Lista CVE - 2023 / Gennaio
Visualizzazione 701 - 800 di 2351 CVE per Gennaio 2023 (Pagina 8 di 24)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2023-21754 | 2023-01-10 | Windows Kernel Elevation of Privilege Vulnerability |
| CVE-2023-21762 | 2023-01-10 | Microsoft Exchange Server Spoofing Vulnerability |
| CVE-2023-21771 | 2023-01-10 | Windows Local Session Manager (LSM) Elevation of Privilege Vulnerability |
| CVE-2023-22320 | 2023-01-10 | OpenAM Web Policy Agent (OpenAM Consortium Edition) provided by OpenAM... |
| CVE-2023-22895 | 2023-01-10 | The bzip2 crate before 0.4.4 for Rust allow attackers to... |
| CVE-2023-22898 | 2023-01-10 | workers/extractor.py in Pandora (aka pandora-analysis/pandora) 1.3.0 allows a denial of... |
| CVE-2023-22899 | 2023-01-10 | Zip4j through 2.11.2, as used in Threema and other products,... |
| CVE-2023-22903 | 2023-01-10 | api/views/user.py in LibrePhotos before e19e539 has incorrect access control. |
| CVE-2023-22909 | 2023-01-10 | An issue was discovered in MediaWiki before 1.35.9, 1.36.x through... |
| CVE-2023-22911 | 2023-01-10 | An issue was discovered in MediaWiki before 1.35.9, 1.36.x through... |
| CVE-2023-0012 | 2023-01-10 | Local Privilege Escalation in SAP Host Agent (Windows) |
| CVE-2023-0013 | 2023-01-10 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform |
| CVE-2023-0014 | 2023-01-10 | Capture-replay vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform |
| CVE-2023-0015 | 2023-01-10 | Cross-Site Scripting (XSS) vulnerability in SAP BusinessObjects Business Intelligence (Web Intelligence) |
| CVE-2023-0016 | 2023-01-10 | SQL Injection vulnerability in SAP Business Planning and Consolidation MS |
| CVE-2023-0017 | 2023-01-10 | Improper access control in SAP NetWeaver AS for Java |
| CVE-2023-0018 | 2023-01-10 | Cross-Site Scripting (XSS) vulnerability in SAP BusinessObjects Business Intelligence Platform (Central management console) |
| CVE-2023-0022 | 2023-01-10 | Code Injection vulnerability in SAP BusinessObjects Business Intelligence platform (Analysis edition for OLAP) |
| CVE-2023-0023 | 2023-01-10 | Information Disclosure in SAP Bank Account Management (Manage Banks) |
| CVE-2022-4294 | 2023-01-10 | Norton, Avira, Avast and AVG Antivirus for Windows Privilege Escalation |
| CVE-2022-4429 | 2023-01-10 | Avira Security for Windows - Denial of Service |
| CVE-2022-38773 | 2023-01-10 | Affected devices do not contain an Immutable Root of Trust... |
| CVE-2022-43513 | 2023-01-10 | A vulnerability has been identified in Automation License Manager V5... |
| CVE-2022-43514 | 2023-01-10 | A vulnerability has been identified in Automation License Manager V5... |
| CVE-2022-45092 | 2023-01-10 | A vulnerability has been identified in SINEC INS (All versions... |
| CVE-2022-45093 | 2023-01-10 | A vulnerability has been identified in SINEC INS (All versions... |
| CVE-2022-45094 | 2023-01-10 | A vulnerability has been identified in SINEC INS (All versions... |
| CVE-2022-46823 | 2023-01-10 | A vulnerability has been identified in Mendix SAML (Mendix 8... |
| CVE-2022-47935 | 2023-01-10 | A vulnerability has been identified in JT Open (All versions... |
| CVE-2022-47967 | 2023-01-10 | A vulnerability has been identified in Solid Edge (All versions... |
| CVE-2016-15017 | 2023-01-10 | fabarea media_upload UploadFileService.php getUploadedFileList pathname traversal |
| CVE-2014-125073 | 2023-01-10 | mapoor voteapp app.py show_refresh sql injection |
| CVE-2022-4709 | 2023-01-10 | The Royal Elementor Addons plugin for WordPress is vulnerable to... |
| CVE-2022-4700 | 2023-01-10 | The Royal Elementor Addons plugin for WordPress is vulnerable to... |
| CVE-2022-4702 | 2023-01-10 | The Royal Elementor Addons plugin for WordPress is vulnerable to... |
| CVE-2022-4711 | 2023-01-10 | The Royal Elementor Addons plugin for WordPress is vulnerable to... |
| CVE-2022-4708 | 2023-01-10 | The Royal Elementor Addons plugin for WordPress is vulnerable to... |
| CVE-2022-4710 | 2023-01-10 | The Royal Elementor Addons plugin for WordPress is vulnerable to... |
| CVE-2022-4704 | 2023-01-10 | The Royal Elementor Addons plugin for WordPress is vulnerable to... |
| CVE-2022-4705 | 2023-01-10 | The Royal Elementor Addons plugin for WordPress is vulnerable to... |
| CVE-2022-4703 | 2023-01-10 | The Royal Elementor Addons plugin for WordPress is vulnerable to... |
| CVE-2022-4701 | 2023-01-10 | The Royal Elementor Addons plugin for WordPress is vulnerable to... |
| CVE-2022-4707 | 2023-01-10 | The Royal Elementor Addons plugin for WordPress is vulnerable to... |
| CVE-2023-0162 | 2023-01-10 | The CPO Companion plugin for WordPress is vulnerable to Stored... |
| CVE-2021-26316 | 2023-01-10 | Failure to validate the communication buffer and communication service in... |
| CVE-2021-26346 | 2023-01-10 | Failure to validate the integer operand in ASP (AMD Secure... |
| CVE-2022-4636 | 2023-01-10 | Black Box KVM Firmware version 3.4.31307 on models ACR1000A-R-R2, ACR1000A-T-R2,... |
| CVE-2022-46163 | 2023-01-10 | travel-support-program vulnerable to data exfiltration via Ransack query injection |
| CVE-2023-22469 | 2023-01-10 | Nextcloud Deck card vulnerable to data leak to unauthorized users via reference preview cache |
| CVE-2023-22479 | 2023-01-10 | KubePi vulnerable to session fixation attack |
| CVE-2022-38393 | 2023-01-10 | A denial of service vulnerability exists in the cfg_server cm_processConnDiagPktList... |
| CVE-2022-38105 | 2023-01-10 | An information disclosure vulnerability exists in the cm_processREQ_NC opcode of... |
| CVE-2022-35401 | 2023-01-10 | An authentication bypass vulnerability exists in the get_IFTTTTtoken.cgi functionality of... |
| CVE-2021-46795 | 2023-01-10 | A TOCTOU (time-of-check to time-of-use) vulnerability exists where an attacker... |
| CVE-2021-26328 | 2023-01-10 | Failure to verify the mode of CPU execution at the... |
| CVE-2021-26343 | 2023-01-10 | Insufficient validation in ASP BIOS and DRTM commands may allow... |
| CVE-2021-26355 | 2023-01-10 | Insufficient fencing and checks in System Management Unit (SMU) may... |
| CVE-2021-26396 | 2023-01-10 | Insufficient validation of address mapping to IO in ASP (AMD... |
| CVE-2021-26398 | 2023-01-10 | Insufficient input validation in SYS_KEY_DERIVE system call in a compromised... |
| CVE-2021-26402 | 2023-01-10 | Insufficient bounds checking in ASP (AMD Secure Processor) firmware while... |
| CVE-2021-26403 | 2023-01-10 | Insufficient checks in SEV may lead to a malicious hypervisor... |
| CVE-2021-26404 | 2023-01-10 | Improper input validation and bounds checking in SEV firmware may... |
| CVE-2021-26407 | 2023-01-10 | A randomly generated Initialization Vector (IV) may lead to a... |
| CVE-2021-26409 | 2023-01-10 | Insufficient bounds checking in SEV-ES may allow an attacker to... |
| CVE-2021-46767 | 2023-01-10 | Insufficient input validation in the ASP may allow an attacker... |
| CVE-2021-46768 | 2023-01-10 | Insufficient input validation in SEV firmware may allow an attacker... |
| CVE-2021-46779 | 2023-01-10 | Insufficient input validation in SVC_ECC_PRIMITIVE system call in a compromised... |
| CVE-2021-46791 | 2023-01-10 | Insufficient input validation during parsing of the System Management Mode... |
| CVE-2022-23813 | 2023-01-10 | The software interfaces to ASP and SMU may not enforce... |
| CVE-2022-23814 | 2023-01-10 | Failure to validate addresses provided by software to BIOS commands... |
| CVE-2023-20522 | 2023-01-10 | Insufficient input validation in ASP may allow an attacker with... |
| CVE-2023-20523 | 2023-01-10 | TOCTOU in the ASP may allow a physical attacker to... |
| CVE-2023-20525 | 2023-01-10 | Insufficient syscall input validation in the ASP Bootloader may allow... |
| CVE-2023-20527 | 2023-01-10 | Improper syscall input validation in the ASP Bootloader may allow... |
| CVE-2023-20528 | 2023-01-10 | Insufficient input validation in the SMU may allow a physical... |
| CVE-2023-20529 | 2023-01-10 | Insufficient bound checks in the SMU may allow an attacker... |
| CVE-2023-20530 | 2023-01-10 | Insufficient input validation of BIOS mailbox messages in SMU may... |
| CVE-2023-20531 | 2023-01-10 | Insufficient bound checks in the SMU may allow an attacker... |
| CVE-2023-20532 | 2023-01-10 | Insufficient input validation in the SMU may allow an attacker... |
| CVE-2022-43391 | 2023-01-11 | A buffer overflow vulnerability in the parameter of the CGI... |
| CVE-2022-43392 | 2023-01-11 | A buffer overflow vulnerability in the parameter of web server... |
| CVE-2021-3966 | 2023-01-11 | Usb bluetooth device ACL read cb buffer overflow |
| CVE-2022-0553 | 2023-01-11 | Possible to retrieve uncrypted firmware image |
| CVE-2022-42967 | 2023-01-11 | XSS in Caret markdown editor leads to remote code execution when viewing crafted Markdown files |
| CVE-2022-43389 | 2023-01-11 | A buffer overflow vulnerability in the library of the web... |
| CVE-2022-43390 | 2023-01-11 | A command injection vulnerability in the CGI program of Zyxel... |
| CVE-2022-43393 | 2023-01-11 | An improper check for unusual or exceptional conditions in the... |
| CVE-2022-4344 | 2023-01-11 | Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0... |
| CVE-2022-4415 | 2023-01-11 | A vulnerability was found in systemd. This security flaw can... |
| CVE-2022-4543 | 2023-01-11 | A flaw named "EntryBleed" was found in the Linux Kernel... |
| CVE-2022-47859 | 2023-01-11 | Lead Management System v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-47860 | 2023-01-11 | Lead Management System v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-47861 | 2023-01-11 | Lead Management System v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-47862 | 2023-01-11 | Lead Management System v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-47864 | 2023-01-11 | Lead Management System v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-47865 | 2023-01-11 | Lead Management System v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-47866 | 2023-01-11 | Lead management system v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-48252 | 2023-01-11 | The jokob-sk/Pi.Alert fork (before 22.12.20) of Pi.Alert allows Remote Code... |
| CVE-2022-48253 | 2023-01-11 | nhttpd in Nostromo before 2.1 is vulnerable to a path... |
| CVE-2023-22945 | 2023-01-11 | In the GrowthExperiments extension for MediaWiki through 1.39, the growthmanagementorlist... |