Adobe Commerce and Magento Open Source cross-site scripting | CVE-2022-35698
NAME Adobe Commerce and Magento Open Source cross-site scripting Platforms Affected:Adobe Commerce 2.4.4-p1 Adobe Commerce 2.4.5 Adobe Magento Open Source...
Vulnerabilities
Microsoft Windows Server Service Remote Protocol privilege escalation | CVE-2022-38045
NAME Microsoft Windows Server Service Remote Protocol privilege escalation Platforms Affected:Microsoft Windows Server 2012 Microsoft Windows 8.1 x32 Microsoft Windows...
Microsoft Windows Point-to-Point Tunneling Protocol code execution | CVE-2022-24504
NAME Microsoft Windows Point-to-Point Tunneling Protocol code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft...
Microsoft Windows ODBC Driver code execution | CVE-2022-38040
NAME Microsoft Windows ODBC Driver code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows...
Google Chrome Safe Browsing code execution | CVE-2022-3449
NAME Google Chrome Safe Browsing code execution Platforms Affected:Google Chrome 106.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
Google Chrome Skia code execution | CVE-2022-3445
NAME Google Chrome Skia code execution Platforms Affected:Google Chrome 106.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Google Chrome Peer Connection code execution | CVE-2022-3450
NAME Google Chrome Peer Connection code execution Platforms Affected:Google Chrome 106.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
Google Chrome WebSQL buffer overflow | CVE-2022-3446
NAME Google Chrome WebSQL buffer overflow Platforms Affected:Google Chrome 106.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome is vulnerable to a heap-based...
Microsoft Windows RAS Point-to-Point Tunneling Protocol code execution | CVE-2022-22035
NAME Microsoft Windows RAS Point-to-Point Tunneling Protocol code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64...
Microsoft Windows Active Directory Certificate Services privilege escalation | CVE-2022-37976
NAME Microsoft Windows Active Directory Certificate Services privilege escalation Platforms Affected:Microsoft Windows Server 2008 SP2 x64 Microsoft Windows Server 2008...
Microsoft Windows Point-to-Point Tunneling Protocol code execution | CVE-2022-41081
NAME Microsoft Windows Point-to-Point Tunneling Protocol code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft...
SVMPC1 and SVMPC2 information disclosure | CVE-2022-41653
NAME SVMPC1 and SVMPC2 information disclosure Platforms Affected:Daikin SVMPC1 2.1.22 Daikin SVMPC2 1.2.3Risk Level:9.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION SVMPC1 and SVMPC2 could...
Daily Vulnerability Trends: Wed Oct 12 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-42724 No description provided CVE-2022-0847A flaw was found in the way the...
Samsung Mobile devices directory traversal | CVE-2022-39858
NAME Samsung Mobile devices directory traversal Platforms Affected:Samsung mobile devicesRisk Level:8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Samsung Mobile devices could allow a local...
Fortinet FortiTester command execution | CVE-2022-33873
NAME Fortinet FortiTester command execution Platforms Affected:Fortinet FortiTester 3.8.0 Fortinet FortiTester 3.7.0 Fortinet FortiTester 2.3.0 Fortinet FortiTester 7.1.0 Fortinet FortiTester...
ZoneMinder cross-site request forgery | CVE-2022-39290
NAME ZoneMinder cross-site request forgery Platforms Affected:ZoneMinder ZoneMinder 1.36.26 ZoneMinder ZoneMinder 1.37.23Risk Level:8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION ZoneMinder is vulnerable to cross-site...
PJSIP security bypass | CVE-2022-39269
NAME PJSIP security bypass Platforms Affected:PJSIP PJSIP 2.12.1 PJSIP PJSIP 2.11Risk Level:9.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION PJSIP could allow a remote attacker...
ZoneMinder security bypass | CVE-2022-39289
NAME ZoneMinder security bypass Platforms Affected:ZoneMinder ZoneMinder 1.36.26 ZoneMinder ZoneMinder 1.37.23Risk Level:9.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION ZoneMinder could allow a remote attacker...
Linux Kernel code execution |
NAME Linux Kernel code execution Platforms Affected:Linux Kernel 5.4 Linux Kernel 5.10 Linux Kernel 5.15 Linux Kernel 5.19Risk Level:8.4Exploitability:Proof of...
Tesla Model 3 privilege escalation | CVE-2022-42430
NAME Tesla Model 3 privilege escalation Platforms Affected:Tesla Model 3Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Tesla Model 3 could allow a local...
Node.js tiny-csrf module information disclosure | CVE-2022-39287
NAME Node.js tiny-csrf module information disclosure Platforms Affected:Node.js tiny-csrf 1.0.3 Node.js tiny-csrf 1.0.2 Node.js tiny-csrf 1.0.1 Node.js tiny-csrf 1.0.0Risk Level:8.1Exploitability:UnprovenConsequences:Obtain...
Fortinet FortiOS, FortiProxy and FortiSwitchManager security bypass | CVE-2022-40684
NAME Fortinet FortiOS, FortiProxy and FortiSwitchManager security bypass Platforms Affected:Fortinet FortiOS 7.0.0 Fortinet FortiOS 7.0.2 Fortinet FortiOS 7.0.1 Fortinet FortiProxy...
Samsung Mobile devices buffer overflow | CVE-2022-39852
NAME Samsung Mobile devices buffer overflow Platforms Affected:Samsung Q 10 Samsung R 11 Samsung S 12Risk Level:8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Samsung...
Fortinet FortiTester command execution | CVE-2022-33872
NAME Fortinet FortiTester command execution Platforms Affected:Fortinet FortiTester 3.8.0 Fortinet FortiTester 3.7.0 Fortinet FortiTester 2.3.0 Fortinet FortiTester 7.1.0 Fortinet FortiTester...
