Vulnerabilities > Download of Code Without Integrity Check
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-29 | CVE-2022-40799 | Download of Code Without Integrity Check vulnerability in Dlink Dnr-322L Firmware Data Integrity Failure in 'Backup Config' in D-Link DNR-322L <= 2.60B15 allows an authenticated attacker to execute OS level commands on the device. | 8.8 |
| 2022-10-25 | CVE-2022-38199 | Download of Code Without Integrity Check vulnerability in Esri Arcgis Server 10.7.1/10.8.1/10.9.1 A remote file download issue can occur in some capabilities of Esri ArcGIS Server web services that may in some edge cases allow a remote, unauthenticated attacker to induce an unsuspecting victim to launch a process in the victim's PATH environment. | 6.1 |
| 2022-09-13 | CVE-2022-31324 | Download of Code Without Integrity Check vulnerability in Pentasecurity Wapples An arbitrary file download vulnerability in the downloadAction() function of Penta Security Systems Inc WAPPLES v6.0 r3 4.10-hotfix1 allows attackers to download arbitrary files via a crafted POST request. | 6.5 |
| 2022-09-01 | CVE-2021-45027 | Download of Code Without Integrity Check vulnerability in Softlinkint Oliver V5 Library An arbitrary file download vulnerability in Oliver v5 Library Server Versions < 5.00.008.053 via the FileServlet function allows for arbitrary file download by an attacker using unsanitized user supplied input. | 7.5 |
| 2022-09-01 | CVE-2022-36671 | Download of Code Without Integrity Check vulnerability in Xxyopen Novel-Plus 3.6.2 Novel-Plus v3.6.2 was discovered to contain an arbitrary file download vulnerability via the background file download API. | 7.5 |
| 2022-08-17 | CVE-2021-26639 | Download of Code Without Integrity Check vulnerability in Wisa Smart Wing CMS 1905 This vulnerability is caused by the lack of validation of input values for specific functions if WISA Smart Wing CMS. | 7.5 |
| 2022-08-03 | CVE-2022-36359 | Download of Code Without Integrity Check vulnerability in multiple products An issue was discovered in the HTTP FileResponse class in Django 3.2 before 3.2.15 and 4.0 before 4.0.7. | 8.8 |
| 2022-07-06 | CVE-2022-24140 | Download of Code Without Integrity Check vulnerability in Iobit products IOBit Advanced System Care 15, iTop Screen Recorder 2.1, iTop VPN 3.2, Driver Booster 9, and iTop Screenshot sends HTTP requests in their update procedure in order to download a config file. | 6.6 |
| 2022-06-06 | CVE-2022-27438 | Download of Code Without Integrity Check vulnerability in multiple products Caphyon Ltd Advanced Installer 19.3 and earlier and many products that use the updater from Advanced Installer (Advanced Updater) are affected by a remote code execution vulnerability via the CustomDetection parameter in the update check function. network high complexity caphyon realdefense prusa3d plagiarismcheckerx vigem nefarius moonsoftware getmailbird krylack jpsoft jki honeygain guzogo gamecaster gainedge fxsound freesnippingtool flamory emeditor codesector boom 3cx vpnhood vrdesktop urban-vpn xsplit rovio synaptics rstinstruments CWE-494 | 8.1 |
| 2022-05-23 | CVE-2022-28944 | Download of Code Without Integrity Check vulnerability in Emcosoftware products Certain EMCO Software products are affected by: CWE-494: Download of Code Without Integrity Check. | 8.8 |