FortiOS and FortiProxy security bypass | CVE-2022-35843
NAME FortiOS and FortiProxy security bypass Platforms Affected:Fortinet FortiOS 6.0.0 Fortinet FortiOS 6.2.0 Fortinet FortiOS 6.4.0 Fortinet FortiProxy 2.0.0 Fortinet...
NAME FortiOS and FortiProxy security bypass Platforms Affected:Fortinet FortiOS 6.0.0 Fortinet FortiOS 6.2.0 Fortinet FortiOS 6.4.0 Fortinet FortiProxy 2.0.0 Fortinet...
NAME Sophos firewall command execution Platforms Affected:Sophos Firewall 19.4Risk Level:9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Sophos firewall could allow a remote autheticated attacker...
NAME Node.js simple-git module code execution Platforms Affected:Node.js simple-git 3.14.1Risk Level:8.1Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Node.js simple-git module could allow...
NAME Aruba Networks ClearPass Policy Manager SQL injection Platforms Affected:Aruba Networks ClearPass Policy Manager 6.9 Aruba Networks ClearPass Policy Manager...
NAME daloRADIUS cross-site scripting Platforms Affected:daloRADIUS daloRADIUS 1.2Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION daloRADIUS is vulnerable to cross-site scripting, caused by improper...
NAME Sophos firewall code execution Platforms Affected:Sophos Firewall 19.4Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Sophos firewall could allow a remote attacker to...
NAME Sophos firewall cross-site scripting Platforms Affected:Sophos Firewall 19.4Risk Level:8.4Exploitability:HighConsequences:Gain Access DESCRIPTION Sophos firewall is vulnerable to cross-site scripting, caused...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2021-22555A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c....
NAME Cacti command injection Platforms Affected:Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Cacti could allow a remote attacker to execute arbitrary...
NAME Alarm instance management command execution Platforms Affected:Alarm instance management Alarm instance managementRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Alarm instance management could...
NAME Microsoft Edge (Chromium-based) privilege escalation Platforms Affected:Microsoft Edge for iOS Microsoft Edge (Chromium-based) 108.0Risk Level:8.3Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION Microsoft Edge...
NAME PC Keyboard WiFi and Bluetooth app for Android code execution Platforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION PC Keyboard WiFi and...
NAME GitPython code execution Platforms Affected:GitPython GitPython 3.1.20Risk Level:8.1Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION GitPython could allow a remote attacker to...
NAME House Rental System file upload Platforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION House Rental System could allow a remote attacker to...
NAME Lazy Mouse app for Android code execution Platforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Lazy Mouse app for Android could allow...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-44721CrowdStrike Falcon 6.44.15806 allows an administrative attacker to uninstall Falcon Sensor, bypassing...
NAME MegaRAC BMC unauthorized access Platforms Affected:AMI MegaRAC BMCRisk Level:8.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION MegaRAC BMC could allow a remote attacker to...
NAME Mitsubishi Electric MELSEC iQ-R Series devices denial of service Platforms Affected:Risk Level:8.6Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION Mitsubishi Electric MELSEC iQ-R...
NAME Sourcecodester Human Resource Management System file upload Platforms Affected:Risk Level:9.8Exploitability:HighConsequences:Gain Access DESCRIPTION Sourcecodester Human Resource Management System could allow...
NAME MegaRAC BMC code execution Platforms Affected:AMI MegaRAC BMCRisk Level:9.9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION MegaRAC BMC could allow a remote authenticated attacker...
NAME Advanced Booking Calendar plugin for WordPress SQL injection Platforms Affected:Risk Level:10Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION Advanced Booking Calendar plugin for WordPress...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-4116A vulnerability was found in quarkus. This security flaw happens in Dev...
NAME Veritas NetBackup Flex Scale and Access Appliance privilege escalation Platforms Affected:Veritas Access Appliance 8.0.100 Veritas NetBackup Flex Scale 3.0Risk...
NAME Apache Tapestry code execution Platforms Affected:Apache Tapestry 3.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Apache Tapestry could allow a remote attacker to...