Daily Vulnerability Trends: Sun Oct 23 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-41852Those using JXPath to interpret untrusted XPath expressions may be vulnerable to...
CVE
Oracle VM VirtualBox unspecified | CVE-2022-39424
NAME Oracle VM VirtualBox unspecified Platforms Affected:Oracle VM VirtualBox 6.1.39Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION An unspecified vulnerability in Oracle VM VirtualBox...
F5 BIG-IP (Advanced WAF, ASM) code execution | CVE-2022-41617
NAME F5 BIG-IP (Advanced WAF, ASM) code execution Platforms Affected:F5 BIG-IP (ASM) 14.1.0 F5 BIG-IP (ASM) 13.1.0 F5 BIG-IP (ASM)...
Oracle VM VirtualBox unspecified | CVE-2022-39426
NAME Oracle VM VirtualBox unspecified Platforms Affected:Oracle VM VirtualBox 6.1.39Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION An unspecified vulnerability in Oracle VM VirtualBox...
Oracle VM VirtualBox unspecified | CVE-2022-39425
NAME Oracle VM VirtualBox unspecified Platforms Affected:Oracle VM VirtualBox 6.1.39Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION An unspecified vulnerability in Oracle VM VirtualBox...
Oracle VM VirtualBox unspecified | CVE-2022-39427
NAME Oracle VM VirtualBox unspecified Platforms Affected:Oracle VM VirtualBox 6.1.39Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION An unspecified vulnerability in Oracle VM VirtualBox...
Daily Vulnerability Trends: Sat Oct 22 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-35829Service Fabric Explorer Spoofing Vulnerability.CVE-2022-2602 No description provided CVE-2022-22954VMware Workspace ONE Access...
F5 BIG-IP (Advanced WAF, ASM) code execution | CVE-2022-41617
NAME F5 BIG-IP (Advanced WAF, ASM) code execution Platforms Affected:F5 BIG-IP (ASM) 14.1.0 F5 BIG-IP (ASM) 13.1.0 F5 BIG-IP (ASM)...
HelpSystems Cobalt Strike code execution | CVE-2022-42948
NAME HelpSystems Cobalt Strike code execution Platforms Affected:HelpSystems Cobalt Strike 4.7.1Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION HelpSystems Cobalt Strike could allow a...
Daily Vulnerability Trends: Fri Oct 21 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-41852Those using JXPath to interpret untrusted XPath expressions may be vulnerable to...
Oracle Virtualization VM VirtualBox Core security bypass | CVE-2022-39427
NAME Oracle Virtualization VM VirtualBox Core security bypass Platforms Affected:Oracle VM VirtualBox 6.1.38Risk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Oracle Virtualization VM VirtualBox...
Mozilla Firefox and Firefox ESR code execution | CVE-2022-42932
NAME Mozilla Firefox and Firefox ESR code execution Platforms Affected:Mozilla Firefox ESR 102.3 Mozilla Firefox 105Risk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Mozilla...
Mozilla Firefox and Firefox ESR code execution | CVE-2022-42928
NAME Mozilla Firefox and Firefox ESR code execution Platforms Affected:Mozilla Firefox ESR 102.3 Mozilla Firefox 105Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Mozilla...
Apache Dubbo code execution | CVE-2022-39198
NAME Apache Dubbo code execution Platforms Affected:Apache Dubbo 2.7.0 Apache Dubbo 3.0.0 Apache Dubbo 2.7.17 Apache Dubbo 3.0.11 Apache Dubbo...
Mozilla Firefox and Firefox ESR security bypass | CVE-2022-42927
NAME Mozilla Firefox and Firefox ESR security bypass Platforms Affected:Mozilla Firefox ESR 102.3 Mozilla Firefox 105Risk Level:8.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Mozilla...
Linux Kernel denial of service | CVE-2022-3595
NAME Linux Kernel denial of service Platforms Affected:Linux KernelRisk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Linux Kernel is vulnerable to a denial of...
Daily Vulnerability Trends: Thu Oct 20 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-42722In the Linux kernel 5.8 through 5.19.x before 5.19.16, local attackers able...
IBM InfoSphere Information Server external entity injection | CVE-2022-40747
NAME IBM InfoSphere Information Server external entity injection Platforms Affected:IBM InfoSphere Information Server 11.7Risk Level:8.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION IBM InfoSphere Information...
Daily Vulnerability Trends: Wed Oct 19 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-42948 No description provided CVE-2022-40684An authentication bypass using an alternate path or...
Gogs cross-site scripting | CVE-2022-32174
NAME Gogs cross-site scripting Platforms Affected:Gogs Gogs 0.11.53 Gogs Gogs 0.11.66 Gogs Gogs 0.11.79 Gogs Gogs 0.11.86 Gogs Gogs 0.11.91...
Siemens products privilege escalation | CVE-2022-31765
NAME Siemens products privilege escalation Platforms Affected:Siemens RUGGEDCOM RM1224 LTE(4G) EU (6GK6108- 4AM00-2BA2) 7.1.1 Siemens RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)...
ResIOT IoT Platform and LoRaWAN Network Server cross-site request forgery | CVE-2022-34020
NAME ResIOT IoT Platform and LoRaWAN Network Server cross-site request forgery Platforms Affected:ResIOT ResIOT IoT Platform and LoRaWAN Network Server...
Siemens LOGO! 8 BM buffer overflow | CVE-2022-36361
NAME Siemens LOGO! 8 BM buffer overflow Platforms Affected:Siemens LOGO! 8 BMRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Siemens LOGO! 8 BM is...
Siemens products denial of service | CVE-2022-31766
NAME Siemens products denial of service Platforms Affected:Siemens RUGGEDCOM RM1224 LTE(4G) EU (6GK6108- 4AM00-2BA2) 7.1.1 Siemens RUGGEDCOM RM1224 LTE(4G) NAM...
