Daily Vulnerability Trends: Sun Jul 03 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-32532Apache Shiro before 1.9.1, A RegexRequestMatcher can be misconfigured to be bypassed...
Vulnerabilities
Node.js coil-metrics module code execution |
NAME Node.js coil-metrics module code execution Platforms Affected:Node.js coil-metricsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js coil-metrics module allow a remote attacker to...
Node.js rv-modal-store module code execution |
NAME Node.js rv-modal-store module code execution Platforms Affected:Node.js rv-modal-storeRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js rv-modal-store module could allow a remote attacker...
Node.js @radancy/dropr-clientOpen module code execution |
NAME Node.js @radancy/dropr-clientOpen module code execution Platforms Affected:Node.js Node.js Node.js @radancy/dropr-clientRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @radancy/dropr-clientOpen module could allow a...
Node.js separatecalculatingbinary module code execution |
NAME Node.js separatecalculatingbinary module code execution Platforms Affected:Node.js separatecalculatingbinaryRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Nodejs separatecalculatingbinary module could allow a remote attacker...
Node.js git-clone module code execution | CVE-2022-25900
NAME Node.js git-clone module code execution Platforms Affected:Node.js git-cloneRisk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js git-clone module could allow a remote attacker...
Node.js horizon_dev module code execution |
NAME Node.js horizon_dev module code execution Platforms Affected:Node.js horizon_devRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js horizon_dev module could allow a remote attacker...
Node.js syndis-test module code execution |
NAME Node.js syndis-test module code execution Platforms Affected:Node.js syndis-testRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js syndis-test module could allow a remote attacker...
Node.js tomtom-rk module code execution |
NAME Node.js tomtom-rk module code execution Platforms Affected:Node.js tomtom-rkRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js tomtom-rk module could allow a remote attacker...
Node.js cleansheet module code execution |
NAME Node.js cleansheet module code execution Platforms Affected:Node.js cleansheetRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js cleansheet module could allow a remote attacker...
Node.js @pagetour/sdk module code execution |
NAME Node.js @pagetour/sdk module code execution Platforms Affected:Node.js @pagetour/sdkRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @pagetour/sdk module could allow a remote attacker...
Das U-Boot buffer overflow | CVE-2022-34835
NAME Das U-Boot buffer overflow Platforms Affected:Das U-Boot 2022.07-rc5Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Das U-Boot is vulnerable to a stack-based buffer...
GLPI SQL injection | CVE-2022-31056
NAME GLPI SQL injection Platforms Affected:GLPI GLPI 10.0.0Risk Level:10Exploitability:HighConsequences:Data Manipulation DESCRIPTION GLPI is vulnerable to SQL injection. A remote attacker...
GLPI SQL injection | CVE-2022-31061
NAME GLPI SQL injection Platforms Affected:GLPI GLPI 9.5.7 GLPI GLPI 10.0.0Risk Level:9.8Exploitability:HighConsequences:Data Manipulation DESCRIPTION GLPI is vulnerable to SQL injection....
Node.js sichain-api module code execution |
NAME Node.js sichain-api module code execution Platforms Affected:Node.js sichain-apiRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js sichain-api module could allow a remote attacker...
Node.js vazgarules module code execution |
NAME Node.js vazgarules module code execution Platforms Affected:Node.js vazgarulesRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js vazgarules module could allow a remote attacker...
Robustel R1510 command execution | CVE-2022-33314
NAME Robustel R1510 command execution Platforms Affected:Robustel R1510 3.3.0Risk Level:9.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Robustel R1510 could allow a remote authenticated attacker...
Node.js @3p-future-solutions/ember-cui module code execution |
NAME Node.js @3p-future-solutions/ember-cui module code execution Platforms Affected:Node.js @3p-future-solutions/ember-cuiRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @3p-future-solutions/ember-cui module could allow a remote attacker...
NETGEAR R8000 and NETGEAR R8000P command execution |
NAME NETGEAR R8000 and NETGEAR R8000P command execution Platforms Affected:NETGEAR R8000 NETGEAR R8000PRisk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION An unspecified error in...
Jenkins Matrix Reloaded Plugin cross-site scripting | CVE-2022-34788
NAME Jenkins Matrix Reloaded Plugin cross-site scripting Platforms Affected:Jenkins Matrix Reloaded Plugin 1.1.3Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Matrix Reloaded Plugin...
Jenkins GitLab Plugin cross-site scripting | CVE-2022-34777
NAME Jenkins GitLab Plugin cross-site scripting Platforms Affected:Jenkins GitLab Plugin 1.5.34Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins GitLab Plugin is vulnerable to...
Node.js netlify-bb module code execution |
NAME Node.js netlify-bb module code execution Platforms Affected:Node.js netlify-bbRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js netlify-bb module could allow a remote attacker...
Distributed Data Systems WebHMI command execution | CVE-2022-2253
NAME Distributed Data Systems WebHMI command execution Platforms Affected:Distributed Data Systems WebHMI 4.1.1.7662Risk Level:9.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Distributed Data Systems WebHMI...
Microsoft Edge (Chromium-based) privilege escalation | CVE-2022-33680
NAME Microsoft Edge (Chromium-based) privilege escalation Platforms Affected:Microsoft Edge (Chromium-based)Risk Level:8.3Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Microsoft Edge (Chromium-based) could allow a remote...
