Daily Vulnerability Trends: Fri Jul 22 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-26706An access issue was addressed with additional sandbox restrictions on third-party applications....
CVE
Node.js eslint-config-cap-it-ui module code execution |
NAME Node.js eslint-config-cap-it-ui module code execution Platforms Affected:Node.js eslint-config-cap-it-uiRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js eslint-config-cap-it-ui module could allow a remote attacker...
Node.js anyswap-rewards module code execution |
NAME Node.js anyswap-rewards module code execution Platforms Affected:Node.js anyswap-rewardsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js anyswap-rewards module could allow a remote attacker...
Oracle PeopleSoft Enterprise PeopleTools unspecified | CVE-2022-21543
NAME Oracle PeopleSoft Enterprise PeopleTools unspecified Platforms Affected:Oracle PeopleSoft Enterprise PeopleTools 8.58 Oracle PeopleSoft Enterprise PeopleTools 8.59Risk Level:9.8Exploitability:UnprovenConsequences:Other DESCRIPTION An...
Sourcecodester Garage Management System SQL injection | CVE-2022-2467
NAME Sourcecodester Garage Management System SQL injection Platforms Affected:Sourcecodester Garage Management System 1.0Risk Level:7.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION Sourcecodester Garage Management System...
Oracle Database Server unspecified | CVE-2022-21510
NAME Oracle Database Server unspecified Platforms Affected:Oracle Database ServerRisk Level:8.8Exploitability:UnprovenConsequences:Other DESCRIPTION An unspecified vulnerability in Oracle Database Server related to...
Node.js nodebb-theme-opera module code execution |
NAME Node.js nodebb-theme-opera module code execution Platforms Affected:Node.js nodebb-theme-operaRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js nodebb-theme-opera module could allow a remote attacker...
Node.js pancakeswap-v2-subgraph module code execution |
NAME Node.js pancakeswap-v2-subgraph module code execution Platforms Affected:Node.js pancakeswap-v2-subgraphRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js pancakeswap-v2-subgraph module could allow a remote attacker...
Node.js sushiswap-analytics module code execution |
NAME Node.js sushiswap-analytics module code execution Platforms Affected:Node.js sushiswap-analyticsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js sushiswap-analytics module could allow a remote attacker...
Oracle ZFS Storage Appliance Kit unspecified | CVE-2022-21513
NAME Oracle ZFS Storage Appliance Kit unspecified Platforms Affected:Oracle Sun ZFS Storage Appliance Kit 8.8Risk Level:8.2Exploitability:UnprovenConsequences:Other DESCRIPTION An unspecified vulnerability...
Node.js anytoken-locked module code execution |
NAME Node.js anytoken-locked module code execution Platforms Affected:Node.js anytoken-lockedRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js anytoken-locked module could allow a remote attacker...
Oracle Communications Billing and Revenue Management unspecified | CVE-2022-21429
NAME Oracle Communications Billing and Revenue Management unspecified Platforms Affected:Oracle Communications Billing and Revenue Management 12.0.0.4 Oracle Communications Billing and...
Grails code execution | CVE-2022-35912
NAME Grails code execution Platforms Affected:Grails Grails 3.3.14 Grails Grails 4.1.0 Grails Grails 5.2.0 Grails Grails 5.1.8Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...
Cisco Nexus Dashboard cross-site request forgery | CVE-2022-20861
NAME Cisco Nexus Dashboard cross-site request forgery Platforms Affected:Cisco Nexus Dashboard 1.1 Cisco Nexus Dashboard 2.0 Cisco Nexus Dashboard 2.1...
Node.js monash-college-combo-box module code execution |
NAME Node.js monash-college-combo-box module code execution Platforms Affected:Node.js monash-college-combo-boxRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js monash-college-combo-box module could allow a remote attacker...
Daily Vulnerability Trends: Thu Jul 21 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-30065A use-after-free in Busybox 1.35-x's awk applet leads to denial of service...
Google Chrome Guest View code execution | CVE-2022-2477
NAME Google Chrome Guest View code execution Platforms Affected:Google Chrome 103.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
SICK Flexi Soft Designer code execution | CVE-2022-27579
NAME SICK Flexi Soft Designer code execution Platforms Affected:SICK Flexi Soft Designer 1.9.4 SP1Risk Level:8.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION SICK Flexi Soft...
SICK Safety Designer code execution | CVE-2022-27580
NAME SICK Safety Designer code execution Platforms Affected:SICK Safety Designer 1.11.0Risk Level:8.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION SICK Safety Designer could allow a...
DSK DSKNet SQL injection | CVE-2022-24691
NAME DSK DSKNet SQL injection Platforms Affected:DSK DSKNet 2.16.136.0 DSK DSKNet 2.17.136.5Risk Level:8.5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION DSK DSKNet is vulnerable to...
Node.js lido-cosmos-docs module code execution |
NAME Node.js lido-cosmos-docs module code execution Platforms Affected:Node.js lido-cosmos-docsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js lido-cosmos-docs module could allow a remote attacker...
Node.js kadenaswap-ui module code execution |
NAME Node.js kadenaswap-ui module code execution Platforms Affected:Node.js kadenaswap-uiRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js kadenaswap-ui module could allow a remote attacker...
Node.js mediasoup-sdp-bridge module code execution |
NAME Node.js mediasoup-sdp-bridge module code execution Platforms Affected:Node.js mediasoup-sdp-bridgeRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js mediasoup-sdp-bridge module could allow a remote attacker...
Google Chrome PDF code execution | CVE-2022-2478
NAME Google Chrome PDF code execution Platforms Affected:Google Chrome 103.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
