Daily Vulnerability Trends: Sun Sep 11 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2018-12613An issue was discovered in phpMyAdmin 4.8.x before 4.8.2, in which an...
Vulnerabilities
XWiki Platform Old Core security bypass | CVE-2022-36090
NAME XWiki Platform Old Core security bypass Platforms Affected:XWiki Platform Old Core 13.10.4 XWiki Platform Old Core 14.2Risk Level:8.1Exploitability:UnprovenConsequences:Bypass Security...
XWiki Platform Web Templates security bypass | CVE-2022-36093
NAME XWiki Platform Web Templates security bypass Platforms Affected:XWiki Platform Web Templates 8.0RC1 XWiki Platform Web Templates 13.10.4 XWiki Platform...
PlexTrac brute force | CVE-2022-37144
NAME PlexTrac brute force Platforms Affected:PlexTrac PlexTrac 1.27.0 PlexTrac PlexTrac 1.26.0 PlexTrac PlexTrac 1.25.0 PlexTrac PlexTrac 1.24.0 PlexTrac PlexTrac 1.23.0...
NETGEAR R6200_v2 command execution | CVE-2022-30079
NAME NETGEAR R6200_v2 command execution Platforms Affected:NETGEAR R6200v2 1.0.3 NETGEAR R6200v2 1.0.3.12_10.1.11Risk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION NETGEAR R6200_v2 could...
XWiki Platform Applications Tag and XWiki Platform Tag UI code execution | CVE-2022-36100
NAME XWiki Platform Applications Tag and XWiki Platform Tag UI code execution Platforms Affected:XWiki Platform Applications Tag 1.7 XWiki Platform...
XWiki Platform Attachment UI cross-site scripting | CVE-2022-36097
NAME XWiki Platform Attachment UI cross-site scripting Platforms Affected:XWiki Platform Attachment UI 14.0-rc-1 XWiki Platform Attachment UI 14.3Risk Level:8.9Exploitability:UnprovenConsequences:Cross-Site Scripting...
XWiki Platform Mentions UI cross-site scripting | CVE-2022-36098
NAME XWiki Platform Mentions UI cross-site scripting Platforms Affected:XWiki Platform Mentions UI 12.5-rc-1 XWiki Platform Mentions UI 13.10.5 XWiki Platform...
XWiki Platform Index UI cross-site scripting | CVE-2022-36096
NAME XWiki Platform Index UI cross-site scripting Platforms Affected:XWiki Platform Index UI 13.10.5 XWiki Platform Index UI 14.2Risk Level:8.9Exploitability:UnprovenConsequences:Cross-Site Scripting...
XWiki Platform Wiki UI Main Wiki code execution | CVE-2022-36099
NAME XWiki Platform Wiki UI Main Wiki code execution Platforms Affected:XWiki Platform Wiki UI Main Wiki 13.10.5 XWiki Platform Wiki...
XWiki Platform Web Parent POM cross-site scripting | CVE-2022-36094
NAME XWiki Platform Web Parent POM cross-site scripting Platforms Affected:XWiki Platform Web Parent POM 1.0 XWiki Platform Web Parent POM...
Daily Vulnerability Trends: Sat Sep 10 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-34747A format string vulnerability in Zyxel NAS326 firmware versions prior to V5.21(AAZF.12)C0...
OpenRemote code execution | CVE-2022-31860
NAME OpenRemote code execution Platforms Affected:OpenRemote OpenRemote 1.0.4Risk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION OpenRemote could allow a remote authenticated attacker...
Tenda G3 buffer overflow | CVE-2022-36584
NAME Tenda G3 buffer overflow Platforms Affected:Tenda G3 US_G3V3.0br_V15.11.0.6(7663)_EN_TDERisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Tenda G3 is vulnerable to a buffer overflow,...
Vim code execution | CVE-2022-3134
NAME Vim code execution Platforms Affected:Vim Vim 9.0.0388Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim could allow a remote attacker to...
ActivityWatch security bypass | CVE-2022-31149
NAME ActivityWatch security bypass Platforms Affected:ActivityWatch ActivityWatch 0.12.0b1Risk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION ActivityWatch could allow a remote attacker to bypass security...
Rust OSDev linked-list-allocator code execution | CVE-2022-36086
NAME Rust OSDev linked-list-allocator code execution Platforms Affected:Rust OSDev linked-list-allocator 0.10.1Risk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Rust OSDev linked-list-allocator could allow a...
XWiki Platform privilege escalation | CVE-2022-31166
NAME XWiki Platform privilege escalation Platforms Affected:XWiki XWiki Platform 11.3.7 XWiki XWiki Platform 12.0RC1 XWiki XWiki Platform 11.10.3Risk Level:8.1Exploitability:UnprovenConsequences:Gain Privileges...
MZ Automation libIEC61850 buffer overflow | CVE-2022-2970
NAME MZ Automation libIEC61850 buffer overflow Platforms Affected:MZ Automation LibIEC61850 1.5.0 MZ Automation libIEC61850 1.4Risk Level:10Exploitability:UnprovenConsequences:Gain Access DESCRIPTION MZ Automation...
MZ Automation libIEC61850 buffer overflow | CVE-2022-2972
NAME MZ Automation libIEC61850 buffer overflow Platforms Affected:MZ Automation LibIEC61850 1.5.0 MZ Automation libIEC61850 1.4Risk Level:10Exploitability:UnprovenConsequences:Gain Access DESCRIPTION MZ Automation...
MZ Automation libIEC61850 denial of service | CVE-2022-2973
NAME MZ Automation libIEC61850 denial of service Platforms Affected:MZ Automation LibIEC61850 1.5.0 MZ Automation libIEC61850 1.4Risk Level:8.6Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION...
MZ Automation libIEC61850 denial of service | CVE-2022-2971
NAME MZ Automation libIEC61850 denial of service Platforms Affected:MZ Automation LibIEC61850 1.5.0 MZ Automation libIEC61850 1.4Risk Level:8.6Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION...
KubeVela information disclosure | CVE-2022-36089
NAME KubeVela information disclosure Platforms Affected:KubeVela KubeVela 1.4.0 KubeVela KubeVela 1.4.10 KubeVela KubeVela 1.5.0 KubeVela KubeVela 1.5.2Risk Level:8.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION...
NETGEAR R6200v2 and NETGEAR R6300v2 command execution | CVE-2022-30078
NAME NETGEAR R6200v2 and NETGEAR R6300v2 command execution Platforms Affected:NETGEAR R6200v2 1.0.3.12_10.1.11 NETGEAR R6300v2 1.0.4.52_10.0.93Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION...
