516 | 2022-09-06 | There is an arbitrary file upload vulnerability in FeehiCMS 2.0.8... |
| CVE-2022-35931 | 2022-09-06 | Nextcloud Password Policy's generated passwords are not fully validated by HIBPValidator |
| CVE-2022-31789 | 2022-09-06 | An integer overflow in WatchGuard Firebox and XTM appliances allows... |
| CVE-2022-36032 | 2022-09-06 | ReactPHP's HTTP server parses encoded cookie names so malicious `__Host-` and `__Secure-` cookies can be sent |
| CVE-2022-31792 | 2022-09-06 | A stored cross-site scripting (XSS) vulnerability exists in the management... |
| CVE-2022-31791 | 2022-09-06 | WatchGuard Firebox and XTM appliances allow a local attacker (that... |
| CVE-2022-36038 | 2022-09-06 | CircuitVerse potential RCE vulnerability via Oj.load |
| CVE-2022-36039 | 2022-09-06 | Out-of-bounds write when parsing DEX files in Rizin |
| CVE-2022-37185 | 2022-09-06 | SQL injection vulnerability exists in the school information query interface... |
| CVE-2022-36057 | 2022-09-06 | Discourse-Chat Cross-Site Scripting issue for channel names and descriptions |
| CVE-2022-37253 | 2022-09-06 | Persistent cross-site scripting (XSS) in Crime Reporting System 1.0 allows... |
| CVE-2022-36058 | 2022-09-06 | elrond-go MultiESDTNFTTransfer call on a SC address with missing function name |
| CVE-2022-26858 | 2022-09-06 | Dell BIOS versions contain an Improper Authentication vulnerability. A locally... |
| CVE-2022-26859 | 2022-09-06 | Dell BIOS contains a race condition vulnerability. A local attacker... |
| CVE-2022-26860 | 2022-09-06 | Dell BIOS versions contain a stack-based buffer overflow vulnerability. A... |
| CVE-2022-26861 | 2022-09-06 | Dell BIOS versions contain an Insecure Automated Optimization vulnerability. A... |
| CVE-2022-38176 | 2022-09-06 | An issue was discovered in YSoft SAFEQ 6 before 6.0.72.... |
| CVE-2022-36061 | 2022-09-06 | Elrond go can execute on same context checks in VM |
| CVE-2022-36663 | 2022-09-06 | Gluu Oxauth before v4.4.1 allows attackers to execute blind SSRF... |
| CVE-2022-36072 | 2022-09-06 | SilverwareGames.io used == for hashing instead of === |
| CVE-2022-36064 | 2022-09-06 | Shescape Inefficient Regular Expression Complexity vulnerability |
| CVE-2022-35913 | 2022-09-06 | Samourai Wallet Stonewallx2 0.99.98e allows a denial of service via... |
| CVE-2022-36065 | 2022-09-06 | GrowthBook account creation and file upload vulnerability in self-hosted configurations |
| CVE-2022-38528 | 2022-09-06 | Open Asset Import Library (assimp) commit 3c253ca was discovered to... |
| CVE-2022-38529 | 2022-09-06 | tinyexr commit 0647fb3 was discovered to contain a heap-buffer overflow... |
| CVE-2022-1368 | 2022-09-06 | Cognex 3D-A1000 Dimensioning System Missing Authentication for Critical Function |
| CVE-2022-1522 | 2022-09-06 | Cognex 3D-A1000 Dimensioning System Improper Output Neutralization for Logs |
| CVE-2022-1525 | 2022-09-06 | Cognex 3D-A1000 Dimensioning System Client-Side Enforcement of Server-Side Security |
| CVE-2022-36387 | 2022-09-06 | WordPress About Me plugin <= 1.0.12 - Broken Access Control vulnerability |
| CVE-2022-37344 | 2022-09-06 | WordPress Accommodation System plugin <= 1.0.1 - Missing Access Control vulnerability |
| CVE-2022-36427 | 2022-09-06 | WordPress About Rentals plugin <= 1.5 - Missing Access Control vulnerability |
| CVE-2022-40023 | 2022-09-07 | Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial... |
| CVE-2021-36782 | 2022-09-07 | Rancher: Plaintext storage and exposure of credentials in Rancher API and cluster.management.cattle.io object |
| CVE-2021-36783 | 2022-09-07 | Rancher: Failure to properly sanitize credentials in cluster template answers |
| CVE-2022-31247 | 2022-09-07 | Rancher: Downstream cluster privilege escalation through cluster and project role template binding (CRTB/PRTB) |
| CVE-2022-21950 | 2022-09-07 | canna: unsafe handling of /tmp/.iroha_unix directory |
| CVE-2022-31251 | 2022-09-07 | slurm: %post for slurm-testsuite operates as root in user owned directory |
| CVE-2022-37189 | 2022-09-07 | DDMAL MEI2Volpiano 0.8.2 is vulnerable to XML External Entity (XXE),... |
| CVE-2022-37108 | 2022-09-07 | An injection vulnerability in the syslog-ng configuration wizard in Securonix... |
| CVE-2022-36271 | 2022-09-07 | Outbyte PC Repair Installation File 1.7.112.7856 is vulnerable to Dll... |
| CVE-2022-31149 | 2022-09-07 | ActivityWatch vulnerable to DNS rebinding attack |
| CVE-2022-35513 | 2022-09-07 | The Blink1Control2 application <= 2.2.7 uses weak password encryption and... |
| CVE-2022-31167 | 2022-09-07 | XWiki Platform Security Parent POM vulnerable to overwriting of security rules of a page with a final page having the same reference |
| CVE-2022-31166 | 2022-09-07 | XWiki.WebHome vulnerable to Improper Privilege Management in XWiki resolving groups |
| CVE-2022-3152 | 2022-09-07 | Unverified Password Change in phpfusion/phpfusion |
| CVE-2022-37730 | 2022-09-07 | In ftcms 2.1, there is a Cross Site Request Forgery... |
| CVE-2022-37731 | 2022-09-07 | ftcms 2.1 poster.PHP has a XSS vulnerability. The attacker inserts... |
| CVE-2022-36539 | 2022-09-07 | WeDayCare B.V Ouderapp before v1.1.22 allows attackers to alter the... |
| CVE-2022-37780 | 2022-09-07 | Phicomm FIR151B A2, FIR302E A2, FIR300B A2, FIR303B A2 routers... |
| CVE-2022-36659 | 2022-09-07 | xhyve commit dfbe09b was discovered to contain a NULL pointer... |
| CVE-2022-36660 | 2022-09-07 | xhyve commit dfbe09b was discovered to contain a stack buffer... |
| CVE-2022-36661 | 2022-09-07 | xhyve commit dfbe09b was discovered to contain a NULL pointer... |
| CVE-2022-36587 | 2022-09-07 | In Tenda G3 US_G3V3.0br_V15.11.0.6(7663)_EN_TDE, there is a buffer overflow vulnerability... |
| CVE-2022-31414 | 2022-09-07 | D-Link DIR-1960 firmware DIR-1960_A1_1.11 was discovered to contain a buffer... |
| CVE-2022-30312 | 2022-09-07 | The Trend Controls IC protocol through 2022-05-06 allows Cleartext Transmission... |
| CVE-2022-1807 | 2022-09-07 | Multiple SQLi vulnerabilities in Webadmin allow for privilege escalation from... |
| CVE-2022-30078 | 2022-09-07 | NETGEAR R6200_V2 firmware versions through R6200v2-V1.0.3.12_10.1.11 and R6300_V2 firmware versions... |
| CVE-2022-36070 | 2022-09-07 | Poetry's Untrusted Search Path can lead to Local Code Execution on Windows |
| CVE-2022-36069 | 2022-09-07 | Poetry Argument Injection vulnerability can lead to local Code Execution |
| CVE-2022-38314 | 2022-09-07 | Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain... |
| CVE-2022-38309 | 2022-09-07 | Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain... |
| CVE-2022-38310 | 2022-09-07 | Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain... |
| CVE-2022-38311 | 2022-09-07 | Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain... |
| CVE-2022-38312 | 2022-09-07 | Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain... |
| CVE-2022-38313 | 2022-09-07 | Tenda AC18 router v15.03.05.19 and v15.03.05.05 was discovered to contain... |
| CVE-2022-36073 | 2022-09-07 | RubyGems allows creation of users with arbitrary unverified emails |
| CVE-2022-3129 | 2022-09-07 | codeprojects Online Driving School registration.php unrestricted upload |
| CVE-2022-3130 | 2022-09-07 | codeprojects Online Driving School login.php sql injection |
| CVE-2022-36049 | 2022-09-07 | Flux2 Helm Controller denial of service |
| CVE-2022-36079 | 2022-09-07 | Parse Server vulnerable to brute force guessing of user sensitive data via search patterns |
| CVE-2022-36081 | 2022-09-07 | Wikmd vulnerable to Local File Enumeration when accessing /list |
| CVE-2022-36080 | 2022-09-07 | Wikmd Cross-site Scripting vulnerability |
| CVE-2022-38254 | 2022-09-07 | Nagios XI before v5.8.7 was discovered to contain a cross-site... |
| CVE-2022-38251 | 2022-09-07 | Nagios XI v5.8.6 was discovered to contain a cross-site scripting... |
| CVE-2022-38249 | 2022-09-07 | Nagios XI v5.8.6 was discovered to contain a cross-site scripting... |
| CVE-2022-38250 | 2022-09-07 | Nagios XI v5.8.6 was discovered to contain a SQL injection... |
| CVE-2022-38248 | 2022-09-07 | Nagios XI before v5.8.7 was discovered to contain multiple cross-site... |
| CVE-2022-38247 | 2022-09-07 | Nagios XI v5.8.6 was discovered to contain a cross-site scripting... |
| CVE-2020-19914 | 2022-09-07 | Cross Site Scripting (XSS) in xiunobbs 4.0.4 allows remote attackers... |
| CVE-2022-36082 | 2022-09-07 | mangadex-downloader vulnerable to unauthorized file reading |
| CVE-2022-36083 | 2022-09-07 | JOSE vulnerable to resource exhaustion via specifically crafted JWE |
| CVE-2022-36086 | 2022-09-07 | linked_list_allocator vulnerable to out-of-bound writes on `Heap` initialization and `Heap::extend` |
| CVE-2022-36088 | 2022-09-07 | GoCD Windows installations outside default location inadequately restrict installation file permissions |
| CVE-2022-36585 | 2022-09-07 | In Tenda G3 US_G3V3.0br_V15.11.0.6(7663)_EN_TDE, in httpd binary, the addDhcpRule function... |
| CVE-2022-36089 | 2022-09-07 | VelaUX APIServer vulnerable to Authentication Bypass by Capture-replay |
| CVE-2022-37778 | 2022-09-07 | Phicomm FIR151B A2, FIR302E A2, FIR300B A2, FIR303B A2 routers... |
| CVE-2022-37777 | 2022-09-07 | Phicomm FIR151B A2, FIR302E A2, FIR300B A2, FIR303B A2 routers... |