Daily Vulnerability Trends: Wed Feb 08 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-44268ImageMagick 7.1.0-49 is vulnerable to Information Disclosure. When it parses a PNG...
Vulnerabilities
Daily Vulnerability Trends: Tue Feb 07 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2021-27365An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI...
Daily Vulnerability Trends: Mon Feb 06 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-27596A vulnerability has been reported to affect QNAP device running QuTS hero,...
PHPGurukul Employee Leaves Management System weak security | CVE-2023-0641
NAME__________PHPGurukul Employee Leaves Management System weak securityPlatforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Other DESCRIPTION__________PHPGurukul Employee Leaves Management System could provide weaker than expected security,...
IBM WebSphere Application Server code execution | CVE-2023-23477
NAME__________IBM WebSphere Application Server code executionPlatforms Affected:IBM WebSphere Application Server 8.5 IBM WebSphere Application Server 9.0Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________IBM WebSphere...
TRENDnet TEW-811DRU command execution |
NAME__________TRENDnet TEW-811DRU command executionPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________TRENDnet TEW-652BRP could allow a remote attacker to execute arbitrary commands on the...
TRENDnet TEW-652BRP command execution | CVE-2023-0640
NAME__________TRENDnet TEW-652BRP command executionPlatforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________TRENDnet TEW-652BRP could allow a remote authenticated attacker to execute arbitrary commands on...
GNU C Library (glibc) buffer overflow | CVE-2023-25139
NAME__________GNU C Library (glibc) buffer overflowPlatforms Affected:GNU glibc 2.37Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________GNU C Library (glibc) is vulnerable to a buffer...
femanager extension for TYPO3 security bypass | CVE-2023-25014
NAME__________femanager extension for TYPO3 security bypassPlatforms Affected:TYPO3 Femanager extension TYPO3 6.3.0 TYPO3 femanager extension for TYPO3 6.0.0 TYPO3 femanager extension...
NOSH ChartingSystem file upload | CVE-2023-24610
NAME__________NOSH ChartingSystem file uploadPlatforms Affected:Risk Level:8.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NOSH ChartingSystem could allow a remote authenticated attacker to upload arbitrary files, caused...
Tenable tenable.io, tenable.sc and Nessus privilege escalation | CVE-2023-0524
NAME__________Tenable tenable.io, tenable.sc and Nessus privilege escalationPlatforms Affected:Tenable Network Security Nessus Tenable Tenable.io Tenable Tenable.scRisk Level:9.1Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Tenable tenable.io, tenable.sc...
Daily Vulnerability Trends: Sun Feb 05 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2019-2215A use-after-free in binder.c allows an elevation of privilege from an application...
SelfWealth iOS application security bypass | CVE-2023-23131
NAME__________SelfWealth iOS application security bypassPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________SelfWealth iOS application could allow a remote attacker to bypass security restrictions,...
femanager extension for TYPO3 security bypass | CVE-2013-25014
NAME__________femanager extension for TYPO3 security bypassPlatforms Affected:TYPO3 Femanager extension TYPO3 6.3.0 TYPO3 femanager extension for TYPO3 6.0.0 TYPO3 femanager extension...
SelfWealth iOS application default account | CVE-2023-23132
NAME__________SelfWealth iOS application default accountPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________SelfWealth iOS application contains default hardcoded credentials. A remote attacker could exploit...
Dell PowerProtect Data Domain appliance command execution | CVE-2023-23692
NAME__________Dell PowerProtect Data Domain appliance command executionPlatforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Dell PowerProtect Data Domain appliance could allow a remote authenticated...
Mura CMS security bypass | CVE-2022-47003
NAME__________Mura CMS security bypassPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Mura CMS could allow a remote attacker to bypass security restrictions, caused by...
femanager extension for TYPO3 security bypass | CVE-2023-25013
NAME__________femanager extension for TYPO3 security bypassPlatforms Affected:TYPO3 Femanager extension TYPO3 6.3.0 TYPO3 femanager extension for TYPO3 6.0.0 TYPO3 femanager extension...
Dell EMC PowerScale OneFS information disclosure | CVE-2023-22575
NAME__________Dell EMC PowerScale OneFS information disclosurePlatforms Affected:Risk Level:8.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Dell EMC PowerScale OneFS could allow a remote authenticated attacker within...
TRENDnet TEW-652BRP command execution | CVE-2023-0611
NAME__________TRENDnet TEW-652BRP command executionPlatforms Affected:Risk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________TRENDnet TEW-652BRP could allow a remote authenticated attacker to execute arbitrary...
Tenable tenable.io, tenable.sc and Nessus privilege escalation | CVE-2023-0524
NAME__________Tenable tenable.io, tenable.sc and Nessus privilege escalationPlatforms Affected:Tenable Network Security Nessus Tenable Tenable.io Tenable Tenable.scRisk Level:9.1Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Tenable tenable.io, tenable.sc...
Delta Electronics DX-2100L1-CN cross-site scripting | CVE-2023-0432
NAME__________Delta Electronics DX-2100L1-CN cross-site scriptingPlatforms Affected:Risk Level:9Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Delta Electronics DX-2100L1-CN is vulnerable to cross-site scripting, caused by improper validation...
Dell EMC PowerScale OneFS information disclosure | CVE-2023-22574
NAME__________Dell EMC PowerScale OneFS information disclosurePlatforms Affected:Risk Level:8.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Dell EMC PowerScale OneFS could allow a remote authenticated attacker to...
Masa CMS security bypass | CVE-2022-47002
NAME__________Masa CMS security bypassPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Masa CMS could allow a remote attacker to bypass security restrictions, caused by...
