Microsoft Windows LDAP code execution | CVE-2023-21676
NAME__________Microsoft Windows LDAP code executionPlatforms Affected:Microsoft Windows Server 2019 Microsoft Windows 10 1809 for x64-based Systems Microsoft Windows 10 1809...
CVE
SAP Business Planning and Consolidation MS SQL injection | CVE-2023-0016
NAME__________SAP Business Planning and Consolidation MS SQL injectionPlatforms Affected:SAP Business Planning and Consolidation MS 10.0Risk Level:9.9Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________SAP Business Planning...
Microsoft Windows Workstation Service privilege escalation | CVE-2023-21549
NAME__________Microsoft Windows Workstation Service privilege escalationPlatforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows Server 2012 Microsoft Windows 8.1 x64 Microsoft...
Google Chrome buffer overflow | CVE-2023-0137
NAME__________Google Chrome buffer overflowPlatforms Affected:Google Chrome 109.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Google Chrome is vulnerable to a heap-based buffer overflow, caused by...
Siemens Mendix SAML Module cross-site scripting | CVE-2022-46823
NAME__________Siemens Mendix SAML Module cross-site scriptingPlatforms Affected:Risk Level:9.3Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Siemens Mendix SAML Module is vulnerable to cross-site scripting. A remote...
Microsoft Windows Cryptographic Services privilege escalation | CVE-2023-21561
NAME__________Microsoft Windows Cryptographic Services privilege escalationPlatforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows Server 2012...
Siemens SINEC INS directory traversal | CVE-2022-45092
NAME__________Siemens SINEC INS directory traversalPlatforms Affected:Risk Level:9.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Siemens SINEC INS could allow a remote authenticated attacker to traverse directories...
Daily Vulnerability Trends: Wed Jan 11 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-41080Microsoft Exchange Server Elevation of Privilege Vulnerability. This CVE ID is unique...
Qualcomm Chipsets code execution | CVE-2022-22063
NAME__________Qualcomm Chipsets code executionPlatforms Affected:Qualcomm ChipsetsRisk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Qualcomm Chipsets could allow a local attacker to execute arbitrary code on...
Axiell Iguana file inclusion | CVE-2022-45052
NAME__________Axiell Iguana file inclusionPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION__________Axiell Iguana could allow a remote attacker to include arbitrary files, cause by...
NSA Ghidra command execution | CVE-2023-22671
NAME__________NSA Ghidra command executionPlatforms Affected:NSA Ghidra 10.2.2Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NSA Ghidra could allow a remote attacker to execute arbitrary commands...
Node.js sanitize-svg module cross-site scripting | CVE-2023-22461
NAME__________Node.js sanitize-svg module cross-site scriptingPlatforms Affected:Risk Level:7.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Node.js sanitize-svg module is vulnerable to cross-site scripting, caused by improper validation...
Qualcomm Chipsets code execution | CVE-2022-25746
NAME__________Qualcomm Chipsets code executionPlatforms Affected:Qualcomm ChipsetsRisk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Qualcomm Chipsets could allow a local authenticated attacker to execute arbitrary code...
CKEditor Integration UI cross-site request forgery | CVE-2023-22457
NAME__________CKEditor Integration UI cross-site request forgeryPlatforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________CKEditor Integration UI is vulnerable to cross-site request forgery, caused by...
Feathers js code execution | CVE-2022-29823
NAME__________Feathers js code executionPlatforms Affected:Feathers.js Feathers.jsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Feathers js could allow a remote attacker to execute arbitrary code on...
Qualcomm Chipsets code execution | CVE-2022-22088
NAME__________Qualcomm Chipsets code executionPlatforms Affected:Qualcomm ChipsetsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Qualcomm Chipsets could allow a remote attacker to execute arbitrary code on...
KubePi security bypass | CVE-2023-22463
NAME__________KubePi security bypassPlatforms Affected:Risk Level:9.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________KubePi could allow a remote attacker to bypass security restrictions, caused by the use...
Nexxt Amp300 routers command execution | CVE-2022-44149
NAME__________Nexxt Amp300 routers command executionPlatforms Affected:Nexxt Amp300 ARN02304U8 42.103.1.5095Risk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Nexxt Amp300 routers could allow a remote...
Daily Vulnerability Trends: Tue Jan 10 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-41082Microsoft Exchange Server Remote Code Execution Vulnerability.CVE-2022-27666A heap buffer overflow flaw was...
Daily Vulnerability Trends: Mon Jan 09 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-37958SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Information Disclosure Vulnerability.CVE-2022-46689A race condition was...
Zoom Rooms for macOS privilege escalation | CVE-2022-36926
NAME__________Zoom Rooms for macOS privilege escalationPlatforms Affected:Zoom Zoom Rooms for macOS 5.11Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________Zoom Rooms for macOS could allow...
Zoom Rooms for macOS privilege escalation | CVE-2022-36927
NAME__________Zoom Rooms for macOS privilege escalationPlatforms Affected:Zoom Zoom Rooms for macOS 5.11Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________Zoom Rooms for macOS could allow...
Zoom Rooms for Windows installers privilege escalation | CVE-2022-36930
NAME__________Zoom Rooms for Windows installers privilege escalationPlatforms Affected:Zoom Zoom Rooms for Windows clients 5.12Risk Level:8.2Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________Zoom Rooms for Windows...
Daily Vulnerability Trends: Sun Jan 08 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2020-28362Go before 1.14.12 and 1.15.x before 1.15.4 allows Denial of Service.CVE-2022-43931Out-of-bounds write...
