Daily Vulnerability Trends: Mon Jan 23 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-42864A race condition was addressed with improved state handling. This issue is...
Vulnerabilities
Daily Vulnerability Trends: Sun Jan 22 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-35690Adobe ColdFusion versions Update 14 (and earlier) and Update 4 (and earlier)...
Git Git GUI privilege escalation | CVE-2022-41953
NAME__________Git Git GUI privilege escalationPlatforms Affected:Git for Windows Git for Windows 2.39.0Risk Level:8.6Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Git GUI could allow a remote...
LISTSERV cross-site scripting | CVE-2022-39195
NAME__________LISTSERV cross-site scriptingPlatforms Affected:Risk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________LISTSERV is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A...
Dell EMC PV ME5 privilege escalation | CVE-2023-23691
NAME__________Dell EMC PV ME5 privilege escalationPlatforms Affected:Dell PowerVault ME5 1.1.0.0Risk Level:8.1Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Dell EMC PV ME5 could allow a remote...
Daily Vulnerability Trends: Sat Jan 21 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-4873On Netcomm router models NF20MESH, NF20, and NL1902 a stack based buffer...
Oracle Hospitality Reporting and Analytics privilege escalation | CVE-2023-21828
NAME__________Oracle Hospitality Reporting and Analytics privilege escalationPlatforms Affected:Oracle Hospitality Reporting and Analytics 9.1.0Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________An unspecified vulnerability in Oracle...
Oracle Fusion Middleware privilege escalation | CVE-2023-21846
NAME__________Oracle Fusion Middleware privilege escalationPlatforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________An unspecified vulnerability in Oracle Fusion Middleware related to the Admin Security...
Oracle Fusion Middleware privilege escalation | CVE-2023-21832
NAME__________Oracle Fusion Middleware privilege escalationPlatforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________An unspecified vulnerability in Oracle Fusion Middleware related to the Admin Security...
Huawei printer product privilege escalation | CVE-2022-48259
NAME__________Huawei printer product privilege escalationPlatforms Affected:Huawei BiSheng-WNM 3.0.0.325Risk Level:9.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Huawei printer product could allow a remote attacker to gain...
Huawei printer product code execution | CVE-2022-48255
NAME__________Huawei printer product code executionPlatforms Affected:Huawei BiSheng-WNM 3.0.0.325Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Huawei printer product could allow a remote attacker to execute...
Oracle Fusion Middleware security bypass | CVE-2023-21862
NAME__________Oracle Fusion Middleware security bypassPlatforms Affected:Risk Level:8.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________An unspecified vulnerability in Oracle Fusion Middleware related to the XML Security...
Daily Vulnerability Trends: Fri Jan 20 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-44877login/index.php in CWP (aka Control Web Panel or CentOS Web Panel) 7...
Oracle Communications privilege escalation | CVE-2023-21890
NAME__________Oracle Communications privilege escalationPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________An unspecified vulnerability in Oracle Communications related to the Core component could allow...
Hospital Management System SQL injection | CVE-2022-46093
NAME__________Hospital Management System SQL injectionPlatforms Affected:Risk Level:9.8Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Hospital Management System is vulnerable to SQL injection. A remote attacker could...
Oracle Communications Applications privilege escalation | CVE-2023-21848
NAME__________Oracle Communications Applications privilege escalationPlatforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________An unspecified vulnerability in Oracle Communications Applications related to the Admin Configuration...
Oracle VM VirtualBox privilege escalation | CVE-2023-21886
NAME__________Oracle VM VirtualBox privilege escalationPlatforms Affected:Risk Level:8.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________An unspecified vulnerability in Oracle VM VirtualBox related to the Core component...
libXpm code execution | CVE-2022-4883
NAME__________libXpm code executionPlatforms Affected:libXpm libXpm 3.5.14Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________libXpm could allow a remote attacker to execute arbitrary code on the...
Cisco Unified Communications Manager SQL injection | CVE-2023-20010
NAME__________Cisco Unified Communications Manager SQL injectionPlatforms Affected:Risk Level:8.1Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Cisco Unified Communications Manager is vulnerable to SQL injection. A remote...
Daily Vulnerability Trends: Thu Jan 19 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2021-31985Microsoft Defender Remote Code Execution VulnerabilityCVE-2023-21674Windows Advanced Local Procedure Call (ALPC) Elevation...
phpMyFAQ cross-site scripting | CVE-2023-0309
NAME__________phpMyFAQ cross-site scriptingPlatforms Affected:Risk Level:8.6Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________phpMyFAQ is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A...
Git integer overflow | CVE-2022-23521
NAME__________Git integer overflowPlatforms Affected:Git Git 2.30.0 Git Git 2.36 Git Git 2.37 Git Git 2.38.0 GIt Git 2.39Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access...
Mozilla Firefox safety bugs code execution | CVE-2023-23606
NAME__________Mozilla Firefox safety bugs code executionPlatforms Affected:Mozilla Firefox 108Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Mozilla Firefox could allow a remote attacker to execute...
Mediamatic plugin for WordPress cross-site request forgery | CVE-2023-0294
NAME__________Mediamatic plugin for WordPress cross-site request forgeryPlatforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Mediamatic plugin for WordPress is vulnerable to cross-site request forgery,...
