CVE

Node.js git-repo-manager module code execution |

August 25, 2022

NAME Node.js git-repo-manager module code execution Platforms Affected:Node.js git-repo-managerRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js git-repo-manager module could allow a remote attacker...

Cisco NX-OS Software denial of service | CVE-2022-20823

August 25, 2022

NAME Cisco NX-OS Software denial of service Platforms Affected:Cisco Nexus 3000 Series Switches Cisco Nexus 6000 Series Switches Cisco Nexus...

Node.js ing-lib-ow module code execution |

August 25, 2022

NAME Node.js ing-lib-ow module code execution Platforms Affected:Node.js ing-lib-owRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ing-lib-ow module could allow a remote attacker...

Node.js rmesse-utils module code execution |

August 25, 2022

NAME Node.js rmesse-utils module code execution Platforms Affected:Node.js rmesse-utilsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js rmesse-utils module could allow a remote attacker...

Node.js usaa-mocks-proxy module code execution |

August 25, 2022

NAME Node.js usaa-mocks-proxy module code execution Platforms Affected:Node.js usaa-mocks-proxyRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js usaa-mocks-proxy module could allow a remote attacker...

Daily Vulnerability Trends: Thu Aug 25 2022

August 25, 2022

Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-2841A vulnerability was found in CrowdStrike Falcon 6.31.14505.0/6.42.15610. It has been classified...

Node.js optional-dep-wont-be-found code execution |

August 24, 2022

NAME Node.js optional-dep-wont-be-found code execution Platforms Affected:Node.js optional-dep-wont-be-foundRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js optional-dep-wont-be-found could allow a remote attacker to execute...

Node.js bi-client-sdk module code execution |

August 24, 2022

NAME Node.js bi-client-sdk module code execution Platforms Affected:Node.js bi-client-sdkRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js bi-client-sdk module could allow a remote attacker...

NotrinosERP information disclosure | CVE-2022-2921

August 24, 2022

NAME NotrinosERP information disclosure Platforms Affected:Notrinos NotrinosERP 0.6 Notrinos NotrinosERP 0.5 Notrinos NotrinosERP 0.4 Notrinos NotrinosERP 0.3 Notrinos NotrinosERP 0.2...

Node.js react-dom18 module code execution |

August 24, 2022

NAME Node.js react-dom18 module code execution Platforms Affected:Node.js react-dom18Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js react-dom18 module could allow a remote attacker...

Node.js usaa-dls-build-utils module code execution |

August 24, 2022

NAME Node.js usaa-dls-build-utils module code execution Platforms Affected:Node.js usaa-dls-build-utilsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js usaa-dls-build-utils module could allow a remote attacker...

Node.js portalmixin module code execution |

August 24, 2022

NAME Node.js portalmixin module code execution Platforms Affected:Node.js portalmixinRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js portalmixin module could allow a remote attacker...

Node.js ing-util-analytics module code execution |

August 24, 2022

NAME Node.js ing-util-analytics module code execution Platforms Affected:Node.js ing-util-analyticsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ing-util-analytics module could allow a remote attacker...

Node.js ing-feat-cms-components module code execution |

August 24, 2022

NAME Node.js ing-feat-cms-components module code execution Platforms Affected:Node.js ing-feat-cms-componentsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ing-feat-cms-components module could allow a remote attacker...

UNIMO UDR-JA1004, UNIMO UDR-JA1008, and UNIMO UDR-JA1016 command execution | CVE-2022-35733

August 24, 2022

NAME UNIMO UDR-JA1004, UNIMO UDR-JA1008, and UNIMO UDR-JA1016 command execution Platforms Affected:UNIMO UDR-JA1004 1.0.20.13 UNIMO UDR-JA1008 1.0.20.13 UNIMO UDR-JA1016 1.0.20.13...

Node.js some-dependency code execution |

August 24, 2022

NAME Node.js some-dependency code execution Platforms Affected:Node.js some-dependencyRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js some-dependency could allow a remote attacker to execute...

Node.js react-dom17 module code execution |

August 24, 2022

NAME Node.js react-dom17 module code execution Platforms Affected:Node.js react-dom17Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js react-dom17 module could allow a remote attacker...

Node.js avalanche-smart-contract-quickstart code execution |

August 24, 2022

NAME Node.js avalanche-smart-contract-quickstart code execution Platforms Affected:Node.js avalanche-smart-contract-quickstartRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js avalanche-smart-contract-quickstart could allow a remote attacker to execute...

CVE

Node.js git-repo-manager module code execution |

Cisco NX-OS Software denial of service | CVE-2022-20823

Node.js ing-lib-ow module code execution |

Node.js rmesse-utils module code execution |

Node.js usaa-mocks-proxy module code execution |

Daily Vulnerability Trends: Thu Aug 25 2022

Node.js optional-dep-wont-be-found code execution |

Node.js bi-client-sdk module code execution |

NotrinosERP information disclosure | CVE-2022-2921

Node.js react-dom18 module code execution |

Node.js usaa-dls-build-utils module code execution |

Node.js portalmixin module code execution |

Node.js ing-util-analytics module code execution |

Node.js ing-feat-cms-components module code execution |

UNIMO UDR-JA1004, UNIMO UDR-JA1008, and UNIMO UDR-JA1016 command execution | CVE-2022-35733

Node.js some-dependency code execution |

Node.js react-dom17 module code execution |

Node.js avalanche-smart-contract-quickstart code execution |

Mozilla Firefox code execution | CVE-2022-38478

Mozilla Firefox security bypass | CVE-2022-38473

Node.js tbb code execution |

Teleport code execution | CVE-2022-36633

Node.js gopeeker code execution |

Jenkins Job Configuration History Plugin cross-site scripting | CVE-2022-38664

CISA: CISA Releases Fact Sheet Detailing Embedded Backdoor Function of Contec CMS8000 Firmware

CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA Releases Nine Industrial Control Systems Advisories

CISA: CISA Partners with ASD’s ACSC, CCCS, NCSC-UK, and Other International and US Organizations to Release Guidance on Edge Devices

You may have missed