CISA Log4Shell warning: Patch VMware Horizon installations immediately
CISA and the United States Coast Guard Cyber Command (CGCYBER) are warning that the threat of Log4Shell hasn’t gone away....
CVE
Daily Vulnerability Trends: Tue Jun 28 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-30157Microsoft SharePoint Server Remote Code Execution Vulnerability. This CVE ID is unique...
SMA Technologies OpCon UNIX agent security bypass | US-CERT VU#142546
NAME SMA Technologies OpCon UNIX agent security bypass Platforms Affected:SMA Technologies OpCon UNIX agentRisk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION SMA Technologies OpCon...
SiHAS SGW-300, ACM-300, GCM-300 security bypass | CVE-2021-26637
NAME SiHAS SGW-300, ACM-300, GCM-300 security bypass Platforms Affected:Sihas SGW-300 Sihas ACM-300 Sihas GCM-300Risk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION SiHAS SGW-300, ACM-300,...
Daily Vulnerability Trends: Mon Jun 27 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-26809Remote Procedure Call Runtime Remote Code Execution Vulnerability. This CVE ID is...
SMA Technologies OpCon UNIX agent security bypass | US-CERT VU#142546
NAME SMA Technologies OpCon UNIX agent security bypass Platforms Affected:SMA Technologies OpCon UNIX agentRisk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION SMA Technologies OpCon...
SiHAS SGW-300, ACM-300, GCM-300 security bypass | CVE-2021-26637
NAME SiHAS SGW-300, ACM-300, GCM-300 security bypass Platforms Affected:Sihas SGW-300 Sihas ACM-300 Sihas GCM-300Risk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION SiHAS SGW-300, ACM-300,...
Daily Vulnerability Trends: Sun Jun 26 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-34305In Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 to 9.0.64...
Secheron SEPCOS security bypass | CVE-2022-2105
NAME Secheron SEPCOS security bypass Platforms Affected:Secheron SEPCOS Control and Protection Relay 1.23 Secheron SEPCOS Control and Protection Relay 1.24...
CODESYS products denial of service | CVE-2022-32142
NAME CODESYS products denial of service Platforms Affected:CODESYS Runtime Toolkit 32 bit 2.4.7.57 CODESYS PLCWinNT 2.4.7.57Risk Level:8.1Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION...
CODESYS Gateway Server V2 denial of service | CVE-2022-31802
NAME CODESYS Gateway Server V2 denial of service Platforms Affected:CODESYS Gateway Server V2 2.3.9.37Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION CODESYS Gateway Server...
CODESYS products denial of service | CVE-2022-32138
NAME CODESYS products denial of service Platforms Affected:CODESYS Runtime Toolkit 32 bit 2.4.7.57 CODESYS PLCWinNT 2.4.7.57Risk Level:8.8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION...
Vim code execution | CVE-2022-2175
NAME Vim code execution Platforms Affected:Vim Vim 8.2.5150Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim could allow a remote attacker to...
Secheron SEPCOS security bypass | CVE-2022-2102
NAME Secheron SEPCOS security bypass Platforms Affected:Secheron SEPCOS Control and Protection Relay 1.23 Secheron SEPCOS Control and Protection Relay 1.24...
Microsoft Edge (Chromium-based) privilege escalation | CVE-2022-30192
NAME Microsoft Edge (Chromium-based) privilege escalation Platforms Affected:Microsoft Edge (Chromium-based)Risk Level:8.3Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Microsoft Edge (Chromium-based) could allow a remote...
Microsoft Edge (Chromium-based) privilege escalation | CVE-2022-33638
NAME Microsoft Edge (Chromium-based) privilege escalation Platforms Affected:Microsoft Edge (Chromium-based)Risk Level:8.3Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Microsoft Edge (Chromium-based) could allow a remote...
Secheron SEPCOS security bypass | CVE-2022-2104
NAME Secheron SEPCOS security bypass Platforms Affected:Secheron SEPCOS Control and Protection Relay 1.23 Secheron SEPCOS Control and Protection Relay 1.24...
openlibrary cross-site scripting | CVE-2022-23081
NAME openlibrary cross-site scripting Platforms Affected:openlibrary openlibrary deploy-2021-12-22 openlibrary openlibrary deploy-2016-07-0Risk Level:8.1Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION openlibrary is vulnerable to cross-site scripting,...
Vim buffer overflow | CVE-2022-2182
NAME Vim buffer overflow Platforms Affected:Vim Vim 8.2.5150Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim is vulnerable to a heap-based buffer...
Pyramid EtherNet/IP Adapter Development Kit denial of service | CVE-2022-1737
NAME Pyramid EtherNet/IP Adapter Development Kit denial of service Platforms Affected:Pyramid Solutions EtherNet/IP Adapter Development Kit 4.4 Pyramid Solutions EtherNet/IP...
Vim code execution | CVE-2022-2183
NAME Vim code execution Platforms Affected:Vim Vim 8.2.5150Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim could allow a remote attacker to...
CODESYS products weak security | CVE-2022-31806
NAME CODESYS products weak security Platforms Affected:CODESYS Development System 2.3.9.68 CODESYS Gateway Client 2.3.9.68 CODESYS Gateway Server 2.3.9.68 CODESYS Web...
SMA Technologies OpCon UNIX agent security bypass | US-CERT VU#142546
NAME SMA Technologies OpCon UNIX agent security bypass Platforms Affected:SMA Technologies OpCon UNIX agentRisk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION SMA Technologies OpCon...
CODESYS products unauthorized access | CVE-2022-32143
NAME CODESYS products unauthorized access Platforms Affected:CODESYS Runtime Toolkit 32 bit 2.4.7.57 CODESYS PLCWinNT 2.4.7.57Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION CODESYS products...
