Daily Vulnerability Trends: Sun Jan 08 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2020-28362Go before 1.14.12 and 1.15.x before 1.15.4 allows Denial of Service.CVE-2022-43931Out-of-bounds write...
Vulnerabilities
Qualcomm Snapdragon products code execution | CVE-2022-33274
NAME__________Qualcomm Snapdragon products code executionPlatforms Affected:Risk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Qualcomm Snapdragon products could allow a local attacker to execute arbitrary code...
Qualcomm Snapdragon products information disclosure | CVE-2022-33284
NAME__________Qualcomm Snapdragon products information disclosurePlatforms Affected:Risk Level:8.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Qualcomm Snapdragon products could allow a remote attacker to obtain sensitive information,...
Qualcomm Snapdragon products information disclosure | CVE-2022-33252
NAME__________Qualcomm Snapdragon products information disclosurePlatforms Affected:Risk Level:8.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Qualcomm Snapdragon products could allow a remote attacker to obtain sensitive information,...
Qualcomm Snapdragon products code execution | CVE-2022-33219
NAME__________Qualcomm Snapdragon products code executionPlatforms Affected:Risk Level:9.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Qualcomm Snapdragon products could allow a local attacker to execute arbitrary code...
Qualcomm Snapdragon products code execution | CVE-2022-33276
NAME__________Qualcomm Snapdragon products code executionPlatforms Affected:Risk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Qualcomm Snapdragon products could allow a local attacker to execute arbitrary code...
Discourse cross-site scripting | CVE-2023-22454
NAME__________Discourse cross-site scriptingPlatforms Affected:Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Discourse is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A...
Qualcomm Snapdragon products information disclosure | CVE-2022-33255
NAME__________Qualcomm Snapdragon products information disclosurePlatforms Affected:Risk Level:8.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Qualcomm Snapdragon products could allow a remote attacker to obtain sensitive information,...
Qualcomm Snapdragon products code execution | CVE-2022-33300
NAME__________Qualcomm Snapdragon products code executionPlatforms Affected:Risk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Qualcomm Snapdragon products could allow a local attacker to execute arbitrary code...
Qualcomm Snapdragon products code execution | CVE-2022-33218
NAME__________Qualcomm Snapdragon products code executionPlatforms Affected:Risk Level:8.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Qualcomm Snapdragon products could allow a local authenticated attacker to execute arbitrary...
Daily Vulnerability Trends: Sat Jan 07 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-46164NodeBB is an open source Node.js based forum software. Due to a...
MediaTek Android privilege escalation | CVE-2022-32665
NAME__________MediaTek Android privilege escalationPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________MediaTek Android could allow a remote attacker to gain elevated privileges on the...
Hitachi Energy FOXMAN-UN and UNEM weak security | CVE-2022-3927
NAME__________Hitachi Energy FOXMAN-UN and UNEM weak securityPlatforms Affected:Hitachi Energy FOXMAN-UN R16A Hitachi Energy FOXMAN-UN R15B Hitachi Energy FOXMAN-UN R15A Hitachi...
MediaTek Android privilege escalation | CVE-2022-32635
NAME__________MediaTek Android privilege escalationPlatforms Affected:Risk Level:8.4Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________MediaTek Android could allow a local attacker to gain elevated privileges on the...
MediaTek Android privilege escalation | CVE-2022-32664
NAME__________MediaTek Android privilege escalationPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________MediaTek Android could allow a remote attacker to gain elevated privileges on the...
Centos Web Panel command execution | CVE-2022-44877
NAME__________Centos Web Panel command executionPlatforms Affected:CentOS Web Panel CentOS Web PanelRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Centos Web Panel could allow a remote...
Hitachi Energy FOXMAN-UN and UNEM information disclosure | CVE-2022-3929
NAME__________Hitachi Energy FOXMAN-UN and UNEM information disclosurePlatforms Affected:Hitachi Energy FOXMAN-UN R16A Hitachi Energy FOXMAN-UN R15B Hitachi Energy FOXMAN-UN R15A Hitachi...
Daily Vulnerability Trends: Fri Jan 06 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-40517 No description provided CVE-2022-40520 No description provided CVE-2022-40518 No description provided...
ODude UPG plugin for WordPress command execution | CVE-2023-0039
NAME ODude UPG plugin for WordPress command execution Platforms Affected:ODude UPG plugin for WordPress 2.19Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION ODude UPG...
Fortinet FortiADC command execution | CVE-2022-39947
NAME Fortinet FortiADC command execution Platforms Affected:Fortinet FortiADC 6.0.4 Fortinet FortiADC 6.1.5 Fortinet FortiADC 6.2.0 Fortinet FortiADC 6.2.1 Fortinet FortiADC...
Daily Vulnerability Trends: Thu Jan 05 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-38627Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-08e...
Froxlor security bypass | CVE-2022-4868
NAME Froxlor security bypass Platforms Affected:Froxlor Froxlor 0.10.38.3Risk Level:8.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Froxlor could allow a remote authenticated attacker to bypass...
Apache Kylin command execution | CVE-2022-44621
NAME Apache Kylin command execution Platforms Affected:Apache Kylin 3.0.0 Apache Kylin 2.0.0 Apache Kylin 4.0.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Apache Kylin...
memos cross-site request forgery | CVE-2022-4847
NAME memos cross-site request forgery Platforms Affected:Risk Level:8.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION memos is vulnerable to cross-site request forgery, caused...
