Gain Access

Zephyr code execution | CVE-2022-1042

July 27, 2022

NAME Zephyr code execution Platforms Affected:Zephyr Project Zephyr 3.0Risk Level:8.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Zephyr could allow a remote authenticated attacker to...

Node.js amplify-category-api-e2e-core module code execution |

July 26, 2022

NAME Node.js amplify-category-api-e2e-core module code execution Platforms Affected:Node.js amplify-category-api-e2e-coreRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js amplify-category-api-e2e-core module could allow a remote attacker...

Apple iOS, iPadOS, and tvOS buffer overflow | CVE-2022-32788

July 26, 2022

NAME Apple iOS, iPadOS, and tvOS buffer overflow Platforms Affected:Apple iOS 15.5 Apple iPadOS 15.5 Apple tvOS 15.5Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access...

Node.js owncloud-guests module code execution |

July 26, 2022

NAME Node.js owncloud-guests module code execution Platforms Affected:Node.js owncloud-guestsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js owncloud-guests module could allow a remote attacker...

Node.js employers-routes module code execution |

July 26, 2022

NAME Node.js employers-routes module code execution Platforms Affected:Node.js employers-routesRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js employers-routes module could allow a remote attacker...

Node.js dependencies-zksync module code execution |

July 26, 2022

NAME Node.js dependencies-zksync module code execution Platforms Affected:Node.js dependencies-zksyncRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js dependencies-zksync module could allow a remote attacker...

Node.js defi-interfaces module code execution |

July 26, 2022

NAME Node.js defi-interfaces module code execution Platforms Affected:Node.js defi-interfacesRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js defi-interfaces module could allow a remote attacker...

Node.js shaikh-test module code execution |

July 26, 2022

NAME Node.js shaikh-test module code execution Platforms Affected:Node.js shaikh-testRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js shaikh-test module could allow a remote attacker...

WAVLINK WN535K2 and WN535K3 command execution | CVE-2022-2488

July 26, 2022

NAME WAVLINK WN535K2 and WN535K3 command execution Platforms Affected:Wavlink WN535K2 Wavlink WN535K3Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION WAVLINK WN535K2 and WN535K3 could...

Node.js twilio-bugcrowd-poc-twilio-flex-ui-sample module code execution |

July 26, 2022

NAME Node.js twilio-bugcrowd-poc-twilio-flex-ui-sample module code execution Platforms Affected:Node.js twilio-bugcrowd-poc-twilio-flex-ui-sampleRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js twilio-bugcrowd-poc-twilio-flex-ui-sample module could allow a remote attacker...

PATLITE NHL-3FB2/NHP-3FB2 buffer overflow | CVE-2022-35911

July 26, 2022

NAME PATLITE NHL-3FB2/NHP-3FB2 buffer overflow Platforms Affected:PATLITE NHL-3FB2/NHP-3FB2 1.46 PATLITE NHL-3FB2/NHP-3FB2 1.45Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION PATLITE NHL-3FB2/NHP-3FB2 is vulnerable to...

WAVLINK WN535K2 and WN535K3 command execution | CVE-2022-2487

July 26, 2022

Node.js bitmovin-internal module code execution |

July 26, 2022

NAME Node.js bitmovin-internal module code execution Platforms Affected:Node.js bitmovin-internalRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js bitmovin-internal module could allow a remote attacker...

Node.js stripe-demo-connect-standard-saas-platform module code execution |

July 26, 2022

NAME Node.js stripe-demo-connect-standard-saas-platform module code execution Platforms Affected:Node.js stripe-demo-connect-standard-saas-platformRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js stripe-demo-connect-standard-saas-platform module could allow a remote attacker...

Node.js lido-dao-test-dp module code execution |

July 26, 2022

NAME Node.js lido-dao-test-dp module code execution Platforms Affected:Node.js lido-dao-test-dpRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js lido-dao-test-dp module could allow a remote attacker...

Node.js route-sonar module code execution |

July 26, 2022

NAME Node.js route-sonar module code execution Platforms Affected:Node.js route-sonarRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js route-sonar module could allow a remote attacker...

Node.js elementor-developers-docs module code execution |

July 26, 2022

NAME Node.js elementor-developers-docs module code execution Platforms Affected:Node.js elementor-developers-docsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js elementor-developers-docs module could allow a remote attacker...

WAVLINK WN535K2 and WN535K3 command execution | CVE-2022-2486

July 26, 2022

Node.js @acrontum/filesystem-template module command execution | CVE-2022-21186

July 26, 2022

NAME Node.js @acrontum/filesystem-template module command execution Platforms Affected:Node.js @acrontum/filesystem-template 0.0.1Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Node.js @acrontum/filesystem-template module could allow...

Gain Access

Zephyr code execution | CVE-2022-1042

Node.js amplify-category-api-e2e-core module code execution |

Apple iOS, iPadOS, and tvOS buffer overflow | CVE-2022-32788

Node.js owncloud-guests module code execution |

Node.js employers-routes module code execution |

Node.js dependencies-zksync module code execution |

Node.js defi-interfaces module code execution |

Node.js shaikh-test module code execution |

WAVLINK WN535K2 and WN535K3 command execution | CVE-2022-2488

Node.js twilio-bugcrowd-poc-twilio-flex-ui-sample module code execution |

PATLITE NHL-3FB2/NHP-3FB2 buffer overflow | CVE-2022-35911

WAVLINK WN535K2 and WN535K3 command execution | CVE-2022-2487

Node.js bitmovin-internal module code execution |

Node.js stripe-demo-connect-standard-saas-platform module code execution |

Node.js lido-dao-test-dp module code execution |

Node.js route-sonar module code execution |

Node.js elementor-developers-docs module code execution |

WAVLINK WN535K2 and WN535K3 command execution | CVE-2022-2486

Node.js @acrontum/filesystem-template module command execution | CVE-2022-21186

Node.js wm-accounts-auth module code execution |

Apple iOS, iPadOS, and tvOS buffer overflow | CVE-2022-32788

PrestaShop code execution | CVE-2022-36408

Open-Xchange OX App Suite command execution | CVE-2022-23100

Apple iOS, iPadOS, and tvOS buffer overflow | CVE-2022-32788

[FUNKSEC] – Ransomware Victim: unimore[.]it

Guarding the Circuits: Ensuring Robust Supply Chain Security

DDoS Attack Causes Major Outages on X – Pro-Palestine Group Claims Responsibility

Critical Ivanti Vulnerabilities: CISA Urges Immediate Patching for All Organizations

New York Sues Allstate for Data Breach and Security Failures

You may have missed