Apache Commons BCEL security bypass | CVE-2022-42920
NAME Apache Commons BCEL security bypass Platforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Apache Commons BCEL could allow a remote attacker to...
Vulnerabilities
Microsoft Exchange Server spoofing | CVE-2022-41078
NAME Microsoft Exchange Server spoofing Platforms Affected:Microsoft Exchange Server 2013 CU23 Microsoft Exchange Server 2016 CU22 Microsoft Exchange Server 2019...
Microsoft Exchange Server spoofing | CVE-2022-41079
NAME Microsoft Exchange Server spoofing Platforms Affected:Microsoft Exchange Server 2013 CU23 Microsoft Exchange Server 2016 CU22 Microsoft Exchange Server 2019...
Microsoft Windows Point-to-Point Tunneling Protocol code execution | CVE-2022-41039
NAME Microsoft Windows Point-to-Point Tunneling Protocol code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft...
Microsoft SharePoint Server code execution | CVE-2022-41062
NAME Microsoft SharePoint Server code execution Platforms Affected:Microsoft SharePoint Enterprise Server 2016 Microsoft SharePoint Enterprise Server 2013 SP1 Microsoft SharePoint...
Microsoft Windows ODBC Driver code execution | CVE-2022-41047
NAME Microsoft Windows ODBC Driver code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows...
VMware Workspace ONE Assist unauthorized access | CVE-2022-31687
NAME VMware Workspace ONE Assist unauthorized access Platforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION VMware Workspace ONE Assist could allow a remote...
SICK SIM4000 privilege escalation | CVE-2022-27582
NAME SICK SIM4000 privilege escalation Platforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION SICK SIM4000 could allow a remote authenticated attacker to gain...
Microsoft Windows Scripting Languages code execution | CVE-2022-41128
NAME Microsoft Windows Scripting Languages code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows...
Citrix ADC and Citrix Gateway brute force | CVE-2022-27516
NAME Citrix ADC and Citrix Gateway brute force Platforms Affected:Citrix Gateway 12.1 Citrix Gateway 13.0 Citrix ADC 13.0 Citrix ADC...
VMware Workspace ONE Assist unauthorized access | CVE-2022-31686
NAME VMware Workspace ONE Assist unauthorized access Platforms Affected:VMware Workspace ONE Assist 22.0 VMware Workspace ONE Assist 21.0Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access...
VMware Workspace ONE Assist security bypass | CVE-2022-31685
NAME VMware Workspace ONE Assist security bypass Platforms Affected:VMware Workspace ONE Assist 22.0 VMware Workspace ONE Assist 21.0Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security...
Microsoft Windows Point-to-Point Tunneling Protocol code execution | CVE-2022-41088
NAME Microsoft Windows Point-to-Point Tunneling Protocol code execution Platforms Affected:Microsoft Windows Server 2012 Microsoft Windows 8.1 x32 Microsoft Windows 8.1...
Microsoft Azure CLI code execution | CVE-2022-39327
NAME Microsoft Azure CLI code execution Platforms Affected:Microsoft Azure CLI 2.39.0Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Microsoft Azure CLI could allow a...
Microsoft Exchange Server privilege escalation | CVE-2022-41080
NAME Microsoft Exchange Server privilege escalation Platforms Affected:Microsoft Exchange Server 2013 CU23 Microsoft Exchange Server 2016 CU22 Microsoft Exchange Server...
Microsoft Windows Point-to-Point Tunneling Protocol code execution | CVE-2022-41044
NAME Microsoft Windows Point-to-Point Tunneling Protocol code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft...
SAP BusinessObjects BI Platform code execution | CVE-2022-41203
NAME SAP BusinessObjects BI Platform code execution Platforms Affected:SAP BusinessObjects BI Platform 4.2 SAP BusinessObjects BI Platform 4.3Risk Level:9.9Exploitability:UnprovenConsequences:Gain Access...
Daily Vulnerability Trends: Wed Nov 09 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-42919Python 3.9.x and 3.10.x through 3.10.8 on Linux allows local privilege escalation...
Daily Vulnerability Trends: Tue Nov 08 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-36537ZK Framework v9.6.1, 9.6.0.1, 9.5.1.3, 9.0.1.2 and 8.6.4.1 allows attackers to access...
Daily Vulnerability Trends: Mon Nov 07 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2021-25337Improper access control in clipboard service in Samsung mobile devices prior to...
Daily Vulnerability Trends: Sun Nov 06 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-42889Apache Commons Text performs variable interpolation, allowing properties to be dynamically evaluated...
D-Link DIR-878 command execution | CVE-2022-43184
NAME D-Link DIR-878 command execution Platforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION D-Link DIR-878 could allow a remote attacker to execute arbitrary...
Rukovoditel cross-site scripting | CVE-2022-43167
NAME Rukovoditel cross-site scripting Platforms Affected:Risk Level:10Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Rukovoditel is vulnerable to cross-site scripting, caused by improper validation of...
Rukovoditel SQL injection | CVE-2022-43168
NAME Rukovoditel SQL injection Platforms Affected:Risk Level:9.8Exploitability:HighConsequences:Data Manipulation DESCRIPTION Rukovoditel is vulnerable to SQL injection. A remote attacker could send...
