USR IOT 4G LTE Industrial Cellular VPN Router default account |
NAME USR IOT 4G LTE Industrial Cellular VPN Router default account Platforms Affected:USR IOT Technology 4G LTE Industrial Cellular VPN...
Vulnerabilities
Nexacro security bypass | CVE-2021-26625
NAME Nexacro security bypass Platforms Affected:Tobesoft NEXACRO17 17.1.3.301 Tobesoft Nexacro 17.1.2.500Risk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Nexacro could allow a remote attacker...
Databasir code execution | CVE-2022-24861
NAME Databasir code execution Platforms Affected:Databasir Databasir 1.0.1Risk Level:9.9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Databasir could allow a remote authenticated attacker to execute...
7-ZIP hhctrl.ocx code execution |
NAME 7-ZIP hhctrl.ocx code execution Platforms Affected:7-Zip 7-Zip 16Risk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION 7-ZIP could allow a local attacker to execute...
XPLATFORM code execution | CVE-2021-26626
NAME XPLATFORM code execution Platforms Affected:Tobesoft XPLATFORM 9.2 Tobesoft XPLATFORM 9.2.1 Tobesoft XPLATFORM 9.2.2 Tobesoft XPlatform 9.1 TOBESOFT XPLATFORM 9.2.2.250...
libinput code execution | CVE-2022-1215
NAME libinput code execution Platforms Affected:libinput libinput 1.10Risk Level:8.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION libinput could allow a local authenticated attacker to execute...
Kyocera d-COLOR MF3555 cross-site scripting | CVE-2022-25344
NAME Kyocera d-COLOR MF3555 cross-site scripting Platforms Affected:Kyocera d-COLOR MF3555 2XD_S000.002.271Risk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Kyocera d-COLOR MF3555 is vulnerable to...
Oracle Helidon unspecified | CVE-2022-21404
NAME Oracle Helidon unspecified Platforms Affected:Oracle Helidon 1.4.10 Oracle Helidon 2.0.0-RC1Risk Level:8.1Exploitability:UnprovenConsequences:Other DESCRIPTION An unspecified vulnerability in Oracle Helidon related...
Amazon Linux log4j-cve-2021-44228-hotpatch package privilege escalation | CVE-2022-0070
NAME Amazon Linux log4j-cve-2021-44228-hotpatch package privilege escalation Platforms Affected:Amazon Amazon Linux 1 Amazon Amazon Linux 2Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Amazon...
Elcomplus SmartPPT SCADA security bypass | CVE-2021-43939
NAME Elcomplus SmartPPT SCADA security bypass Platforms Affected:Elcomplus SmartPPT SCADA 1.1Risk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Elcomplus SmartPPT SCADA could allow a...
Oracle Solaris unspecified | CVE-2022-21446
NAME Oracle Solaris unspecified Platforms Affected:Oracle Solaris 11Risk Level:8.2Exploitability:UnprovenConsequences:Other DESCRIPTION An unspecified vulnerability in Oracle Solaris related to the Utility...
Oracle Communications Billing and Revenue Management unspecified | CVE-2022-21430
NAME Oracle Communications Billing and Revenue Management unspecified Platforms Affected:Oracle Communications Billing and Revenue Management 12.0.0.4 Oracle Communications Billing and...
Tp-Link TL-WR840N (EU) buffer overflow | CVE-2021-46122
NAME Tp-Link TL-WR840N (EU) buffer overflow Platforms Affected:Tp-Link TL-WR840N (EU) 6.20 Firmware (0.9.1 4.17 v0001.0 Build 201124 Rel.64328n)Risk Level:9.8Exploitability:UnprovenConsequences:Denial of...
Oracle Coherence unspecified | CVE-2022-21420
NAME Oracle Coherence unspecified Platforms Affected:Oracle Coherence 12.2.1.3.0 Oracle Coherence 12.2.1.4.0 Oracle Coherence 14.1.1.0.0Risk Level:9.8Exploitability:UnprovenConsequences:Other DESCRIPTION An unspecified vulnerability in...
Oracle Communications Billing and Revenue Management unspecified | CVE-2022-21424
NAME Oracle Communications Billing and Revenue Management unspecified Platforms Affected:Oracle Communications Billing and Revenue Management 12.0.0.4Risk Level:8.3Exploitability:UnprovenConsequences:Other DESCRIPTION An unspecified...
Elcomplus SmartPPT SCADA and SmartPPT SCADA Server cross-site scripting | CVE-2021-43932
NAME Elcomplus SmartPPT SCADA and SmartPPT SCADA Server cross-site scripting Platforms Affected:Elcomplus SmartPPT SCADA 1.1 Elcomplus SmartPPT SCADA Server 1.4Risk...
Oracle Communications Billing and Revenue Management unspecified | CVE-2022-21431
NAME Oracle Communications Billing and Revenue Management unspecified Platforms Affected:Oracle Communications Billing and Revenue Management 12.0.0.4 Oracle Communications Billing and...
Git Large File Storage (Git LFS) code execution | CVE-2022-24826
NAME Git Large File Storage (Git LFS) code execution Platforms Affected:Git LFS 2.12.1 Git LFS 3.1.2Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Git...
Elcomplus SmartPPT SCADA Server information disclosure | CVE-2021-43938
NAME Elcomplus SmartPPT SCADA Server information disclosure Platforms Affected:Elcomplus SmartPPT SCADA Server 1.4Risk Level:8.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Elcomplus SmartPPT SCADA Server...
Oracle GoldenGate unspecified | CVE-2022-21442
NAME Oracle GoldenGate unspecified Platforms Affected:Oracle GoldenGate 23.0Risk Level:8.8Exploitability:UnprovenConsequences:Other DESCRIPTION An unspecified vulnerability in Oracle GoldenGate related to the OGG...
Oracle JD Edwards EnterpriseOne Tools unspecified | CVE-2022-21464
NAME Oracle JD Edwards EnterpriseOne Tools unspecified Platforms Affected:Oracle JD Edwards EnterpriseOne Tools 9.2.6.2Risk Level:8.2Exploitability:UnprovenConsequences:Other DESCRIPTION An unspecified vulnerability in...
bottlerocket-os Hotdog privilege escalation | CVE-2022-0071
NAME bottlerocket-os Hotdog privilege escalation Platforms Affected:bottlerocket-os Hotdog 1.0.1Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION bottlerocket-os Hotdog could allow a local authenticated attacker...
VikBooking Hotel Booking Engine and PMS plugin for WordPress file upload | CVE-2022-27862
NAME VikBooking Hotel Booking Engine and PMS plugin for WordPress file upload Platforms Affected:WordPress VikBooking Hotel Booking Engine and PMS...
Oracle Web Services Manager unspecified | CVE-2022-21497
NAME Oracle Web Services Manager unspecified Platforms Affected:Oracle Web Services 12.2.1.3.0 Oracle Web Services 12.2.1.4.0Risk Level:8.1Exploitability:UnprovenConsequences:Other DESCRIPTION An unspecified vulnerability...
