Daily Vulnerability Trends: Sat Sep 17 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-29021A buffer overflow vulnerability exists in the razerkbd driver of OpenRazer up...
CVE
D-Link DIR-2150 buffer overflow | CVE-2022-40718
NAME D-Link DIR-2150 buffer overflow Platforms Affected:D-Link DIR-2150Risk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION D-Link DIR-2150 is vulnerable to a stack-based...
D-Link DIR-2150 command execution | CVE-2022-40719
NAME D-Link DIR-2150 command execution Platforms Affected:D-Link DIR-2150Risk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION D-Link DIR-2150 could allow a remote attacker...
Bento4 code execution | CVE-2022-40737
NAME Bento4 code execution Platforms Affected:Bento4 Bento4 1.6.0-639Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Bento4 could allow a remote attacker to...
Node.js ember-cli-htmlbars-3 module code execution |
NAME Node.js ember-cli-htmlbars-3 module code execution Platforms Affected:Node.js ember-cli-htmlbars-3Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ember-cli-htmlbars-3 module could allow a remote attacker...
Node.js ts-petstore-client module code execution |
NAME Node.js ts-petstore-client module code execution Platforms Affected:Node.js ts-petstore-clientRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ts-petstore-client module could allow a remote attacker...
steal code execution | CVE-2022-37257
NAME steal code execution Platforms Affected:stealjs steal 2.2.4Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION steal could allow a remote attacker to execute arbitrary...
D-Link DIR-2150 command execution | CVE-2022-3210
NAME D-Link DIR-2150 command execution Platforms Affected:D-Link DIR-2150Risk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION D-Link DIR-2150 could allow a remote attacker...
Node.js @iamexperiences/ecos-telemetry module code execution |
NAME Node.js @iamexperiences/ecos-telemetry module code execution Platforms Affected:Node.js @iamexperiences/ecos-telemetryRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @iamexperiences/ecos-telemetry module could allow a remote attacker...
Node.js @iamexperiences/react-auth module code execution |
NAME Node.js @iamexperiences/react-auth module code execution Platforms Affected:Node.js @iamexperiences/react-authRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @iamexperiences/react-auth module could allow a remote attacker...
GLPI SQL injection | CVE-2022-35947
NAME GLPI SQL injection Platforms Affected:GLPI GLPI 10.0.0 GLPI GLPI 9.1Risk Level:10Exploitability:HighConsequences:Data Manipulation DESCRIPTION GLPI is vulnerable to SQL injection....
D-Link DIR-2150 command execution | CVE-2022-40720
NAME D-Link DIR-2150 command execution Platforms Affected:D-Link DIR-2150Risk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION D-Link DIR-2150 could allow a remote attacker...
Node.js com.unity.film-internal-utilities module code execution |
NAME Node.js com.unity.film-internal-utilities module code execution Platforms Affected:Node.js com.unity.film-internal-utilitiesRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js com.unity.film-internal-utilities module could allow a remote attacker...
Node.js vscode-regexp-languagedetection module code execution |
NAME Node.js vscode-regexp-languagedetection module code execution Platforms Affected:Node.js vscode-regexp-languagedetectionRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js vscode-regexp-languagedetection module could allow a remote attacker...
Node.js pages-plugins-example module code execution |
NAME Node.js pages-plugins-example module code execution Platforms Affected:Node.js pages-plugins-exampleRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js pages-plugins-example module could allow a remote attacker...
steal code execution | CVE-2022-37266
NAME steal code execution Platforms Affected:stealjs steal 2.2.4Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION steal could allow a remote attacker to execute arbitrary...
D-Link DIR-2150 buffer overflow | CVE-2022-40717
NAME D-Link DIR-2150 buffer overflow Platforms Affected:D-Link DIR-2150Risk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION D-Link DIR-2150 is vulnerable to a stack-based...
WPGateway plugin for WordPress privilege escalation | CVE-2022-3180
NAME WPGateway plugin for WordPress privilege escalation Platforms Affected:WordPress WPGateway plugin for WordPress 3.5 WordPress WPGateway plugin for WordPress 3.4Risk...
Node.js react-router-stable module code execution |
NAME Node.js react-router-stable module code execution Platforms Affected:Node.js react-router-stableRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js react-router-stable module could allow a remote attacker...
Daily Vulnerability Trends: Fri Sep 16 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-31659VMware Workspace ONE Access and Identity Manager contain a remote code execution...
Google Chrome PDF code execution | CVE-2022-3198
NAME Google Chrome PDF code execution Platforms Affected:Google Chrome 105.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
OneDev privilege escalation | CVE-2022-39206
NAME OneDev privilege escalation Platforms Affected:OneDev OneDev 7.2.9Risk Level:9.9Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION OneDev could allow a remote authenticated attacker to gain...
OneDev information disclosure | CVE-2022-39208
NAME OneDev information disclosure Platforms Affected:OneDev OneDev 7.2.9Risk Level:8.6Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION OneDev could allow a remote attacker to obtain sensitive...
Broadcom Brocade Fabric OS privilege escalation | CVE-2022-33182
NAME Broadcom Brocade Fabric OS privilege escalation Platforms Affected:Broadcom Brocade Fabric OS Lenovo B300 FC SAN Switch Lenovo B6505 FC...
