Lista CVE - 2023 / Dicembre
Visualizzazione 401 - 500 di 2674 CVE per Dicembre 2023 (Pagina 5 di 27)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2023-33071 | 2023-12-05 | Improper Access Control in Automotive OS Platform Android |
| CVE-2023-33079 | 2023-12-05 | Use of Out-of-range Pointer Offset in Audio |
| CVE-2023-33080 | 2023-12-05 | Buffer over-read in WLAN Firmware |
| CVE-2023-33081 | 2023-12-05 | Buffer over-read in WLAN Firmware |
| CVE-2023-33082 | 2023-12-05 | Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in WLAN Host |
| CVE-2023-33083 | 2023-12-05 | Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in WLAN Host |
| CVE-2023-33087 | 2023-12-05 | Buffer Copy without Checking Size of Input (`Classic Buffer Overflow`) in Core |
| CVE-2023-33088 | 2023-12-05 | NULL pointer dereference in WLAN Firmware |
| CVE-2023-33089 | 2023-12-05 | NULL Pointer Dereference in WLAN Firmware |
| CVE-2023-33092 | 2023-12-05 | Buffer Copy Without Checking Size of Input in Bluetooth HOST |
| CVE-2023-33097 | 2023-12-05 | Buffer Over-read in WLAN Firmware |
| CVE-2023-33098 | 2023-12-05 | Buffer Over-read in WLAN Firmware |
| CVE-2023-33106 | 2023-12-05 | Use of Out-of-range Pointer Offset in Graphics |
| CVE-2023-33107 | 2023-12-05 | Integer Overflow or Wraparound in Graphics Linux |
| CVE-2023-44288 | 2023-12-05 | Dell PowerScale OneFS, 8.2.2.x through 9.6.0.x, contains an improper control... |
| CVE-2023-44295 | 2023-12-05 | Dell PowerScale OneFS versions 8.2.2.x through 9.6.0.x contains an improper... |
| CVE-2023-39248 | 2023-12-05 | Dell OS10 Networking Switches running 10.5.2.x and above contain an... |
| CVE-2023-5188 | 2023-12-05 | WAGO Improper Input Validation in IEC61850 Server / Telecontrol |
| CVE-2023-6269 | 2023-12-05 | Argument injection vulnerability in Atos Unify OpenScape Session Border Controller, Atos Unify OpenScape Branch and Atos Unify OpenScape BCF |
| CVE-2023-49070 | 2023-12-05 | Pre-auth RCE in Apache Ofbiz 18.12.09 due to XML-RPC still present |
| CVE-2023-41835 | 2023-12-05 | Apache Struts: excessive disk usage |
| CVE-2023-43608 | 2023-12-05 | A data integrity vulnerability exists in the BR_NO_CHECK_HASH_FOR functionality of... |
| CVE-2023-45838 | 2023-12-05 | Multiple data integrity vulnerabilities exist in the package hash checking... |
| CVE-2023-45839 | 2023-12-05 | Multiple data integrity vulnerabilities exist in the package hash checking... |
| CVE-2023-45840 | 2023-12-05 | Multiple data integrity vulnerabilities exist in the package hash checking... |
| CVE-2023-45841 | 2023-12-05 | Multiple data integrity vulnerabilities exist in the package hash checking... |
| CVE-2023-45842 | 2023-12-05 | Multiple data integrity vulnerabilities exist in the package hash checking... |
| CVE-2023-43628 | 2023-12-05 | An integer underflow vulnerability exists in the NTRIP Stream Parsing... |
| CVE-2022-24403 | 2023-12-05 | De-anonymization attack in TETRA |
| CVE-2023-6357 | 2023-12-05 | OS Command Injection in multiple CODESYS products |
| CVE-2023-6180 | 2023-12-05 | Resource exhaustion via memory leak in tokio-boring |
| CVE-2023-44297 | 2023-12-05 | Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision... |
| CVE-2023-44298 | 2023-12-05 | Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision... |
| CVE-2023-45083 | 2023-12-05 | HyperCloud: "admin" and "serveradmin" users can be deleted |
| CVE-2023-45084 | 2023-12-05 | Media caddy removal and reinsertion without reboot may cause data loss |
| CVE-2023-45085 | 2023-12-05 | When compute hosts are disabled and reenabled, they immediately transition to "ON", not "INIT" |
| CVE-2023-45287 | 2023-12-05 | Before Go 1.20, the RSA based key exchange methods in crypto/tls may exhibit a timing side channel |
| CVE-2023-46674 | 2023-12-05 | Elasticsearch-hadoop Unsafe Deserialization |
| CVE-2023-6448 | 2023-12-05 | Unitronics VisiLogic uses a default administrative password |
| CVE-2023-44221 | 2023-12-05 | Improper neutralization of special elements in the SMA100 SSL-VPN management... |
| CVE-2023-5970 | 2023-12-05 | Improper authentication in the SMA100 SSL-VPN virtual office portal allows... |
| CVE-2023-49297 | 2023-12-05 | Unsafe YAML deserialization in PyDrive2 |
| CVE-2023-46736 | 2023-12-05 | Server-Side Request Forgery in espocrm |
| CVE-2023-49282 | 2023-12-05 | Test code in published microsoft-graph package exposes phpinfo() |
| CVE-2023-49283 | 2023-12-05 | Test code in published microsoft-graph-core package exposes phpinfo() |
| CVE-2023-24547 | 2023-12-05 | On Arista MOS configuration of a BGP password will cause the password to be logged in clear text. |
| CVE-2023-28875 | 2023-12-06 | A Stored XSS issue in shared files download terms in... |
| CVE-2023-28876 | 2023-12-06 | A Broken Access Control issue in comments to uploaded files... |
| CVE-2023-36655 | 2023-12-06 | The login REST API in ProLion CryptoSpike 3.0.15P2 (when LDAP... |
| CVE-2023-46353 | 2023-12-06 | In the module "Product Tag Icons Pro" (ticons) before 1.8.4... |
| CVE-2023-46354 | 2023-12-06 | In the module "Orders (CSV, Excel) Export PRO" (ordersexport) <... |
| CVE-2023-46751 | 2023-12-06 | An issue was discovered in the function gdev_prn_open_printer_seekable() in Artifex... |
| CVE-2023-48123 | 2023-12-06 | An issue in Netgate pfSense Plus v.23.05.1 and before and... |
| CVE-2023-48849 | 2023-12-06 | Ruijie EG Series Routers version EG_3.0(1)B11P216 and before allows unauthenticated... |
| CVE-2023-48859 | 2023-12-06 | TOTOLINK A3002RU version 2.0.0-B20190902.1958 has a post-authentication RCE due to... |
| CVE-2023-48930 | 2023-12-06 | xinhu xinhuoa 2.2.1 contains a File upload vulnerability. |
| CVE-2023-48940 | 2023-12-06 | A stored cross-site scripting (XSS) vulnerability in /admin.php of DaiCuo... |
| CVE-2021-27795 | 2023-12-06 | License forgery in Brocade Fabric OS (FOS) hardware platforms running any version of Brocade Fabric OS software, |
| CVE-2023-6508 | 2023-12-06 | Use after free in Media Stream in Google Chrome prior... |
| CVE-2023-6509 | 2023-12-06 | Use after free in Side Panel Search in Google Chrome... |
| CVE-2023-6510 | 2023-12-06 | Use after free in Media Capture in Google Chrome prior... |
| CVE-2023-6511 | 2023-12-06 | Inappropriate implementation in Autofill in Google Chrome prior to 120.0.6099.62... |
| CVE-2023-6512 | 2023-12-06 | Inappropriate implementation in Web Browser UI in Google Chrome prior... |
| CVE-2023-40053 | 2023-12-06 | HTML injection Vulnerability in Serv-U 15.4 |
| CVE-2023-41268 | 2023-12-06 | Possible stack overflow due to insufficient input validation |
| CVE-2023-6527 | 2023-12-06 | The Email Subscription Popup plugin for WordPress is vulnerable to... |
| CVE-2023-22524 | 2023-12-06 | Certain versions of the Atlassian Companion App for MacOS were... |
| CVE-2023-22523 | 2023-12-06 | This vulnerability, if exploited, allows an attacker to perform privileged... |
| CVE-2023-26154 | 2023-12-06 | Versions of the package pubnub before 7.4.0; all versions of... |
| CVE-2023-22522 | 2023-12-06 | This Template Injection vulnerability allows an authenticated attacker, including one... |
| CVE-2023-2861 | 2023-12-06 | Qemu: 9pfs: improper access control on special files |
| CVE-2023-49897 | 2023-12-06 | An OS command injection vulnerability exists in AE1021PE firmware version... |
| CVE-2023-6458 | 2023-12-06 | Client side path traversal due to lack of route parameters validation |
| CVE-2023-6459 | 2023-12-06 | Public endpoint /metrics of Calls plugin reveals channel IDs |
| CVE-2023-6514 | 2023-12-06 | The Bluetooth module of some Huawei Smart Screen products has... |
| CVE-2023-46773 | 2023-12-06 | Permission management vulnerability in the PMS module. Successful exploitation of... |
| CVE-2023-49247 | 2023-12-06 | Permission verification vulnerability in distributed scenarios. Successful exploitation of this... |
| CVE-2023-49248 | 2023-12-06 | Vulnerability of unauthorized file access in the Settings app. Successful... |
| CVE-2023-44099 | 2023-12-06 | Vulnerability of data verification errors in the kernel module. Successful... |
| CVE-2023-45210 | 2023-12-06 | Pleasanter 1.3.47.0 and earlier contains an improper access control vulnerability,... |
| CVE-2023-46688 | 2023-12-06 | Open redirect vulnerability in Pleasanter 1.3.47.0 and earlier allows a... |
| CVE-2023-34439 | 2023-12-06 | Pleasanter 1.3.47.0 and earlier contains a stored cross-site scripting vulnerability.... |
| CVE-2023-44113 | 2023-12-06 | Vulnerability of missing permission verification for APIs in the Designed... |
| CVE-2023-49241 | 2023-12-06 | API permission control vulnerability in the network management module. Successful... |
| CVE-2023-49242 | 2023-12-06 | Free broadcast vulnerability in the running management module. Successful exploitation... |
| CVE-2023-49243 | 2023-12-06 | Vulnerability of unauthorized access to email attachments in the email... |
| CVE-2023-49244 | 2023-12-06 | Permission management vulnerability in the multi-user module. Successful exploitation of... |
| CVE-2023-49245 | 2023-12-06 | Unauthorized access vulnerability in the Huawei Share module. Successful exploitation... |
| CVE-2023-49246 | 2023-12-06 | Unauthorized access vulnerability in the card management module. Successful exploitation... |
| CVE-2023-49239 | 2023-12-06 | Unauthorized access vulnerability in the card management module. Successful exploitation... |
| CVE-2023-49240 | 2023-12-06 | Unauthorized access vulnerability in the launcher module. Successful exploitation of... |
| CVE-2023-6273 | 2023-12-06 | Permission management vulnerability in the module for disabling Sound Booster.... |
| CVE-2023-32268 | 2023-12-06 | Administrator equivalent Filr user can access proxy administrator credentials |
| CVE-2023-6288 | 2023-12-06 | Code injection in Remote Desktop Manager 2023.3.9.3 and earlier on... |
| CVE-2023-39539 | 2023-12-06 | Failure when uploading a Logo image file |
| CVE-2023-39538 | 2023-12-06 | Failure when uploading a Logo image file |
| CVE-2023-39326 | 2023-12-06 | Denial of service via chunk extensions in net/http |
| CVE-2023-45285 | 2023-12-06 | Command 'go get' may unexpectedly fallback to insecure git in cmd/go |
| CVE-2023-6393 | 2023-12-06 | Quarkus: potential invalid reuse of context when @cacheresult on a uni is used |
| CVE-2023-49096 | 2023-12-06 | Argument Injection in FFmpeg codec parameters in Jellyfin |