Weekly Vulnerabilities Reports > December 19 to 25, 2022

Overview

629 new vulnerabilities reported during this period, including 113 critical vulnerabilities and 231 high severity vulnerabilities. This weekly summary report vulnerabilities in 149 products from 83 vendors including IBM, Tenda, Adobe, Openimageio Project, and Mozilla. Vulnerabilities are notably categorized as "Cross-site Scripting", "Out-of-bounds Write", "Classic Buffer Overflow", "Use After Free", and "Out-of-bounds Read".

  • 566 reported vulnerabilities are remotely exploitables.
  • 198 reported vulnerabilities are related to weaknesses in OWASP Top Ten.
  • 480 reported vulnerabilities are exploitable by an anonymous user.
  • IBM has the most reported vulnerabilities, with 34 reported vulnerabilities.
  • IP COM has the most reported critical vulnerabilities, with 15 reported vulnerabilities.

TOTAL
VULNERABILITIES
CRITICAL RISK
VULNERABILITIES
HIGH RISK
VULNERABILITIES
MEDIUM RISK
VULNERABILITIES
LOW RISK
VULNERABILITIES
REMOTELY
EXPLOITABLE
LOCALLY
EXPLOITABLE
EXPLOIT
AVAILABLE
EXPLOITABLE
ANONYMOUSLY
AFFECTING
WEB APPLICATION

Vulnerability Details

The following table list reported vulnerabilities for the period covered by this report:

Expand/Hide

113 Critical Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2022-12-22 CVE-2021-4140 It was possible to construct specific XSLT markup that would be able to bypass an iframe sandbox.
10.0
2022-12-23 CVE-2022-46641 Dlink Command Injection vulnerability in Dlink Dir-846 Firmware 100A43

D-Link DIR-846 A1_FW100A43 was discovered to contain a command injection vulnerability via the lan(0)_dhcps_staticlist parameter in the SetIpMacBindSettings function.

9.9
2022-12-23 CVE-2022-46642 Dlink Command Injection vulnerability in Dlink Dir-846 Firmware 100A43

D-Link DIR-846 A1_FW100A43 was discovered to contain a command injection vulnerability via the auto_upgrade_hour parameter in the SetAutoUpgradeInfo function.

9.9
2022-12-25 CVE-2020-36630 A vulnerability was found in FreePBX cdr 14.0.
9.8
2022-12-25 CVE-2020-36631 A vulnerability was found in barronwaffles dwc_network_server_emulator.
9.8
2022-12-25 CVE-2020-36632 A vulnerability, which was classified as critical, was found in hughsk flat up to 5.0.0.
9.8
2022-12-25 CVE-2021-4279 A vulnerability has been found in Starcounter-Jack JSON-Patch up to 3.1.0 and classified as problematic.
9.8
2022-12-25 CVE-2022-4737 Blood Bank Management System Project SQL Injection vulnerability in Blood Bank Management System Project Blood Bank Management System 1.0

A vulnerability was found in SourceCodester Blood Bank Management System 1.0.

9.8
2022-12-25 CVE-2022-4739 School Dormitory Management System Project SQL Injection vulnerability in School Dormitory Management System Project School Dormitory Management System 1.0

A vulnerability classified as critical was found in SourceCodester School Dormitory Management System 1.0.

9.8
2022-12-25 CVE-2020-36628 Android Processing Development Environment Project Path Traversal vulnerability in Android Processing Development Environment Project Android Processing Development Environment 0.5.2

A vulnerability classified as critical has been found in Calsign APDE.

9.8
2022-12-25 CVE-2022-44015 An issue was discovered in Simmeth Lieferantenmanager before 5.6.
9.8
2022-12-25 CVE-2022-44640 Heimdal Project Unspecified vulnerability in Heimdal Project Heimdal

Heimdal before 7.7.1 allows remote attackers to execute arbitrary code because of an invalid free in the ASN.1 codec used by the Key Distribution Center (KDC).

9.8
2022-12-25 CVE-2022-45896 Planet eStream before 6.72.10.07 allows unauthenticated upload of arbitrary files: Choose a Video / Related Media or Upload Document.
9.8
2022-12-24 CVE-2022-47949 Nintendo Classic Buffer Overflow vulnerability in Nintendo products

The Nintendo NetworkBuffer class, as used in Animal Crossing: New Horizons before 2.0.6 and other products, allows remote attackers to execute arbitrary code via a large UDP packet that causes a buffer overflow, aka ENLBufferPwn.

9.8
2022-12-23 CVE-2022-47945 ThinkPHP Framework before 6.0.14 allows local file inclusion via the lang parameter when the language pack feature is enabled (lang_switch_on=true).
9.8
2022-12-23 CVE-2022-45706 IP COM Classic Buffer Overflow vulnerability in Ip-Com M50 Firmware 15.11.0.33

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the hostname parameter in the formSetNetCheckTools function.

9.8
2022-12-23 CVE-2022-45707 IP COM Classic Buffer Overflow vulnerability in Ip-Com M50 Firmware 15.11.0.33

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the rules parameter in the formAddDnsHijack function.

9.8
2022-12-23 CVE-2022-45708 IP COM Classic Buffer Overflow vulnerability in Ip-Com M50 Firmware 15.11.0.33

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the sPortMapIndex parameter in the formDelPortMapping function.

9.8
2022-12-23 CVE-2022-45709 IP COM OS Command Injection vulnerability in Ip-Com M50 Firmware 15.11.0.33

IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple command injection vulnerabilities via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function.

9.8
2022-12-23 CVE-2022-45710 IP COM Classic Buffer Overflow vulnerability in Ip-Com M50 Firmware 15.11.0.33

IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple buffer overflows via the pEnable, pLevel, and pModule parameters in the formSetDebugCfg function.

9.8
2022-12-23 CVE-2022-45711 IP COM OS Command Injection vulnerability in Ip-Com M50 Firmware 15.11.0.33

IP-COM M50 V15.11.0.33(10768) was discovered to contain a command injection vulnerability via the hostname parameter in the formSetNetCheckTools function.

9.8
2022-12-23 CVE-2022-45712 IP COM Classic Buffer Overflow vulnerability in Ip-Com M50 Firmware 15.11.0.33

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the rules parameter in the formAddDnsForward function.

9.8
2022-12-23 CVE-2022-45714 IP COM Classic Buffer Overflow vulnerability in Ip-Com M50 Firmware 15.11.0.33

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the indexSet parameter in the formQOSRuleDel function.

9.8
2022-12-23 CVE-2022-45715 IP COM Classic Buffer Overflow vulnerability in Ip-Com M50 Firmware 15.11.0.33

IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple buffer overflows via the pLanPortRange and pWanPortRange parameters in the formSetPortMapping function.

9.8
2022-12-23 CVE-2022-45716 IP COM Classic Buffer Overflow vulnerability in Ip-Com M50 Firmware 15.11.0.33

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the indexSet parameter in the formIPMacBindDel function.

9.8
2022-12-23 CVE-2022-45717 IP COM Command Injection vulnerability in Ip-Com M50 Firmware 15.11.0.33

IP-COM M50 V15.11.0.33(10768) was discovered to contain a command injection vulnerability via the usbPartitionName parameter in the formSetUSBPartitionUmount function.

9.8
2022-12-23 CVE-2022-45718 IP COM Classic Buffer Overflow vulnerability in Ip-Com M50 Firmware 15.11.0.33

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the rules parameter in the formIPMacBindAdd function.

9.8
2022-12-23 CVE-2022-45719 IP COM Classic Buffer Overflow vulnerability in Ip-Com M50 Firmware 15.11.0.33

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the gotoUrl parameter in the formPortalAuth function.

9.8
2022-12-23 CVE-2022-45720 IP COM Classic Buffer Overflow vulnerability in Ip-Com M50 Firmware 15.11.0.33

IP-COM M50 V15.11.0.33(10768) was discovered to contain multiple buffer overflows via the ip, mac, and remark parameters in the formIPMacBindModify function.

9.8
2022-12-23 CVE-2022-45721 IP COM Classic Buffer Overflow vulnerability in Ip-Com M50 Firmware 15.11.0.33

IP-COM M50 V15.11.0.33(10768) was discovered to contain a buffer overflow via the picName parameter in the formDelWewifiPic function.

9.8
2022-12-23 CVE-2022-47939 Linux Use After Free vulnerability in Linux Kernel

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2.

9.8
2022-12-23 CVE-2022-23547 PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE.
9.8
2022-12-23 CVE-2022-44567 A command injection vulnerability exists in Rocket.Chat-Desktop <3.8.14 that could allow an attacker to pass a malicious url of openInternalVideoChatWindow to shell.openExternal(), which may lead to remote code execution (internalVideoChatWindow.ts#L17).
9.8
2022-12-23 CVE-2022-4686 Improper Authentication in GitHub repository usememos/memos prior to 0.9.0.
9.8
2022-12-22 CVE-2022-46493 Nbnbk Project Unrestricted Upload of File with Dangerous Type vulnerability in Nbnbk Project Nbnbk

Default version of nbnbk was discovered to contain an arbitrary file upload vulnerability via the component /api/User/download_img.

9.8
2022-12-22 CVE-2022-38143 Openimageio Project
Fedoraproject
Out-of-bounds Write vulnerability in multiple products

A heap out-of-bounds write vulnerability exists in the way OpenImageIO v2.3.19.0 processes RLE encoded BMP images.

9.8
2022-12-22 CVE-2022-41639 Openimageio Project
Fedoraproject
Heap-based Buffer Overflow vulnerability in multiple products

A heap based buffer overflow vulnerability exists in tile decoding code of TIFF image parser in OpenImageIO master-branch-9aeece7a and v2.3.19.0.

9.8
2022-12-22 CVE-2022-41794 Openimageio Project
Fedoraproject
Heap-based Buffer Overflow vulnerability in multiple products

A heap based buffer overflow vulnerability exists in the PSD thumbnail resource parsing code of OpenImageIO 2.3.19.0.

9.8
2022-12-22 CVE-2022-41837 Openimageio Project Out-of-bounds Write vulnerability in Openimageio Project Openimageio 2.4.4.2

An out-of-bounds write vulnerability exists in the OpenImageIO::add_exif_item_to_spec functionality of OpenImageIO Project OpenImageIO v2.4.4.2.

9.8
2022-12-22 CVE-2022-41838 Openimageio Project
Fedoraproject
Heap-based Buffer Overflow vulnerability in multiple products

A code execution vulnerability exists in the DDS scanline parsing functionality of OpenImageIO Project OpenImageIO v2.4.4.2.

9.8
2022-12-22 CVE-2021-4127 An out of date graphics library (Angle) likely contained vulnerabilities that could potentially be exploited.
9.8
2022-12-22 CVE-2021-4129 Mozilla Unspecified vulnerability in Mozilla Firefox ESR

Mozilla developers and community members Julian Hector, Randell Jesup, Gabriele Svelto, Tyson Smith, Christian Holler, and Masayuki Nakano reported memory safety bugs present in Firefox 94.

9.8
2022-12-22 CVE-2022-1887 The search term could have been specified externally to trigger SQL injection.
9.8
2022-12-22 CVE-2022-29917 Mozilla developers Andrew McCreight, Gabriele Svelto, Tom Ritter and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 99 and Firefox ESR 91.8.
9.8
2022-12-22 CVE-2022-31736 A malicious website could have learned the size of a cross-origin resource that supported Range requests.
9.8
2022-12-22 CVE-2022-31737 A malicious webpage could have caused an out-of-bounds write in WebGL, leading to memory corruption and a potentially exploitable crash.
9.8
2022-12-22 CVE-2022-31747 Mozilla developers Andrew McCreight, Nicolas B.
9.8
2022-12-22 CVE-2022-31748 Mozilla developers Gabriele Svelto, Timothy Nikkel, Randell Jesup, Jon Coppeard, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 100.
9.8
2022-12-22 CVE-2022-34470 Session history navigations may have led to a use-after-free and potentially exploitable crash.
9.8
2022-12-22 CVE-2022-34476 ASN.1 parsing of an indefinite SEQUENCE inside an indefinite GROUP could have resulted in the parser accepting malformed ASN.1.
9.8
2022-12-22 CVE-2022-34485 Mozilla Out-of-bounds Write vulnerability in Mozilla Firefox 101.0/101.0.1

Mozilla developers Bryce Seager van Dyk and the Mozilla Fuzzing Team reported potential vulnerabilities present in Firefox 101.

9.8
2022-12-22 CVE-2022-36320 Mozilla developers and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 102.
9.8
2022-12-22 CVE-2022-45406 If an out-of-memory condition occurred when creating a JavaScript global, a JavaScript realm may be deleted while references to it lived on in a BaseShape.
9.8
2022-12-22 CVE-2022-46882 A use-after-free in WebGL extensions could have led to a potentially exploitable crash.
9.8
2022-12-22 CVE-2022-23540 In versions `<=8.5.1` of `jsonwebtoken` library, lack of algorithm definition in the `jwt.verify()` function can lead to signature validation bypass due to defaulting to the `none` algorithm for signature verification.
9.8
2022-12-22 CVE-2022-46170 CodeIgniter is a PHP full-stack web framework.
9.8
2022-12-22 CVE-2022-23541 jsonwebtoken is an implementation of JSON Web Tokens.
9.8
2022-12-22 CVE-2022-46102 Ayacms Project Unrestricted Upload of File with Dangerous Type vulnerability in Ayacms Project Ayacms 3.1.2

AyaCMS 3.1.2 is vulnerable to Arbitrary file upload via /aya/module/admin/fst_down.inc.php

9.8
2022-12-22 CVE-2022-47926 Ayacms Project Argument Injection or Modification vulnerability in Ayacms Project Ayacms 3.1.2

AyaCMS 3.1.2 is vulnerable to file deletion via /aya/module/admin/fst_del.inc.php

9.8
2022-12-22 CVE-2022-45966 Classcms Project Unrestricted Upload of File with Dangerous Type vulnerability in Classcms Project Classcms 3.5

here is an arbitrary file upload vulnerability in the file management function module of Classcms3.5.

9.8
2022-12-22 CVE-2022-45347 Apache ShardingSphere-Proxy prior to 5.3.0 when using MySQL as database backend didn't cleanup the database session completely after client authentication failed, which allowed an attacker to execute normal commands by constructing a special MySQL client.
9.8
2022-12-21 CVE-2022-3183 Dataprobe iBoot-PDU FW versions prior to 1.42.06162022 contain a vulnerability where a specific function does not sanitize the input provided by the user, which may expose the affected to an OS command injection vulnerability.
9.8
2022-12-21 CVE-2022-3184 Dataprobe iBoot-PDU FW versions prior to 1.42.06162022 contain a vulnerability where the device’s existing firmware allows unauthenticated users to access an old PHP page vulnerable to directory traversal, which may allow a user to write a file to the webroot directory.
9.8
2022-12-21 CVE-2022-4639 Sslh Project Use of Externally-Controlled Format String vulnerability in Sslh Project Sslh 2.0

A vulnerability, which was classified as critical, has been found in sslh.

9.8
2022-12-21 CVE-2022-4643 A vulnerability was found in docconv up to 1.2.0.
9.8
2022-12-21 CVE-2022-23529 node-jsonwebtoken is a JsonWebToken implementation for node.js.
9.8
2022-12-21 CVE-2022-40145 This vulnerable is about a potential code injection when an attacker has control of the target LDAP server using in the JDBC JNDI URL.
9.8
2022-12-21 CVE-2022-47635 Wildix WMS 6 before 6.02.20221216, WMS 5 before 5.04.20221214, and WMS4 before 4.04.45396.23 allows Server-side request forgery (SSRF) via ZohoClient.php.
9.8
2022-12-21 CVE-2022-24431 Abacus EXT Cmdline Project Command Injection vulnerability in Abacus-Ext-Cmdline Project Abacus-Ext-Cmdline

All versions of package abacus-ext-cmdline are vulnerable to Command Injection via the execute function due to improper user-input sanitization.

9.8
2022-12-21 CVE-2022-25893 The package vm2 before 3.9.10 are vulnerable to Arbitrary Code Execution due to the usage of prototype lookup for the WeakMap.prototype.set method.
9.8
2022-12-21 CVE-2022-38546 A DNS misconfiguration was found in Zyxel NBG7510 firmware versions prior to V1.00(ABZY.3)C0, which could allow an unauthenticated attacker to access the DNS server when the device is switched to the AP mode.
9.8
2022-12-20 CVE-2022-47629 Debian Integer Overflow or Wraparound vulnerability in Debian Linux 10.0/11.0

Libksba before 1.6.3 is prone to an integer overflow vulnerability in the CRL signature parser.

9.8
2022-12-20 CVE-2022-23542 OpenFGA is an authorization/permission engine built for developers and inspired by Google Zanzibar.
9.8
2022-12-20 CVE-2022-46316 A thread security vulnerability exists in the authentication process.
9.8
2022-12-20 CVE-2022-46319 Huawei Out-of-bounds Write vulnerability in Huawei Emui and Harmonyos

Fingerprint calibration has a vulnerability of lacking boundary judgment.

9.8
2022-12-20 CVE-2022-46320 Huawei Out-of-bounds Read vulnerability in Huawei Emui and Harmonyos

The kernel module has an out-of-bounds read vulnerability.

9.8
2022-12-20 CVE-2022-46323 Huawei Out-of-bounds Write vulnerability in Huawei Emui and Harmonyos

Some smartphones have the out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause system service exceptions.

9.8
2022-12-20 CVE-2022-46324 Huawei Out-of-bounds Write vulnerability in Huawei Emui and Harmonyos

Some smartphones have the out-of-bounds write vulnerability.

9.8
2022-12-20 CVE-2022-46325 Huawei Out-of-bounds Write vulnerability in Huawei Emui and Harmonyos

Some smartphones have the out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause system service exceptions.

9.8
2022-12-20 CVE-2022-46326 Huawei Out-of-bounds Write vulnerability in Huawei Emui and Harmonyos

Some smartphones have the out-of-bounds write vulnerability.

9.8
2022-12-20 CVE-2022-46327 Huawei Unspecified vulnerability in Huawei Emui and Harmonyos

Some smartphones have configuration issues.

9.8
2022-12-20 CVE-2022-23537 PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE.
9.8
2022-12-20 CVE-2022-46020 Wbce Unrestricted Upload of File with Dangerous Type vulnerability in Wbce CMS 1.5.4

WBCE CMS v1.5.4 can implement getshell by modifying the upload file type.

9.8
2022-12-20 CVE-2022-40624 pfSense pfBlockerNG through 2.1.4_27 allows remote attackers to execute arbitrary OS commands as root via the HTTP Host header, a different vulnerability than CVE-2022-31814.
9.8
2022-12-20 CVE-2022-46538 Tenda Command Injection vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a command injection vulnerability via the mac parameter at /goform/WriteFacMac.

9.8
2022-12-20 CVE-2022-46421 Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Apache Software Foundation Apache Airflow Hive Provider.This issue affects Apache Airflow Hive Provider: before 5.0.0.
9.8
2022-12-20 CVE-2022-25171 The package p4 before 0.0.7 are vulnerable to Command Injection via the run() function due to improper input sanitization
9.8
2022-12-20 CVE-2022-25904 All versions of package safe-eval are vulnerable to Prototype Pollution which allows an attacker to add or modify properties of the Object.prototype.Consolidate when using the function safeEval.
9.8
2022-12-19 CVE-2022-44108 Pdftojson Project Out-of-bounds Write vulnerability in Pdftojson Project Pdftojson

pdftojson commit 94204bb was discovered to contain a stack overflow via the component Object::copy(Object*):Object.cc.

9.8
2022-12-19 CVE-2022-44109 pdftojson commit 94204bb was discovered to contain a stack overflow via the component Stream::makeFilter(char*, Stream*, Object*, int).
9.8
2022-12-19 CVE-2022-40434 Softr Injection vulnerability in Softr 2.0

Softr v2.0 was discovered to be vulnerable to HTML injection via the Name field of the Account page.

9.8
2022-12-19 CVE-2021-33640 Huawei
Fedoraproject
Use After Free vulnerability in multiple products

After tar_close(), libtar.c releases the memory pointed to by pointer t.

9.8
2022-12-19 CVE-2022-28173 The web server of some Hikvision wireless bridge products have an access control vulnerability which can be used to obtain the admin permission.
9.8
2022-12-19 CVE-2020-36618 Furqansofware Unspecified vulnerability in Furqansofware Node Whois

A vulnerability classified as critical has been found in Furqan node-whois.

9.8
2022-12-19 CVE-2020-36619 A vulnerability was found in multimon-ng.
9.8
2022-12-19 CVE-2021-4259 A vulnerability was found in phpRedisAdmin up to 1.16.1.
9.8
2022-12-19 CVE-2021-4261 A vulnerability classified as critical has been found in pacman-canvas up to 1.0.5.
9.8
2022-12-19 CVE-2021-4262 A vulnerability classified as critical was found in laravel-jqgrid.
9.8
2022-12-19 CVE-2022-4050 The JoomSport WordPress plugin before 5.2.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated users
9.8
2022-12-19 CVE-2022-4063 The InPost Gallery WordPress plugin before 2.1.4.1 insecurely uses PHP's extract() function when rendering HTML views, allowing attackers to force the inclusion of malicious files & URLs, which may enable them to run code on servers.
9.8
2022-12-19 CVE-2022-4427 Otrs Improper Input Validation vulnerability in Otrs 7.0.40/8.0.28

Improper Input Validation vulnerability in OTRS AG OTRS, OTRS AG ((OTRS)) Community Edition allows SQL Injection via TicketSearch Webservice This issue affects OTRS: from 7.0.1 before 7.0.40 Patch 1, from 8.0.1 before 8.0.28 Patch 1; ((OTRS)) Community Edition: from 6.0.1 through 6.0.34.

9.8
2022-12-19 CVE-2022-44456 CONPROSYS HMI System (CHS) Ver.3.4.4?and earlier allows a remote unauthenticated attacker to execute an arbitrary OS command on the server where the product is running by sending a specially crafted request.
9.8
2022-12-23 CVE-2021-32692 Activity Watch is a free and open-source automated time tracker.
9.6
2022-12-22 CVE-2022-22759 Mozilla Unspecified vulnerability in Mozilla Firefox

If a document created a sandboxed iframe without <code>allow-scripts</code>, and subsequently appended an element to the iframe's document that e.g.

9.6
2022-12-22 CVE-2022-26384 If an attacker could control the contents of an iframe sandboxed with <code>allow-popups</code> but not <code>allow-scripts</code>, they were able to craft a link that, when clicked, would lead to JavaScript execution in violation of the sandbox.
9.6
2022-12-22 CVE-2022-26486 An unexpected message in the WebGPU IPC framework could lead to a use-after-free and exploitable sandbox escape.
9.6
2022-12-25 CVE-2022-44013 An issue was discovered in Simmeth Lieferantenmanager before 5.6.
9.1
2022-12-25 CVE-2022-45891 Planet eStream before 6.72.10.07 allows attackers to call restricted functions, and perform unauthenticated uploads (Upload2.ashx) or access content uploaded by other users (View.aspx after Ajax.asmx/SaveGrantAccessList).
9.1
2022-12-23 CVE-2022-28228 Out-of-bounds read was discovered in YDB server.
9.1
2022-12-23 CVE-2022-47931 IO FinNet tss-lib before 2.0.0 allows a collision of hash values.
9.1
2022-12-22 CVE-2022-41649 Openimageio Project Out-of-bounds Read vulnerability in Openimageio Project Openimageio 2.3.19.0

A heap out of bounds read vulnerability exists in the handling of IPTC data while parsing TIFF images in OpenImageIO v2.3.19.0.

9.1
2022-12-19 CVE-2022-44940 Patchelf Project Out-of-bounds Read vulnerability in Patchelf Project Patchelf 0.9

Patchelf v0.9 was discovered to contain an out-of-bounds read via the function modifyRPath at src/patchelf.cc.

9.1
2022-12-19 CVE-2022-38708 IBM Server-Side Request Forgery (SSRF) vulnerability in IBM Cognos Analytics

IBM Cognos Analytics 11.1.7 11.2.0, and 11.2.1 could be vulnerable to a Server-Side Request Forgery Attack (SSRF) attack by constructing URLs from user-controlled data.

9.1

231 High Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2022-12-25 CVE-2022-40005 Intelbras WiFiber 120AC inMesh before 1-1-220826 allows command injection by authenticated users, as demonstrated by the /boaform/formPing6 and /boaform/formTracert URIs for ping and traceroute.
8.8
2022-12-25 CVE-2021-4276 DNS Stats SQL Injection vulnerability in Dns-Stats Hedgehog

A vulnerability was found in dns-stats hedgehog.

8.8
2022-12-25 CVE-2022-42898 MIT
Heimdal Project
Integer Overflow or Wraparound vulnerability in multiple products

PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms.

8.8
2022-12-25 CVE-2022-45893 Planet eStream before 6.72.10.07 allows a low-privileged user to gain access to administrative and high-privileged user accounts by changing the value of the ON cookie.
8.8
2022-12-24 CVE-2022-46175 Json5 Unspecified vulnerability in Json5

JSON5 is an extension to the popular JSON file format that aims to be easier to write and maintain by hand (e.g.

8.8
2022-12-23 CVE-2022-47942 Linux Out-of-bounds Write vulnerability in Linux Kernel

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2.

8.8
2022-12-23 CVE-2022-4684 Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.
8.8
2022-12-23 CVE-2022-4688 Improper Authorization in GitHub repository usememos/memos prior to 0.9.0.
8.8
2022-12-23 CVE-2022-4689 Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.
8.8
2022-12-23 CVE-2022-4665 Unrestricted Upload of File with Dangerous Type in GitHub repository ampache/ampache prior to 5.5.6.
8.8
2022-12-22 CVE-2020-15685 During the plaintext phase of the STARTTLS connection setup, protocol commands could have been injected and evaluated within the encrypted session.
8.8
2022-12-22 CVE-2022-0511 Mozilla Out-of-bounds Write vulnerability in Mozilla Firefox

Mozilla developers and community members Gabriele Svelto, Sebastian Hengst, Randell Jesup, Luan Herrera, Lars T Hansen, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 96.

8.8
2022-12-22 CVE-2022-0566 It may be possible for an attacker to craft an email message that causes Thunderbird to perform an out-of-bounds write of one byte when processing the message.
8.8
2022-12-22 CVE-2022-0843 Mozilla Out-of-bounds Write vulnerability in Mozilla Firefox

Mozilla developers Kershaw Chang, Ryan VanderMeulen, and Randell Jesup reported memory safety bugs present in Firefox 97.

8.8
2022-12-22 CVE-2022-1529 An attacker could have sent a message to the parent process where the contents were used to double-index into a JavaScript object, leading to prototype pollution and ultimately attacker-controlled JavaScript executing in the privileged parent process.
8.8
2022-12-22 CVE-2022-1802 If an attacker was able to corrupt the methods of an Array object in JavaScript via prototype pollution, they could have achieved execution of attacker-controlled JavaScript code in a privileged context.
8.8
2022-12-22 CVE-2022-22738 Applying a CSS filter effect could have accessed out of bounds memory.
8.8
2022-12-22 CVE-2022-22740 Certain network request objects were freed too early when releasing a network request handle.
8.8
2022-12-22 CVE-2022-22744 The constructed curl command from the "Copy as curl" feature in DevTools was not properly escaped for PowerShell.
8.8
2022-12-22 CVE-2022-22751 Mozilla developers Calixte Denizet, Kershaw Chang, Christian Holler, Jason Kratzer, Gabriele Svelto, Tyson Smith, Simon Giesecke, and Steve Fink reported memory safety bugs present in Firefox 95 and Firefox ESR 91.4.
8.8
2022-12-22 CVE-2022-22752 Mozilla developers Christian Holler and Jason Kratzer reported memory safety bugs present in Firefox 95.
8.8
2022-12-22 CVE-2022-22755 Mozilla Operation on a Resource after Expiration or Release vulnerability in Mozilla Firefox

By using XSL Transforms, a malicious webserver could have served a user an XSL document that would continue to execute JavaScript (within the bounds of the same-origin policy) even after the tab was closed.

8.8
2022-12-22 CVE-2022-22756 Mozilla Unspecified vulnerability in Mozilla Firefox

If a user was convinced to drag and drop an image to their desktop or other folder, the resulting object could have been changed into an executable script which would have run arbitrary code after the user clicked on it.

8.8
2022-12-22 CVE-2022-22758 Mozilla Cleartext Transmission of Sensitive Information vulnerability in Mozilla Firefox

When clicking on a tel: link, USSD codes, specified after a <code>\*</code> character, would be included in the phone number.

8.8
2022-12-22 CVE-2022-22761 Mozilla Unspecified vulnerability in Mozilla Firefox

Web-accessible extension pages (pages with a moz-extension:// scheme) were not correctly enforcing the frame-ancestors directive when it was used in the Web Extension's Content Security Policy.

8.8
2022-12-22 CVE-2022-22763 When a worker is shutdown, it was possible to cause script to run late in the lifecycle, at a point after where it should not be possible.
8.8
2022-12-22 CVE-2022-22764 Mozilla Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Mozilla Firefox

Mozilla developers Paul Adenot and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 96 and Firefox ESR 91.5.

8.8
2022-12-22 CVE-2022-26381 An attacker could have caused a use-after-free by forcing a text reflow in an SVG object leading to a potentially exploitable crash.
8.8
2022-12-22 CVE-2022-26485 Removing an XSLT parameter during processing could have lead to an exploitable use-after-free.
8.8
2022-12-22 CVE-2022-28281 If a compromised content process sent an unexpected number of WebAuthN Extensions in a Register command to the parent process, an out of bounds write would have occurred leading to memory corruption and a potentially exploitable crash.
8.8
2022-12-22 CVE-2022-28284 SVG's <code>&lt;use&gt;</code> element could have been used to load unexpected content that could have executed script in certain circumstances.
8.8
2022-12-22 CVE-2022-28288 Mozilla developers and community members Randell Jesup, Sebastian Hengst, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 98.
8.8
2022-12-22 CVE-2022-28289 Mozilla developers and community members Nika Layzell, Andrew McCreight, Gabriele Svelto, and the Mozilla Fuzzing Team reported memory safety bugs present in Thunderbird 91.7.
8.8
2022-12-22 CVE-2022-29909 Documents in deeply-nested cross-origin browsing contexts could have obtained permissions granted to the top-level origin, bypassing the existing prompt and wrongfully inheriting the top-level permissions.
8.8
2022-12-22 CVE-2022-29918 Mozilla developers Gabriele Svelto, Randell Jesup and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 99.
8.8
2022-12-22 CVE-2022-2200 If an object prototype was corrupted by an attacker, they would have been able to set undesired attributes on a JavaScript object, leading to privileged code execution.
8.8
2022-12-22 CVE-2022-2505 Mozilla developers and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 102.
8.8
2022-12-22 CVE-2022-31739 When downloading files on Windows, the % character was not escaped, which could have lead to a download incorrectly being saved to attacker-influenced paths that used variables such as %HOMEPATH% or %APPDATA%.<br>*This bug only affects Firefox for Windows.
8.8
2022-12-22 CVE-2022-31740 Mozilla Unspecified vulnerability in Mozilla Firefox ESR

On arm64, WASM code could have resulted in incorrect assembly generation leading to a register allocation problem, and a potentially exploitable crash.

8.8
2022-12-22 CVE-2022-31741 A crafted CMS message could have been processed incorrectly, leading to an invalid memory read, and potentially further memory corruption.
8.8
2022-12-22 CVE-2022-34468 An iframe that was not permitted to run scripts could do so if the user clicked on a <code>javascript:</code> link.
8.8
2022-12-22 CVE-2022-34480 Within the <code>lg_init()</code> function, if several allocations succeed but then one fails, an uninitialized pointer would have been freed despite never being allocated.
8.8
2022-12-22 CVE-2022-34481 In the <code>nsTArray_Impl::ReplaceElementsAt()</code> function, an integer overflow could have occurred when the number of elements to replace was too large for the container.
8.8
2022-12-22 CVE-2022-34482 An attacker who could have convinced a user to drag and drop an image to a filesystem could have manipulated the resulting filename to contain an executable extension, and by extension potentially tricked the user into executing malicious code.
8.8
2022-12-22 CVE-2022-34483 An attacker who could have convinced a user to drag and drop an image to a filesystem could have manipulated the resulting filename to contain an executable extension, and by extension potentially tricked the user into executing malicious code.
8.8
2022-12-22 CVE-2022-34484 The Mozilla Fuzzing Team reported potential vulnerabilities present in Thunderbird 91.10.
8.8
2022-12-22 CVE-2022-38473 A cross-origin iframe referencing an XSLT document would inherit the parent domain's permissions (such as microphone or camera access).
8.8
2022-12-22 CVE-2022-38477 Mozilla developer Nika Layzell and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 103 and Firefox ESR 102.1.
8.8
2022-12-22 CVE-2022-38478 Members the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 103, Firefox ESR 102.1, and Firefox ESR 91.12.
8.8
2022-12-22 CVE-2022-40962 Mozilla developers Nika Layzell, Timothy Nikkel, Sebastian Hengst, Andreas Pehrson, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 104 and Firefox ESR 102.2.
8.8
2022-12-22 CVE-2022-42928 Certain types of allocations were missing annotations that, if the Garbage Collector was in a specific state, could have lead to memory corruption and a potentially exploitable crash.
8.8
2022-12-22 CVE-2022-42932 Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Thunderbird 102.3.
8.8
2022-12-22 CVE-2022-45409 The garbage collector could have been aborted in several states and zones and <code>GCRuntime::finishCollection</code> may not have been called, leading to a use-after-free and potentially exploitable crash.
8.8
2022-12-22 CVE-2022-45412 When resolving a symlink such as <code>file:///proc/self/fd/1</code>, an error message may be produced where the symlink was resolved to a string containing unitialized memory in the buffer.
8.8
2022-12-22 CVE-2022-45421 Mozilla developers Andrew McCreight and Gabriele Svelto reported memory safety bugs present in Thunderbird 102.4.
8.8
2022-12-22 CVE-2022-46871 Mozilla
Debian
An out of date library (libusrsctp) contained vulnerabilities that could potentially be exploited.
8.8
2022-12-22 CVE-2022-46873 Because Firefox did not implement the <code>unsafe-hashes</code> CSP directive, an attacker who was able to inject markup into a page otherwise protected by a Content Security Policy may have been able to inject executable script.
8.8
2022-12-22 CVE-2022-46874 A file with a long filename could have had its filename truncated to remove the valid extension, leaving a malicious extension in its place.
8.8
2022-12-22 CVE-2022-46878 Mozilla developers Randell Jesup, Valentin Gosu, Olli Pettay, and the Mozilla Fuzzing Team reported memory safety bugs present in Thunderbird 102.5.
8.8
2022-12-22 CVE-2022-46879 Mozilla developers and community members Lukas Bernhard, Gabriele Svelto, Randell Jesup, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 107.
8.8
2022-12-22 CVE-2022-46881 An optimization in WebGL was incorrect in some cases, and could have led to memory corruption and a potentially exploitable crash.
8.8
2022-12-22 CVE-2022-46883 Mozilla developers Gabriele Svelto, Yulia Startsev, Andrew McCreight and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 106.
8.8
2022-12-22 CVE-2022-46885 Mozilla developers Timothy Nikkel, Ashley Hale, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105.
8.8
2022-12-22 CVE-2022-46101 Ayacms Project Code Injection vulnerability in Ayacms Project Ayacms 3.1.2

AyaCMS v3.1.2 was found to have a code flaw in the ust_sql.inc.php file, which allows attackers to cause command execution by inserting malicious code.

8.8
2022-12-22 CVE-2020-36625 Destiny Cross-Site Request Forgery (CSRF) vulnerability in Destiny Chat

** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in destiny.gg chat.

8.8
2022-12-21 CVE-2021-4275 Pyambic Pentameter Project Cross-Site Request Forgery (CSRF) vulnerability in Pyambic-Pentameter Project Pyambic-Pentameter

A vulnerability, which was classified as problematic, was found in katlings pyambic-pentameter.

8.8
2022-12-21 CVE-2021-4264 A vulnerability was found in LinkedIn dustjs up to 2.x and classified as problematic.
8.8
2022-12-21 CVE-2021-4268 A vulnerability, which was classified as problematic, was found in phpRedisAdmin up to 1.17.3.
8.8
2022-12-21 CVE-2022-4633 A vulnerability was found in Auto Upload Images up to 3.3.0 and classified as problematic.
8.8
2022-12-21 CVE-2022-4287 Authentication bypass in local application lock feature in Devolutions Remote Desktop Manager 2022.3.26 and earlier on Windows allows malicious user to access the application.
8.8
2022-12-21 CVE-2022-38065 Redhat Incorrect Permission Assignment for Critical Resource vulnerability in Redhat Openstack

A privilege escalation vulnerability exists in the oslo.privsep functionality of OpenStack git master 05194e7618 and prior.

8.8
2022-12-20 CVE-2022-46435 An issue in the firmware update process of TP-Link TL-WR941ND V2/V3 up to 3.13.9 and TL-WR941ND V4 up to 3.12.8 allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image.
8.8
2022-12-20 CVE-2022-46910 An issue in the firmware update process of TP-Link TL-WA901ND V1 up to v3.11.2 and TL-WA901N V2 up to v3.12.16 allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image.
8.8
2022-12-20 CVE-2022-46912 TP Link Unspecified vulnerability in Tp-Link Tl-Wr841N Firmware 0.9.14.16/0.9.14.18/3.13.9

An issue in the firmware update process of TP-Link TL-WR841N / TL-WA841ND V7 3.13.9 and earlier allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image.

8.8
2022-12-20 CVE-2022-46914 An issue in the firmware update process of TP-LINK TL-WA801N / TL-WA801ND V1 v3.12.16 and earlier allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image.
8.8
2022-12-20 CVE-2022-44643 A vulnerability in the label-based access control of Grafana Labs Grafana Enterprise Metrics allows an attacker more access than intended.
8.8
2022-12-20 CVE-2022-45942 A Remote Code Execution (RCE) vulnerability was found in includes/baijiacms/common.inc.php in baijiacms v4.
8.8
2022-12-19 CVE-2022-43443 Buffalo OS Command Injection vulnerability in Buffalo Wsr-3200Ax4B Firmware 1.25

Buffalo network devices WSR-3200AX4S firmware Ver.

8.8
2022-12-22 CVE-2022-46872 An attacker who compromised a content process could have partially escaped the sandbox to read arbitrary files via clipboard-related IPC messages.<br>*This bug only affects Thunderbird for Linux.
8.6
2022-12-20 CVE-2022-38733 OnCommand Insight versions 7.3.1 through 7.3.14 are susceptible to an authentication bypass vulnerability in the Data Warehouse component.
8.6
2022-12-19 CVE-2022-46403 Microchip Unspecified vulnerability in Microchip products

The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) mishandles reject messages.

8.6
2022-12-23 CVE-2022-41290 IBM Improper Privilege Management vulnerability in IBM AIX and Vios

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the rm_rlcache_file command to obtain root privileges.

8.4
2022-12-21 CVE-2022-36222 Nokia Use of Hard-coded Credentials vulnerability in Nokia Fastmile Firmware 3Tg00118Abad52

Nokia Fastmile 3tg00118abad52 devices shipped by Optus are shipped with a default hardcoded admin account of admin:Nq+L5st7o This account can be used locally to access the web admin interface.

8.4
2022-12-23 CVE-2022-47633 Kyverno Improper Authentication vulnerability in Kyverno 1.8.3/1.8.4

An image signature validation bypass vulnerability in Kyverno 1.8.3 and 1.8.4 allows a malicious image registry (or a man-in-the-middle attacker) to inject unsigned arbitrary container images into a protected Kubernetes cluster.

8.1
2022-12-23 CVE-2022-47943 Linux Out-of-bounds Read vulnerability in Linux Kernel

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2.

8.1
2022-12-23 CVE-2022-47940 An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.18 before 5.18.18.
8.1
2022-12-23 CVE-2022-4687 Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.0.
8.1
2022-12-23 CVE-2022-23539 Versions `<=8.5.1` of `jsonwebtoken` library could be misconfigured so that legacy, insecure key types are used for signature verification.
8.1
2022-12-22 CVE-2022-41981 Openimageio Project
Fedoraproject
Stack-based Buffer Overflow vulnerability in multiple products

A stack-based buffer overflow vulnerability exists in the TGA file format parser of OpenImageIO v2.3.19.0.

8.1
2022-12-22 CVE-2022-43597 Openimageio Project Heap-based Buffer Overflow vulnerability in Openimageio Project Openimageio 2.4.4.2

Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2.

8.1
2022-12-22 CVE-2022-43598 Openimageio Project Heap-based Buffer Overflow vulnerability in Openimageio Project Openimageio 2.4.4.2

Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2.

8.1
2022-12-22 CVE-2022-43599 Openimageio Project Heap-based Buffer Overflow vulnerability in Openimageio Project Openimageio 2.4.4.2

Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.

8.1
2022-12-22 CVE-2022-43600 Openimageio Project Heap-based Buffer Overflow vulnerability in Openimageio Project Openimageio 2.4.4.2

Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.

8.1
2022-12-22 CVE-2022-43601 Openimageio Project Heap-based Buffer Overflow vulnerability in Openimageio Project Openimageio 2.4.4.2

Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.

8.1
2022-12-22 CVE-2022-43602 Openimageio Project Heap-based Buffer Overflow vulnerability in Openimageio Project Openimageio 2.4.4.2

Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.

8.1
2022-12-22 CVE-2022-34469 When a TLS Certificate error occurs on a domain protected by the HSTS header, the browser should not allow the user to bypass the certificate error.
8.1
2022-12-22 CVE-2022-3033 If a Thunderbird user replied to a crafted HTML email containing a <code>meta</code> tag, with the <code>meta</code> tag having the <code>http-equiv="refresh"</code> attribute, and the content attribute specifying an URL, then Thunderbird started a network request to that URL, regardless of the configuration to block remote content.
8.1
2022-12-22 CVE-2022-42927 A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via <code>performance.getEntries()</code>.
8.1
2022-12-22 CVE-2022-45414 If a Thunderbird user quoted from an HTML email, for example by replying to the email, and the email contained either a VIDEO tag with the POSTER attribute or an OBJECT tag with a DATA attribute, a network request to the referenced remote URL was performed, regardless of a configuration to block remote content.
8.1
2022-12-20 CVE-2022-46423 An exploitable firmware modification vulnerability was discovered on the Netgear WNR2000v1 router.
8.1
2022-12-20 CVE-2022-46424 An exploitable firmware modification vulnerability was discovered on the Netgear XWN5001 Powerline 500 WiFi Access Point.
8.1
2022-12-25 CVE-2022-37706 enlightenment_sys in Enlightenment before 0.25.4 allows local users to gain privileges because it is setuid root, and the system library function mishandles pathnames that begin with a /dev/..
7.8
2022-12-25 CVE-2021-4278 A vulnerability classified as problematic has been found in cronvel tree-kit up to 0.6.x.
7.8
2022-12-24 CVE-2022-45798 Trendmicro Link Following vulnerability in Trendmicro Apex ONE 2019

A link following vulnerability in the Damage Cleanup Engine component of Trend Micro Apex One and Trend Micro Apex One as a Service could allow a local attacker to escalate privileges by creating a symbolic link and abusing the service to delete a file.

7.8
2022-12-22 CVE-2022-0517 Mozilla VPN can load an OpenSSL configuration file from an unsecured directory.
7.8
2022-12-22 CVE-2022-3155 When saving or opening an email attachment on macOS, Thunderbird did not set attribute com.apple.quarantine on the received file.
7.8
2022-12-22 CVE-2022-45415 When downloading an HTML file, if the title of the page was formatted as a filename with a malicious extension, Firefox may have saved the file with that extension, leading to possible system compromise if the downloaded file was later ran.
7.8
2022-12-22 CVE-2022-47896 In JetBrains IntelliJ IDEA before 2022.3.1 code Templates were vulnerable to SSTI attacks.
7.8
2022-12-21 CVE-2022-46334 Proofpoint Improper Privilege Management vulnerability in Proofpoint Enterprise Protection

Proofpoint Enterprise Protection (PPS/PoD) contains a vulnerability which allows the pps user to escalate to root privileges due to unnecessary permissions.

7.8
2022-12-21 CVE-2022-38060 Openstack Improper Privilege Management vulnerability in Openstack Kolla

A privilege escalation vulnerability exists in the sudo functionality of OpenStack Kolla git master 05194e7618.

7.8
2022-12-21 CVE-2022-46282 Use after free vulnerability in CX-Drive V3.00 and earlier allows a local attacker to execute arbitrary code by having a user to open a specially crafted file,
7.8
2022-12-21 CVE-2022-46330 Squirrel.Windows is both a toolset and a library that provides installation and update functionality for Windows desktop applications.
7.8
2022-12-20 CVE-2022-42046 wfshbr64.sys and wfshbr32.sys specially crafted IOCTL allows arbitrary user to perform local privilege escalation
7.8
2022-12-20 CVE-2022-4515 Exuberant Ctags Project
Debian
OS Command Injection vulnerability in multiple products

A flaw was found in Exuberant Ctags in the way it handles the "-o" option.

7.8
2022-12-20 CVE-2022-47577 Zohocorp Unspecified vulnerability in Zohocorp Manageengine Device Control Plus 10.1.2228.15

** DISPUTED ** An issue was discovered in the endpoint protection agent in Zoho ManageEngine Device Control Plus 10.1.2228.15.

7.8
2022-12-20 CVE-2022-47578 Zohocorp Unspecified vulnerability in Zohocorp Manageengine Device Control Plus 10.1.2228.15

** DISPUTED ** An issue was discovered in the endpoint protection agent in Zoho ManageEngine Device Control Plus 10.1.2228.15.

7.8
2022-12-19 CVE-2022-43289 Entropymine Out-of-bounds Write vulnerability in Entropymine Deark 1.6.2

Deark v.1.6.2 was discovered to contain a stack overflow via the do_prism_read_palette() function at /modules/atari-img.c.

7.8
2022-12-19 CVE-2022-42945 Autodesk Uncontrolled Search Path Element vulnerability in Autodesk DWG Trueview 2023

DWG TrueViewTM 2023 version has a DLL Search Order Hijacking vulnerability.

7.8
2022-12-19 CVE-2022-42947 Autodesk Out-of-bounds Write vulnerability in Autodesk Maya 2023

A maliciously crafted X_B file when parsed through Autodesk Maya 2023 can be used to write beyond the allocated buffer.

7.8
2022-12-19 CVE-2022-38659 In specific scenarios, on Windows the operator credentials may be encrypted in a manner that is not completely machine-dependent.
7.8
2022-12-19 CVE-2022-44750 IBM Out-of-bounds Write vulnerability in IBM Domino 9.0.1.10

HCL Domino is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView.

7.8
2022-12-19 CVE-2022-44751 IBM Out-of-bounds Write vulnerability in IBM Notes 10.0.1/9.0.1.10

HCL Notes is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView.

7.8
2022-12-19 CVE-2022-44752 IBM Out-of-bounds Write vulnerability in IBM Domino 9.0.1.10

HCL Domino is susceptible to a stack based buffer overflow vulnerability in wp6sr.dll in Micro Focus KeyView.

7.8
2022-12-19 CVE-2022-44753 IBM Out-of-bounds Write vulnerability in IBM Notes 10.0.1/9.0.1.10

HCL Notes is susceptible to a stack based buffer overflow vulnerability in wp6sr.dll in Micro Focus KeyView.

7.8
2022-12-19 CVE-2022-44754 IBM Out-of-bounds Write vulnerability in IBM Domino 9.0.1.10

HCL Domino is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView.

7.8
2022-12-19 CVE-2022-44755 IBM Out-of-bounds Write vulnerability in IBM Notes 10.0.1/9.0.1.10

HCL Notes is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView.

7.8
2022-12-23 CVE-2022-46171 Tauri Path Traversal vulnerability in Tauri 2.0.0

Tauri is a framework for building binaries for all major desktop platforms.

7.7
2022-12-22 CVE-2020-15679 An OAuth session fixation vulnerability existed in the VPN login flow, where an attacker could craft a custom login URL, convince a VPN user to login via that URL, and obtain authenticated access as that user.
7.6
2022-12-25 CVE-2022-41318 A buffer over-read was discovered in libntlmauth in Squid 2.5 through 5.6.
7.5
2022-12-25 CVE-2020-36629 A vulnerability classified as critical was found in SimbCo httpster.
7.5
2022-12-25 CVE-2022-42953 Zkteco Exposure of Resource to Wrong Sphere vulnerability in Zkteco products

Certain ZKTeco products (ZEM500-510-560-760, ZEM600-800, ZEM720, ZMM) allow access to sensitive information via direct requests for the form/DataApp?style=1 and form/DataApp?style=0 URLs.

7.5
2022-12-25 CVE-2022-44016 An issue was discovered in Simmeth Lieferantenmanager before 5.6.
7.5
2022-12-25 CVE-2022-44017 An issue was discovered in Simmeth Lieferantenmanager before 5.6.
7.5
2022-12-25 CVE-2022-45197 Slixmpp before 1.8.3 lacks SSL Certificate hostname validation in XMLStream, allowing an attacker to pose as any server in the eyes of Slixmpp.
7.5
2022-12-24 CVE-2022-38658 BigFix deployments that have installed the Notification Service on Windows are susceptible to disclosing SMTP BigFix operator's sensitive data in clear text.
7.5
2022-12-23 CVE-2022-28229 The hash functionality in userver before 42059b6319661583b3080cab9b595d4f8ac48128 allows attackers to cause a denial of service via crafted HTTP request, involving collisions.
7.5
2022-12-23 CVE-2022-23854 Aveva Relative Path Traversal vulnerability in Aveva Intouch Access Anywhere 2020

AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server.

7.5
2022-12-23 CVE-2022-47941 Linux Memory Leak vulnerability in Linux Kernel

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2.

7.5
2022-12-23 CVE-2022-43551 Haxx
Fedoraproject
Cleartext Transmission of Sensitive Information vulnerability in multiple products

A vulnerability exists in curl <7.87.0 HSTS check that could be bypassed to trick it to keep using HTTP.

7.5
2022-12-23 CVE-2022-33324 Mitsubishi Improper Resource Shutdown or Release vulnerability in Mitsubishi products

Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R Series R00/01/02CPU Firmware versions "32" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120(EN)CPU Firmware versions "65" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R08/16/32/120SFCPU all versions, Mitsubishi Electric Corporation MELSEC iQ-R Series R12CCPU-V all versions, Mitsubishi Electric Corporation MELSEC iQ-L Series L04/08/16/32HCPU all versions and Mitsubishi Electric Corporation MELIPC Series MI5122-VW all versions allows a remote unauthenticated attacker to cause a Denial of Service condition in Ethernet communication on the module by sending specially crafted packets.

7.5
2022-12-23 CVE-2022-40898 An issue discovered in Python Packaging Authority (PyPA) Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli.
7.5
2022-12-23 CVE-2022-40899 Pythoncharmers Unspecified vulnerability in Pythoncharmers Python-Future

An issue discovered in Python Charmers Future 0.18.2 and earlier allows remote attackers to cause a denial of service via crafted Set-Cookie header from malicious web server.

7.5
2022-12-22 CVE-2022-22184 Juniper Improper Input Validation vulnerability in Juniper Junos and Junos OS Evolved

An Improper Input Validation vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker to cause a Denial of Service (DoS).

7.5
2022-12-22 CVE-2022-41988 Openimageio Project
Fedoraproject
Out-of-bounds Read vulnerability in multiple products

An information disclosure vulnerability exists in the OpenImageIO::decode_iptc_iim() functionality of OpenImageIO Project OpenImageIO v2.3.19.0.

7.5
2022-12-22 CVE-2022-41999 Openimageio Project
Fedoraproject
NULL Pointer Dereference vulnerability in multiple products

A denial of service vulnerability exists in the DDS native tile reading functionality of OpenImageIO Project OpenImageIO v2.3.19.0 and v2.4.4.2.

7.5
2022-12-22 CVE-2020-26302 is.js is a general-purpose check library.
7.5
2022-12-22 CVE-2022-3805 The Jeg Elementor Kit plugin for WordPress is vulnerable to authorization bypass in various functions used to update the plugin settings in versions up to, and including, 2.5.6.
7.5
2022-12-22 CVE-2022-22461 IBM Use of a Broken or Risky Cryptographic Algorithm vulnerability in IBM Security Verify Governance 10.0.1

IBM Security Verify Governance, Identity Manager 10.0.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

7.5
2022-12-22 CVE-2022-22737 Constructing audio sinks could have lead to a race condition when playing audio files and closing windows.
7.5
2022-12-22 CVE-2022-22741 When resizing a popup while requesting fullscreen access, the popup would have become unable to leave fullscreen mode.
7.5
2022-12-22 CVE-2022-26387 When installing an add-on, Firefox verified the signature before prompting the user; but while the user was confirming the prompt, the underlying add-on file could have been modified and Firefox would not have noticed.
7.5
2022-12-22 CVE-2022-34477 The MediaError message property should be consistent to avoid leaking information about cross-origin resources; however for a same-site cross-origin resource, the message could have leaked information enabling XS-Leaks attacks.
7.5
2022-12-22 CVE-2022-36319 When combining CSS properties for overflow and transform, the mouse cursor could interact with different coordinates than displayed.
7.5
2022-12-22 CVE-2022-38476 A data race could occur in the <code>PK11_ChangePW</code> function, potentially leading to a use-after-free vulnerability.
7.5
2022-12-22 CVE-2022-45407 If an attacker loaded a font using <code>FontFace()</code> on a background worker, a use-after-free could have occurred, leading to a potentially exploitable crash.
7.5
2022-12-22 CVE-2022-23556 CodeIgniter is a PHP full-stack web framework.
7.5
2022-12-22 CVE-2022-47895 In JetBrains IntelliJ IDEA before 2022.3.1 the "Validate JSP File" action used the HTTP protocol to download required JAR files.
7.5
2022-12-21 CVE-2022-3186 Dataprobe iBoot-PDU FW versions prior to 1.42.06162022 contain a vulnerability where the affected product allows an attacker to access the device’s main management page from the cloud.
7.5
2022-12-21 CVE-2020-36620 A vulnerability was found in Brondahl EnumStringValues up to 4.0.0.
7.5
2022-12-21 CVE-2022-47581 Isode M-Vault 16.0v0 through 17.x before 17.0v24 can crash upon an LDAP v1 bind request.
7.5
2022-12-21 CVE-2022-25895 Lite DEV Server Project Path Traversal vulnerability in Lite-Dev-Server Project Lite-Dev-Server

All versions of package lite-dev-server are vulnerable to Directory Traversal due to missing input sanitization and sandboxes being employed to the req.url user input that is passed to the server code.

7.5
2022-12-21 CVE-2022-42949 Silverstripe silverstripe/subsites through 2.6.0 has Insecure Permissions.
7.5
2022-12-20 CVE-2021-46856 Huawei Path Traversal vulnerability in Huawei Emui and Harmonyos

The multi-screen collaboration module has a path traversal vulnerability.

7.5
2022-12-20 CVE-2022-38391 IBM Use of a Broken or Risky Cryptographic Algorithm vulnerability in IBM Spectrum Control 5.4.0.0

IBM Spectrum Control 5.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

7.5
2022-12-20 CVE-2022-41591 Huawei Path Traversal vulnerability in Huawei Emui and Harmonyos

The backup module has a path traversal vulnerability.

7.5
2022-12-20 CVE-2022-41596 Huawei Deserialization of Untrusted Data vulnerability in Huawei Emui 11.0.1/12.0.0/12.0.1

The system tool has inconsistent serialization and deserialization.

7.5
2022-12-20 CVE-2022-41599 Huawei Unspecified vulnerability in Huawei Emui 11.0.1/12.0.0/12.0.1

The system service has a vulnerability that causes incorrect return values.

7.5
2022-12-20 CVE-2022-46310 The TelephonyProvider module has a vulnerability in obtaining values.Successful exploitation of this vulnerability may affect data confidentiality.
7.5
2022-12-20 CVE-2022-46311 Huawei Use After Free vulnerability in Huawei Harmonyos

The contacts component has a free (undefined) provider vulnerability.

7.5
2022-12-20 CVE-2022-46312 Huawei Unspecified vulnerability in Huawei Emui 11.0.1/12.0.0/12.0.1

The application management module has a vulnerability in permission verification.

7.5
2022-12-20 CVE-2022-46314 The IPC module has defects introduced in the design process.
7.5
2022-12-20 CVE-2022-46315 The ProfileSDK has defects introduced in the design process.
7.5
2022-12-20 CVE-2022-46317 Huawei Out-of-bounds Read vulnerability in Huawei Emui 11.0.1/12.0.0/12.0.1

The power consumption module has an out-of-bounds read vulnerability.

7.5
2022-12-20 CVE-2022-46321 Huawei Unspecified vulnerability in Huawei Emui 11.0.1/12.0.0/12.0.1

The Wi-Fi module has a vulnerability in permission verification.

7.5
2022-12-20 CVE-2022-46322 Huawei Out-of-bounds Write vulnerability in Huawei Emui and Harmonyos

Some smartphones have the out-of-bounds write vulnerability.

7.5
2022-12-20 CVE-2022-46328 Huawei Improper Input Validation vulnerability in Huawei Emui 12.0.0

Some smartphones have the input validation vulnerability.

7.5
2022-12-20 CVE-2022-38873 Dlink Unspecified vulnerability in Dlink Dap-2695 Firmware and Dap-3320 Firmware

D-Link devices DAP-2310 v2.10rc036 and earlier, DAP-2330 v1.06rc020 and earlier, DAP-2360 v2.10rc050 and earlier, DAP-2553 v3.10rc031 and earlier, DAP-2660 v1.15rc093 and earlier, DAP-2690 v3.20rc106 and earlier, DAP-2695 v1.20rc119_beta31 and earlier, DAP-3320 v1.05rc027 beta and earlier, DAP-3662 v1.05rc047 and earlier allows attackers to cause a Denial of Service (DoS) via uploading a crafted firmware after modifying the firmware header.

7.5
2022-12-20 CVE-2022-46432 An exploitable firmware modification vulnerability was discovered on TP-Link TL-WR743ND V1.
7.5
2022-12-20 CVE-2022-46434 An issue in the firmware update process of TP-Link TL-WA7510N v1 v3.12.6 and earlier allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image.
7.5
2022-12-20 CVE-2022-46076 Dlink Incorrect Authorization vulnerability in Dlink Dir-869 Firmware and Dir-869Ax Firmware

D-Link DIR-869 DIR869Ax_FW102B15 is vulnerable to Authentication Bypass via phpcgi.

7.5
2022-12-20 CVE-2022-45665 Tenda Classic Buffer Overflow vulnerability in Tenda I22 Firmware 1.0.0.3(4687)

Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the funcpara1 parameter in the formSetCfm function.

7.5
2022-12-20 CVE-2022-45666 Tenda Classic Buffer Overflow vulnerability in Tenda I22 Firmware 1.0.0.3(4687)

Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the list parameter in the formwrlSSIDset function.

7.5
2022-12-20 CVE-2022-46530 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the mac parameter at /goform/GetParentControlInfo.

7.5
2022-12-20 CVE-2022-46531 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the deviceId parameter at /goform/addWifiMacFilter.

7.5
2022-12-20 CVE-2022-46532 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the deviceMac parameter at /goform/addWifiMacFilter.

7.5
2022-12-20 CVE-2022-46533 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the limitSpeed parameter at /goform/SetClientState.

7.5
2022-12-20 CVE-2022-46534 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the speed_dir parameter at /goform/SetSpeedWan.

7.5
2022-12-20 CVE-2022-46535 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the deviceId parameter at /goform/SetClientState.

7.5
2022-12-20 CVE-2022-46536 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the limitSpeedUp parameter at /goform/SetClientState.

7.5
2022-12-20 CVE-2022-46537 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the security parameter at /goform/WifiBasicSet.

7.5
2022-12-20 CVE-2022-46539 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the security_5g parameter at /goform/WifiBasicSet.

7.5
2022-12-20 CVE-2022-46540 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the entrys parameter at /goform/addressNat.

7.5
2022-12-20 CVE-2022-46541 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the ssid parameter at /goform/fast_setting_wifi_set.

7.5
2022-12-20 CVE-2022-46542 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/addressNat.

7.5
2022-12-20 CVE-2022-46543 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the mitInterface parameter at /goform/addressNat.

7.5
2022-12-20 CVE-2022-46544 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the cmdinput parameter at /goform/exeCommand.

7.5
2022-12-20 CVE-2022-46545 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/NatStaticSetting.

7.5
2022-12-20 CVE-2022-46546 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the entrys parameter at /goform/RouteStatic.

7.5
2022-12-20 CVE-2022-46547 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/VirtualSer.

7.5
2022-12-20 CVE-2022-46548 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/DhcpListClient.

7.5
2022-12-20 CVE-2022-46549 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the deviceId parameter at /goform/saveParentControlInfo.

7.5
2022-12-20 CVE-2022-46550 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the urls parameter at /goform/saveParentControlInfo.

7.5
2022-12-20 CVE-2022-46551 Tenda Classic Buffer Overflow vulnerability in Tenda F1203 Firmware 2.0.1.6

Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the time parameter at /goform/saveParentControlInfo.

7.5
2022-12-20 CVE-2022-25931 Easy Static Server Project Path Traversal vulnerability in Easy-Static-Server Project Easy-Static-Server

All versions of package easy-static-server are vulnerable to Directory Traversal due to missing input sanitization and sandboxes being employed to the req.url user input that is passed to the server code.

7.5
2022-12-20 CVE-2022-25940 Lite Server Project Unspecified vulnerability in Lite-Server Project Lite-Server

All versions of package lite-server are vulnerable to Denial of Service (DoS) when an attacker sends an HTTP request and includes control characters that the decodeURI() function is unable to parse.

7.5
2022-12-19 CVE-2022-3752 An unauthorized user could use a specially crafted sequence of Ethernet/IP messages, combined with heavy traffic loading to cause a denial-of-service condition in Rockwell Automation Logix controllers resulting in a major non-recoverable fault.
7.5
2022-12-19 CVE-2022-46399 Microchip Incorrect Authorization vulnerability in Microchip products

The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) is unresponsive with ConReqTimeoutZero.

7.5
2022-12-19 CVE-2022-43883 IBM Injection vulnerability in IBM Cognos Analytics

IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could be vulnerable to a Log Injection attack by constructing URLs from user-controlled data.

7.5
2022-12-19 CVE-2022-45041 SQL Injection exits in xinhu < 2.5.0
7.5
2022-12-19 CVE-2021-4258 ** DISPUTED ** A vulnerability was found in whohas.
7.5
2022-12-19 CVE-2022-4061 The JobBoardWP WordPress plugin before 1.2.2 does not properly validate file names and types in its file upload functionalities, allowing unauthenticated users to upload arbitrary files such as PHP.
7.5
2022-12-19 CVE-2022-4106 The Wholesale Market for WooCommerce WordPress plugin before 1.0.7 does not have authorisation check, as well as does not validate user input used to generate system path, allowing unauthenticated attackers to download arbitrary file from the server.
7.5
2022-12-19 CVE-2022-32749 Improper Check for Unusual or Exceptional Conditions vulnerability handling requests in Apache Traffic Server allows an attacker to crash the server under certain conditions.
7.5
2022-12-19 CVE-2022-3875 Clickstudios Authentication Bypass by Assumed-Immutable Data vulnerability in Clickstudios Passwordstate

A vulnerability classified as critical was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome.

7.5
2022-12-19 CVE-2016-20018 Knex Knex.js through 2.3.0 has a limited SQL injection vulnerability that can be exploited to ignore the WHERE clause of a SQL query.
7.5
2022-12-25 CVE-2022-45889 Planet eStream before 6.72.10.07 allows a remote attacker (who is a publisher or admin) to obtain access to all records stored in the database, and achieve the ability to execute arbitrary SQL commands, via Search (the StatisticsResults.aspx flt parameter).
7.2
2022-12-23 CVE-2022-46560 Dlink Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 1.30B06

D-Link DIR-882 DIR882A1_FW130B06 was discovered to contain a stack overflow via the Password parameter in the SetWan2Settings module.

7.2
2022-12-23 CVE-2022-46561 Dlink Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 1.30B06

D-Link DIR-882 DIR882A1_FW130B06 was discovered to contain a stack overflow via the Password parameter in the SetWanSettings module.

7.2
2022-12-23 CVE-2022-46562 Dlink Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 1.30B06

D-Link DIR-882 DIR882A1_FW130B06 was discovered to contain a stack overflow via the PSK parameter in the SetQuickVPNSettings module.

7.2
2022-12-23 CVE-2022-46563 Dlink Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 1.30B06

D-Link DIR-882 DIR882A1_FW130B06 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module.

7.2
2022-12-23 CVE-2022-46566 Dlink Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 1.30B06

D-Link DIR-882 DIR882A1_FW130B06 was discovered to contain a stack overflow via the Password parameter in the SetQuickVPNSettings module.

7.2
2022-12-23 CVE-2022-46568 Dlink Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 1.30B06

D-Link DIR-882 DIR882A1_FW130B06 was discovered to contain a stack overflow via the AccountPassword parameter in the SetSysEmailSettings module.

7.2
2022-12-23 CVE-2022-46569 Dlink Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 1.30B06

D-Link DIR-882 DIR882A1_FW130B06 was discovered to contain a stack overflow via the Key parameter in the SetWLanRadioSecurity module.

7.2
2022-12-23 CVE-2022-46570 Dlink Out-of-bounds Write vulnerability in Dlink Dir-882 A1 Firmware 1.30B06

D-Link DIR-882 DIR882A1_FW130B06 was discovered to contain a stack overflow via the Password parameter in the SetWan3Settings module.

7.2
2022-12-23 CVE-2022-38757 Microfocus Improper Privilege Management vulnerability in Microfocus Zenworks 2020

A vulnerability has been identified in Micro Focus ZENworks 2020 Update 3a and prior versions.

7.2
2022-12-19 CVE-2022-41418 Blogengine Path Traversal vulnerability in Blogengine Blogengine.Net 3.3.8.0

An issue in the component BlogEngine/BlogEngine.NET/AppCode/Api/UploadController.cs of BlogEngine.NET v3.3.8.0 allows attackers to execute arbitrary code via uploading a crafted PNG file.

7.2
2022-12-22 CVE-2022-22753 Mozilla Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Mozilla Firefox

A Time-of-Check Time-of-Use bug existed in the Maintenance (Updater) Service that could be abused to grant Users write access to an arbitrary directory.

7.1
2022-12-22 CVE-2022-42930 If two Workers were simultaneously initializing their CacheStorage, a data race could have occurred in the <code>ThirdPartyUtil</code> component.
7.1
2022-12-19 CVE-2022-3775 GNU
Redhat
Out-of-bounds Write vulnerability in multiple products

When rendering certain unicode sequences, grub2's font code doesn't proper validate if the informed glyph's width and height is constrained within bitmap size.

7.1
2022-12-19 CVE-2022-42946 Autodesk Out-of-bounds Read vulnerability in Autodesk Maya 2023

Parsing a maliciously crafted X_B and PRT file can force Autodesk Maya 2023 to read beyond allocated buffer.

7.1
2022-12-22 CVE-2022-22736 If Firefox was installed to a world-writable directory, a local privilege escalation could occur when Firefox searched the current directory for system libraries.
7.0

283 Medium Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2022-12-19 CVE-2022-40607 IBM Spectrum Scale 5.1 could allow users with permissions to create pod, persistent volume and persistent volume claim to access files and directories outside of the volume, including on the host filesystem.
6.8
2022-12-19 CVE-2022-43466 Buffalo OS Command Injection vulnerability in Buffalo Wsr-3200Ax4B Firmware 1.25

Buffalo network devices WSR-3200AX4S firmware Ver.

6.8
2022-12-19 CVE-2022-43486 Buffalo Unspecified vulnerability in Buffalo Wsr-3200Ax4B Firmware 1.25

Hidden functionality vulnerability in Buffalo network devices WSR-3200AX4S firmware Ver.

6.8
2022-12-22 CVE-2021-36631 Untrusted search path vulnerability in Baidunetdisk Version 7.4.3 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
6.7
2022-12-21 CVE-2022-46662 Corel Unquoted Search Path or Element vulnerability in Corel Roxio Creator LJB 12.2

Roxio Creator LJB starts another program with an unquoted file path.

6.7
2022-12-25 CVE-2021-4280 A vulnerability was found in styler_praat_scripts.
6.5
2022-12-25 CVE-2022-4741 A vulnerability was found in docconv up to 1.2.0 and classified as problematic.
6.5
2022-12-25 CVE-2022-41317 An issue was discovered in Squid 4.9 through 4.17 and 5.0.6 through 5.6.
6.5
2022-12-25 CVE-2022-44014 An issue was discovered in Simmeth Lieferantenmanager before 5.6.
6.5
2022-12-25 CVE-2022-45894 GetFile.aspx in Planet eStream before 6.72.10.07 allows ..\ directory traversal to read arbitrary local files.
6.5
2022-12-25 CVE-2022-45895 Planet eStream before 6.72.10.07 discloses sensitive information, related to the ON cookie (findable in HTML source code for Default.aspx in some situations) and the WhoAmI endpoint (e.g., path disclosure).
6.5
2022-12-24 CVE-2022-47932 Brave Browser before 1.43.34 allowed a remote attacker to cause a denial of service via a crafted HTML file that mentions an ipfs:// or ipns:// URL.
6.5
2022-12-24 CVE-2022-47933 Brave Browser before 1.42.51 allowed a remote attacker to cause a denial of service via a crafted HTML file that references the IPFS scheme.
6.5
2022-12-24 CVE-2022-47934 Brave Browser before 1.43.88 allowed a remote attacker to cause a denial of service in private and guest windows via a crafted HTML file that mentions an ipfs:// or ipns:// URL.
6.5
2022-12-23 CVE-2022-47938 Linux Out-of-bounds Read vulnerability in Linux Kernel

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2.

6.5
2022-12-23 CVE-2022-4683 Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository usememos/memos prior to 0.9.0.
6.5
2022-12-23 CVE-2022-46492 Nbnbk Project Path Traversal vulnerability in Nbnbk Project Nbnbk

nbnbk commit 879858451d53261d10f77d4709aee2d01c72c301 was discovered to contain an arbitrary file read vulnerability via the component /api/Index/getFileBinary.

6.5
2022-12-22 CVE-2022-46491 Nbnbk Project Cross-Site Request Forgery (CSRF) vulnerability in Nbnbk Project Nbnbk

A Cross-Site Request Forgery (CSRF) vulnerability in the Add Administrator function of the default version of nbnbk allows attackers to arbitrarily add Administrator accounts.

6.5
2022-12-22 CVE-2022-22458 IBM Insufficiently Protected Credentials vulnerability in IBM Security Verify Governance 10.0.1

IBM Security Verify Governance, Identity Manager 10.0.1 stores user credentials in plain clear text which can be read by a remote authenticated user.

6.5
2022-12-22 CVE-2021-4126 When receiving an OpenPGP/MIME signed email message that contains an additional outer MIME message layer, for example a message footer added by a mailing list gateway, Thunderbird only considered the inner signed message for the signature validity.
6.5
2022-12-22 CVE-2021-4128 Mozilla Use After Free vulnerability in Mozilla Firefox

When transitioning in and out of fullscreen mode, a graphics object was not correctly protected; resulting in memory corruption and a potentially exploitable crash.<br>*This bug only affects Firefox on MacOS.

6.5
2022-12-22 CVE-2022-1097 <code>NSSToken</code> objects were referenced via direct points, and could have been accessed in an unsafe way on different threads, leading to a use-after-free and potentially exploitable crash.
6.5
2022-12-22 CVE-2022-1196 After a VR Process is destroyed, a reference to it may have been retained and used, leading to a use-after-free and potentially exploitable crash.
6.5
2022-12-22 CVE-2022-1834 When displaying the sender of an email, and the sender name contained the Braille Pattern Blank space character multiple times, Thunderbird would have displayed all the spaces.
6.5
2022-12-22 CVE-2022-22739 Malicious websites could have tricked users into accepting launching a program to handle an external URL protocol.
6.5
2022-12-22 CVE-2022-22742 When inserting text while in edit mode, some characters might have lead to out-of-bounds memory access causing a potentially exploitable crash.
6.5
2022-12-22 CVE-2022-22745 Securitypolicyviolation events could have leaked cross-origin information for frame-ancestors violations.
6.5
2022-12-22 CVE-2022-22747 After accepting an untrusted certificate, handling an empty pkcs7 sequence as part of the certificate data could have lead to a crash.
6.5
2022-12-22 CVE-2022-22748 Malicious websites could have confused Firefox into showing the wrong origin when asking to launch a program and handling an external URL protocol.
6.5
2022-12-22 CVE-2022-22750 By generally accepting and passing resource handles across processes, a compromised content process might have confused higher privileged processes to interact with handles that the unprivileged process should not have access to.<br>*This bug only affects Firefox for Windows and MacOS.
6.5
2022-12-22 CVE-2022-22754 Mozilla Incorrect Authorization vulnerability in Mozilla Firefox

If a user installed an extension of a particular type, the extension could have auto-updated itself and while doing so, bypass the prompt which grants the new version the new requested permissions.

6.5
2022-12-22 CVE-2022-22757 Mozilla Improper Input Validation vulnerability in Mozilla Firefox

Remote Agent, used in WebDriver, did not validate the Host or Origin headers.

6.5
2022-12-22 CVE-2022-22760 Mozilla Information Exposure Through an Error Message vulnerability in Mozilla Firefox

When importing resources using Web Workers, error messages would distinguish the difference between <code>application/javascript</code> responses and non-script responses.

6.5
2022-12-22 CVE-2022-26385 In unusual circumstances, an individual thread may outlive the thread's manager during shutdown.
6.5
2022-12-22 CVE-2022-26386 Mozilla Unspecified vulnerability in Mozilla Firefox ESR

Previously Firefox for macOS and Linux would download temporary files to a user-specific directory in <code>/tmp</code>, but this behavior was changed to download them to <code>/tmp</code> where they could be affected by other local users.

6.5
2022-12-22 CVE-2022-28282 By using a link with <code>rel="localization"</code> a use-after-free could have been triggered by destroying an object during JavaScript execution and then referencing the object through a freed pointer, leading to a potential exploitable crash.
6.5
2022-12-22 CVE-2022-28283 The sourceMapURL feature in devtools was missing security checks that would have allowed a webpage to attempt to include local files or other files that should have been inaccessible.
6.5
2022-12-22 CVE-2022-28285 When generating the assembly code for <code>MLoadTypedArrayElementHole</code>, an incorrect AliasSet was used.
6.5
2022-12-22 CVE-2022-28287 In unusual circumstances, selecting text could cause text selection caching to behave incorrectly, leading to a crash.
6.5
2022-12-22 CVE-2022-29913 The parent process would not properly check whether the Speech Synthesis feature is enabled, when receiving instructions from a child process.
6.5
2022-12-22 CVE-2022-29914 When reusing existing popups Firefox would have allowed them to cover the fullscreen notification UI, which could have enabled browser spoofing attacks.
6.5
2022-12-22 CVE-2022-29916 Firefox behaved slightly differently for already known resources when loading CSS resources involving CSS variables.
6.5
2022-12-22 CVE-2022-2226 Mozilla Authentication Bypass by Capture-replay vulnerability in Mozilla Thunderbird 101.0

An OpenPGP digital signature includes information about the date when the signature was created.

6.5
2022-12-22 CVE-2022-31738 When exiting fullscreen mode, an iframe could have confused the browser about the current state of fullscreen, resulting in potential user confusion or spoofing attacks.
6.5
2022-12-22 CVE-2022-31742 An attacker could have exploited a timing attack by sending a large number of allowCredential entries and detecting the difference between invalid key handles and cross-origin key handles.
6.5
2022-12-22 CVE-2022-31743 Firefox's HTML parser did not correctly interpret HTML comment tags, resulting in an incongruity with other browsers.
6.5
2022-12-22 CVE-2022-31744 An attacker could have injected CSS into stylesheets accessible via internal URIs, such as resource:, and in doing so bypass a page's Content Security Policy.
6.5
2022-12-22 CVE-2022-31746 Internal URLs are protected by a secret UUID key, which could have been leaked to web page through the Referrer header.
6.5
2022-12-22 CVE-2022-34471 When downloading an update for an addon, the downloaded addon update's version was not verified to match the version selected from the manifest.
6.5
2022-12-22 CVE-2022-34478 The <code>ms-msdt</code>, <code>search</code>, and <code>search-ms</code> protocols deliver content to Microsoft applications, bypassing the browser, when a user accepts a prompt.
6.5
2022-12-22 CVE-2022-34479 A malicious website that could create a popup could have resized the popup to overlay the address bar with its own content, resulting in potential user confusion or spoofing attacks.
6.5
2022-12-22 CVE-2022-36317 When visiting a website with an overly long URL, the user interface would start to hang.
6.5
2022-12-22 CVE-2022-38472 An attacker could have abused XSLT error handling to associate attacker-controlled content with another origin which was displayed in the address bar.
6.5
2022-12-22 CVE-2022-38475 An attacker could have written a value to the first element in a zero-length JavaScript array.
6.5
2022-12-22 CVE-2022-3032 When receiving an HTML email that contained an <code>iframe</code> element, which used a <code>srcdoc</code> attribute to define the inner HTML document, remote objects specified in the nested document, for example images or videos, were not blocked.
6.5
2022-12-22 CVE-2022-40957 Inconsistent data in instruction and data cache when creating wasm code could lead to a potentially exploitable crash.<br>*This bug only affects Firefox on ARM64 platforms.*.
6.5
2022-12-22 CVE-2022-40958 By injecting a cookie with certain special characters, an attacker on a shared subdomain which is not a secure context could set and thus overwrite cookies from a secure context, leading to session fixation and other attacks.
6.5
2022-12-22 CVE-2022-40959 During iframe navigation, certain pages did not have their FeaturePolicy fully initialized leading to a bypass that leaked device permissions into untrusted subdocuments.
6.5
2022-12-22 CVE-2022-40960 Concurrent use of the URL parser with non-UTF-8 data was not thread-safe.
6.5
2022-12-22 CVE-2022-40961 During startup, a graphics driver with an unexpected name could lead to a stack-buffer overflow causing a potentially exploitable crash.<br>*This issue only affects Firefox for Android.
6.5
2022-12-22 CVE-2022-42929 If a website called <code>window.print()</code> in a particular way, it could cause a denial of service of the browser, which may persist beyond browser restart depending on the user's session restore settings.
6.5
2022-12-22 CVE-2022-45403 Service Workers should not be able to infer information about opaque cross-origin responses; but timing information for cross-origin media combined with Range requests might have allowed them to determine the presence or length of a media file.
6.5
2022-12-22 CVE-2022-45404 Through a series of popup and <code>window.print()</code> calls, an attacker can cause a window to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks.
6.5
2022-12-22 CVE-2022-45405 Freeing arbitrary <code>nsIInputStream</code>'s on a different thread than creation could have led to a use-after-free and potentially exploitable crash.
6.5
2022-12-22 CVE-2022-45408 Through a series of popups that reuse windowName, an attacker can cause a window to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks.
6.5
2022-12-22 CVE-2022-45410 When a ServiceWorker intercepted a request with <code>FetchEvent</code>, the origin of the request was lost after the ServiceWorker took ownership of it.
6.5
2022-12-22 CVE-2022-45416 Keyboard events reference strings like "KeyA" that were at fixed, known, and widely-spread addresses.
6.5
2022-12-22 CVE-2022-45419 If the user added a security exception for an invalid TLS certificate, opened an ongoing TLS connection with a server that used that certificate, and then deleted the exception, Firefox would have kept the connection alive, making it seem like the certificate was still trusted.
6.5
2022-12-22 CVE-2022-45420 Use tables inside of an iframe, an attacker could have caused iframe contents to be rendered outside the boundaries of the iframe, resulting in potential user confusion or spoofing attacks.
6.5
2022-12-22 CVE-2022-46875 The executable file warning was not presented when downloading .atloc and .ftploc files, which can run commands on a user's computer.
6.5
2022-12-22 CVE-2022-46880 A missing check related to tex units could have led to a use-after-free and potentially exploitable crash.<br />*Note*: This advisory was added on December 13th, 2022 after we better understood the impact of the issue.
6.5
2022-12-22 CVE-2022-4646 Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.5.4.
6.5
2022-12-21 CVE-2020-36622 A vulnerability was found in sah-comp bienlein and classified as problematic.
6.5
2022-12-21 CVE-2020-36623 A vulnerability was found in Pengu.
6.5
2022-12-21 CVE-2022-36221 Nokia Path Traversal vulnerability in Nokia Fastmile Firmware 3Tg00118Abad52

Nokia Fastmile 3tg00118abad52 is affected by an authenticated path traversal vulnerability which allows attackers to read any named pipe file on the system.

6.5
2022-12-21 CVE-2022-44756 Insights for Vulnerability Remediation (IVR) is vulnerable to improper input validation.
6.5
2022-12-20 CVE-2022-46139 TP-Link TL-WR940N V4 3.16.9 and earlier allows authenticated attackers to cause a Denial of Service (DoS) via uploading a crafted firmware image during the firmware update process.
6.5
2022-12-20 CVE-2022-47551 Apiman 1.5.7 through 2.2.3.Final has insufficient checks for read permissions within the Apiman Manager REST API.
6.5
2022-12-19 CVE-2022-46402 Microchip Improper Validation of Integrity Check Value vulnerability in Microchip products

The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) accepts PairCon_rmSend with incorrect values.

6.5
2022-12-19 CVE-2022-23536 Linuxfoundation Unspecified vulnerability in Linuxfoundation Cortex 1.13.0/1.13.1/1.14.0

Cortex provides multi-tenant, long term storage for Prometheus.

6.5
2022-12-19 CVE-2022-4612 Clickstudios Insufficiently Protected Credentials vulnerability in Clickstudios Passwordstate 9.5/9.5.8.4

A vulnerability has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome and classified as problematic.

6.5
2022-12-19 CVE-2022-4613 Clickstudios Incorrect Authorization vulnerability in Clickstudios Passwordstate 9.5/9.5.8.4

A vulnerability was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome and classified as critical.

6.5
2022-12-19 CVE-2022-3961 The Directorist WordPress plugin before 7.4.4 does not prevent users with low privileges (like subscribers) from accessing sensitive system information.
6.5
2022-12-19 CVE-2022-4024 The Registration Forms WordPress plugin before 3.8.1.3 does not have authorisation and CSRF when deleting users via an init action handler, allowing unauthenticated attackers to delete arbitrary users (along with their posts)
6.5
2022-12-19 CVE-2022-4107 The SMSA Shipping for WooCommerce WordPress plugin before 1.0.5 does not have authorisation and proper CSRF checks, as well as does not validate the file to be downloaded, allowing any authenticated users, such as subscriber to download arbitrary file from the server
6.5
2022-12-19 CVE-2022-3876 Clickstudios Authorization Bypass Through User-Controlled Key vulnerability in Clickstudios Passwordstate

A vulnerability, which was classified as problematic, has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome.

6.5
2022-12-19 CVE-2022-42453 There are insufficient warnings when a Fixlet is imported by a user.
6.5
2022-12-19 CVE-2022-47549 An unprotected memory-access operation in optee_os in TrustedFirmware Open Portable Trusted Execution Environment (OP-TEE) before 3.20 allows a physically proximate adversary to bypass signature verification and install malicious trusted applications via electromagnetic fault injections.
6.4
2022-12-23 CVE-2022-39164 IBM Unspecified vulnerability in IBM AIX and Vios

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service.

6.2
2022-12-23 CVE-2022-43848 IBM Unspecified vulnerability in IBM AIX and Vios

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX perfstat kernel extension to cause a denial of service.

6.2
2022-12-23 CVE-2022-43849 IBM Unspecified vulnerability in IBM AIX and Vios

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX pfcdd kernel extension to cause a denial of service.

6.2
2022-12-23 CVE-2022-39165 IBM Unspecified vulnerability in IBM AIX and Vios

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service.

6.2
2022-12-23 CVE-2022-40233 IBM Unspecified vulnerability in IBM AIX and Vios

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX TCP/IP kernel extension to cause a denial of service.

6.2
2022-12-23 CVE-2022-43380 IBM Unspecified vulnerability in IBM AIX and Vios

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel extension to cause a denial of service.

6.2
2022-12-23 CVE-2022-43381 IBM Unspecified vulnerability in IBM AIX and Vios

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX SMB client to cause a denial of service.

6.2
2022-12-25 CVE-2022-4736 Venganzasdelpasado Cross-site Scripting vulnerability in Venganzasdelpasado Venganzas DEL Pasado

A vulnerability was found in Venganzas del Pasado and classified as problematic.

6.1
2022-12-25 CVE-2022-4738 Blood Bank Management System Project Cross-site Scripting vulnerability in Blood Bank Management System Project Blood Bank Management System 1.0

A vulnerability classified as problematic has been found in SourceCodester Blood Bank Management System 1.0.

6.1
2022-12-25 CVE-2022-4740 Keking Cross-site Scripting vulnerability in Keking Kkfileview

A vulnerability, which was classified as problematic, has been found in kkFileView.

6.1
2022-12-25 CVE-2019-25084 A vulnerability, which was classified as problematic, has been found in Hide Files on GitHub up to 2.x.
6.1
2022-12-25 CVE-2022-4735 A vulnerability classified as problematic was found in asrashley dash-live.
6.1
2022-12-25 CVE-2020-36627 A vulnerability was found in Macaron i18n.
6.1
2022-12-25 CVE-2022-45890 In Planet eStream before 6.72.10.07, a Reflected Cross-Site Scripting (XSS) vulnerability exists via any metadata filter field (e.g., search within Default.aspx with the r or fo parameter).
6.1
2022-12-23 CVE-2022-40011 Cross Site Scripting (XSS) vulnerability in typora through 1.38 allows remote attackers to run arbitrary code via export from editor.
6.1
2022-12-22 CVE-2022-47928 In MISP before 2.4.167, there is XSS in the template file uploads in app/View/Templates/upload_file.ctp.
6.1
2022-12-22 CVE-2022-22456 IBM Cross-site Scripting vulnerability in IBM Security Verify Governance 10.0.1

IBM Security Verify Governance, Identity Manager 10.0.1 is vulnerable to cross-site scripting.

6.1
2022-12-22 CVE-2022-29910 When closed or sent to the background, Firefox for Android would not properly record and persist HSTS settings.<br>*Note: This issue only affected Firefox for Android.
6.1
2022-12-22 CVE-2022-29911 An improper implementation of the new iframe sandbox keyword <code>allow-top-navigation-by-user-activation</code> could lead to script execution without <code>allow-scripts</code> being present.
6.1
2022-12-22 CVE-2022-29912 Requests initiated through reader mode did not properly omit cookies with a SameSite attribute.
6.1
2022-12-22 CVE-2022-34473 The HTML Sanitizer should have sanitized the <code>href</code> attribute of SVG <code>&lt;use&gt;</code> tags; however it incorrectly did not sanitize <code>xlink:href</code> attributes.
6.1
2022-12-22 CVE-2022-34474 Even when an iframe was sandboxed with <code>allow-top-navigation-by-user-activation</code>, if it received a redirect header to an external protocol the browser would process the redirect and prompt the user as appropriate.
6.1
2022-12-22 CVE-2022-34475 SVG <code>&lt;use&gt;</code> tags that referenced a same-origin document could have resulted in script execution if attacker input was sanitized via the HTML Sanitizer API.
6.1
2022-12-22 CVE-2022-36316 When using the Performance API, an attacker was able to notice subtle differences between PerformanceEntries and thus learn whether the target URL had been subject to a redirect.
6.1
2022-12-22 CVE-2022-40956 When injecting an HTML base element, some requests would ignore the CSP's base-uri settings and accept the injected element's base instead.
6.1
2022-12-22 CVE-2022-45411 Cross-Site Tracing occurs when a server will echo a request back via the Trace method, allowing an XSS attack to access to authorization headers and cookies inaccessible to JavaScript (such as cookies protected by HTTPOnly).
6.1
2022-12-22 CVE-2022-45413 Using the <code>S.browser_fallback_url parameter</code> parameter, an attacker could redirect a user to a URL and cause SameSite=Strict cookies to be sent.<br>*This issue only affects Firefox for Android.
6.1
2022-12-22 CVE-2022-45418 If a custom mouse cursor is specified in CSS, under certain circumstances the cursor could have been drawn over the browser UI, resulting in potential user confusion or spoofing attacks.
6.1
2022-12-22 CVE-2020-36624 A vulnerability was found in ahorner text-helpers up to 1.0.x.
6.1
2022-12-22 CVE-2022-4647 Cross-site Scripting (XSS) - Stored in GitHub repository microweber/microweber prior to 1.3.2.
6.1
2022-12-22 CVE-2022-4644 Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.4.
6.1
2022-12-21 CVE-2022-4637 A vulnerability classified as problematic has been found in ep3-bs up to 1.7.x.
6.1
2022-12-21 CVE-2022-4638 A vulnerability classified as problematic was found in collective.contact.widget up to 1.12.
6.1
2022-12-21 CVE-2020-36621 A vulnerability, which was classified as problematic, has been found in chedabob whatismyudid.
6.1
2022-12-21 CVE-2021-4263 A vulnerability, which was classified as problematic, has been found in leanote.
6.1
2022-12-21 CVE-2021-4265 A vulnerability was found in siwapp-ror.
6.1
2022-12-21 CVE-2021-4266 A vulnerability classified as problematic has been found in Webdetails cpf up to 9.5.0.0-80.
6.1
2022-12-21 CVE-2021-4267 A vulnerability classified as problematic was found in tad_discuss.
6.1
2022-12-21 CVE-2021-4269 A vulnerability has been found in SimpleRisk and classified as problematic.
6.1
2022-12-21 CVE-2021-4270 A vulnerability was found in Imprint CMS.
6.1
2022-12-21 CVE-2021-4271 W2Wiki Project Cross-site Scripting vulnerability in W2Wiki Project W2Wiki

A vulnerability was found in panicsteve w2wiki.

6.1
2022-12-21 CVE-2021-4272 Studygolang Cross-site Scripting vulnerability in Studygolang

A vulnerability classified as problematic has been found in studygolang.

6.1
2022-12-21 CVE-2021-4273 Studygolang Cross-site Scripting vulnerability in Studygolang

A vulnerability classified as problematic was found in studygolang.

6.1
2022-12-21 CVE-2021-4274 Bird LG Project Cross-site Scripting vulnerability in Bird-Lg Project Bird-Lg

A vulnerability, which was classified as problematic, has been found in sileht bird-lg.

6.1
2022-12-21 CVE-2022-46095 Covid 19 Directory ON Vaccination System Project Cross-site Scripting vulnerability in Covid-19 Directory on Vaccination System Project Covid-19 Directory on Vaccination System 1.0

Sourcecodester Covid-19 Directory on Vaccination System 1.0 was discovered to contain a Cross-Site Scripting (XSS) vulnerability via verification.php because the program does not verify the txtvaccinationID parameter.

6.1
2022-12-21 CVE-2022-46096 Covid 19 Directory ON Vaccination System Project Cross-site Scripting vulnerability in Covid-19 Directory on Vaccination System Project Covid-19 Directory on Vaccination System 1.0

A Cross site scripting (XSS) vulnerability in Sourcecodester Online Covid-19 Directory on Vaccination System v1.0 allows attackers to execute arbitrary code via the txtfullname parameter or txtphone parameter to register.php without logging in.

6.1
2022-12-21 CVE-2022-4631 WP BAN Project Cross-site Scripting vulnerability in Wp-Ban Project Wp-Ban

A vulnerability, which was classified as problematic, was found in WP-Ban.

6.1
2022-12-21 CVE-2022-4632 A vulnerability has been found in Auto Upload Images up to 3.3.0 and classified as problematic.
6.1
2022-12-21 CVE-2022-40841 NDK Design Cross-site Scripting vulnerability in Ndk-Design Ndkadvancedcustomizationfields 3.5.0

A cross-site scripting (XSS) vulnerability in NdkAdvancedCustomizationFields v3.5.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payloads injected into the "htmlNodes" parameter.

6.1
2022-12-21 CVE-2022-4617 Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber prior to 1.3.2.
6.1
2022-12-19 CVE-2022-39160 IBM Cross-site Scripting vulnerability in IBM Cognos Analytics

IBM Cognos Analytics 11.2.1, 11.2.0, and 11.1.7 is vulnerable to cross-site scripting.

6.1
2022-12-19 CVE-2022-4615 Cross-site Scripting (XSS) - Reflected in GitHub repository openemr/openemr prior to 7.0.0.2.
6.1
2022-12-19 CVE-2021-4260 A vulnerability was found in oils-js.
6.1
2022-12-19 CVE-2022-40743 Improper Input Validation vulnerability for the xdebug plugin in Apache Software Foundation Apache Traffic Server can lead to cross site scripting and cache poisoning attacks.This issue affects Apache Traffic Server: 9.0.0 to 9.1.3.
6.1
2022-12-19 CVE-2022-38662 Hcltech Open Redirect vulnerability in Hcltech HCL Digital Experience 8.5/9.0/9.5

In HCL Digital Experience, URLs can be constructed to redirect users to untrusted sites.

6.1
2022-12-19 CVE-2022-47500 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Apache Software Foundation Apache Helix UI component.This issue affects Apache Helix all releases from 0.8.0 to 1.0.4.
6.1
2022-12-19 CVE-2022-41993 Jacic Cross-site Scripting vulnerability in Jacic Electronic Bidding Core System 6

Cross-site scripting vulnerability in DENSHI NYUSATSU CORE SYSTEM v6 R4 and earlier allows a remote unauthenticated attacker to inject an arbitrary script.

6.1
2022-12-19 CVE-2022-46287 Jacic Cross-site Scripting vulnerability in Jacic Electronic Bidding Core System 6

Cross-site scripting vulnerability in DENSHI NYUSATSU CORE SYSTEM v6 R4 and earlier allows a remote unauthenticated attacker to inject an arbitrary script.

6.1
2022-12-19 CVE-2022-46288 Jacic Open Redirect vulnerability in Jacic Electronic Bidding Core System 6

Open redirect vulnerability in DENSHI NYUSATSU CORE SYSTEM v6 R4 and earlier allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL.

6.1
2022-12-23 CVE-2022-40897 Python Unspecified vulnerability in Python Setuptools

Python Packaging Authority (PyPA) setuptools before 65.5.1 allows remote attackers to cause a denial of service via HTML in a crafted package or custom PackageIndex page.

5.9
2022-12-22 CVE-2022-43592 Openimageio Project Out-of-bounds Read vulnerability in Openimageio Project Openimageio 2.4.4.2

An information disclosure vulnerability exists in the DPXOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.

5.9
2022-12-22 CVE-2022-43593 Openimageio Project NULL Pointer Dereference vulnerability in Openimageio Project Openimageio 2.4.4.2

A denial of service vulnerability exists in the DPXOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.

5.9
2022-12-22 CVE-2022-43594 Openimageio Project NULL Pointer Dereference vulnerability in Openimageio Project Openimageio 2.4.4.2

Multiple denial of service vulnerabilities exist in the image output closing functionality of OpenImageIO Project OpenImageIO v2.4.4.2.

5.9
2022-12-22 CVE-2022-43595 Openimageio Project NULL Pointer Dereference vulnerability in Openimageio Project Openimageio 2.4.4.2

Multiple denial of service vulnerabilities exist in the image output closing functionality of OpenImageIO Project OpenImageIO v2.4.4.2.

5.9
2022-12-22 CVE-2022-43596 Openimageio Project Out-of-bounds Read vulnerability in Openimageio Project Openimageio 2.4.4.2

An information disclosure vulnerability exists in the IFFOutput channel interleaving functionality of OpenImageIO Project OpenImageIO v2.4.4.2.

5.9
2022-12-22 CVE-2022-43603 Openimageio Project
Fedoraproject
NULL Pointer Dereference vulnerability in multiple products

A denial of service vulnerability exists in the ZfileOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.

5.9
2022-12-22 CVE-2022-22746 A race condition could have allowed bypassing the fullscreen notification which could have lead to a fullscreen window spoof being unnoticed.<br>*This bug only affects Firefox for Windows.
5.9
2022-12-21 CVE-2022-38655 Hcltech Unspecified vulnerability in Hcltech Bigfix Webui 20

BigFix WebUI non-master operators are missing controls that prevent them from being able to modify the relevance of fixlets or to deploy fixlets from the BES Support external site.

5.8
2022-12-23 CVE-2022-47946 An issue was discovered in the Linux kernel 5.10.x before 5.10.155.
5.5
2022-12-22 CVE-2022-41684 Openimageio
Fedoraproject
Out-of-bounds Read vulnerability in multiple products

A heap out of bounds read vulnerability exists in the OpenImageIO master-branch-9aeece7a when parsing the image file directory part of a PSD image file.

5.5
2022-12-22 CVE-2022-4662 Linux Non-exit on Failed Initialization vulnerability in Linux Kernel

A flaw incorrect access control in the Linux kernel USB core subsystem was found in the way user attaches usb device.

5.5
2022-12-22 CVE-2022-36314 When opening a Windows shortcut from the local filesystem, an attacker could supply a remote path that would lead to unexpected network requests from the operating system.<br>This bug only affects Firefox for Windows.
5.5
2022-12-22 CVE-2022-3266 An out-of-bounds read can occur when decoding H264 video.
5.5
2022-12-21 CVE-2022-4641 PIG Vector Project Insecure Temporary File vulnerability in Pig-Vector Project Pig-Vector

A vulnerability was found in pig-vector and classified as problematic.

5.5
2022-12-20 CVE-2022-41590 Huawei Improper Authentication vulnerability in Huawei Harmonyos 3.0.0

Some smartphones have authentication-related (including session management) vulnerabilities as the setup wizard is bypassed.

5.5
2022-12-20 CVE-2022-43875 IBM Improper Input Validation vulnerability in IBM Financial Transaction Manager 3.2.4

IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 could allow an authenticated user to lock additional RM authorizations, resulting in a denial of service on displaying or managing these authorizations.

5.5
2022-12-19 CVE-2022-47512 Solarwinds Cleartext Storage of Sensitive Information vulnerability in Solarwinds Platform 2022.4.0

Sensitive information was stored in plain text in a file that is accessible by a user with a local account in Hybrid Cloud Observability (HCO)/ SolarWinds Platform 2022.4.

5.5
2022-12-19 CVE-2022-4610 Clickstudios Use of a Broken or Risky Cryptographic Algorithm vulnerability in Clickstudios Passwordstate 9.5/9.5.8.4

A vulnerability, which was classified as problematic, has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome.

5.5
2022-12-25 CVE-2022-4731 A vulnerability, which was classified as problematic, was found in myapnea up to 29.0.x.
5.4
2022-12-25 CVE-2022-44012 An issue was discovered in /DS/LM_API/api/SelectionService/InsertQueryWithActiveRelationsReturnId in Simmeth Lieferantenmanager before 5.6.
5.4
2022-12-25 CVE-2022-44380 Snipe-IT before 6.0.14 is vulnerable to Cross Site Scripting (XSS) for View Assigned Assets.
5.4
2022-12-25 CVE-2022-45892 In Planet eStream before 6.72.10.07, multiple Stored Cross-Site Scripting (XSS) vulnerabilities exist: Disclaimer, Search Function, Comments, Batch editing tool, Content Creation, Related Media, Create new user, and Change Username.
5.4
2022-12-23 CVE-2022-4692 Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
5.4
2022-12-23 CVE-2022-47524 F-Secure SAFE Browser 19.1 before 19.2 for Android allows an IDN homograph attack.
5.4
2022-12-23 CVE-2022-4690 Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
5.4
2022-12-22 CVE-2022-1197 When importing a revoked key that specified key compromise as the revocation reason, Thunderbird did not update the existing copy of the key that was not yet revoked, and the existing key was kept as non-revoked.
5.4
2022-12-22 CVE-2022-28286 Due to a layout change, iframe contents could have been rendered outside of its border.
5.4
2022-12-22 CVE-2022-44510 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-22 CVE-2021-43657 Simple Client Management System Project Cross-site Scripting vulnerability in Simple Client Management System Project Simple Client Management System 1.0

A Stored Cross-site scripting (XSS) vulnerability via MAster.php in Sourcecodetester Simple Client Management System (SCMS) 1.0 allows remote attackers to inject arbitrary web script or HTML via the vulnerable input fields.

5.4
2022-12-22 CVE-2022-43271 Inhabit Cross-site Scripting vulnerability in Inhabit Move CRM 4

Inhabit Systems Pty Ltd Move CRM version 4, build 260 was discovered to contain a cross-site scripting (XSS) vulnerability via the User profile component.

5.4
2022-12-21 CVE-2022-4640 Mingsoft Improper Enforcement of Message or Data Structure vulnerability in Mingsoft Mcms 5.2.9

A vulnerability has been found in Mingsoft MCMS 5.2.9 and classified as problematic.

5.4
2022-12-21 CVE-2022-4642 A vulnerability was found in tatoeba2.
5.4
2022-12-21 CVE-2022-43543 KDDI +Message App, NTT DOCOMO +Message App, and SoftBank +Message App contain a vulnerability caused by improper handling of Unicode control characters.
5.4
2022-12-21 CVE-2022-25929 The package smoothie from 1.31.0 and before 1.36.1 are vulnerable to Cross-site Scripting (XSS) due to improper user input sanitization in strokeStyle and tooltipLabel properties.
5.4
2022-12-19 CVE-2022-46400 Microchip Incorrect Authorization vulnerability in Microchip products

The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) allows attackers to bypass passkey entry in legacy pairing.

5.4
2022-12-19 CVE-2022-46401 Microchip Unspecified vulnerability in Microchip products

The Microchip RN4870 module firmware 1.43 (and the Microchip PIC LightBlue Explorer Demo 4.2 DT100112) accepts PauseEncReqPlainText before pairing is complete.

5.4
2022-12-19 CVE-2022-23543 Silverware Games is a social network where people can play games online.
5.4
2022-12-19 CVE-2022-30679 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-35693 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-35695 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-42345 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-42346 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-42348 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-42349 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-42350 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-42352 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-42354 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-42356 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-42357 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-42362 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-42364 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-42365 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-44463 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-44465 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-44466 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-44467 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-44470 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-44471 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-44474 Adobe Cross-site Scripting vulnerability in Adobe Experience Manager

Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability.

5.4
2022-12-19 CVE-2022-44488 Adobe Experience Manager version 6.5.14 (and earlier) is affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability.
5.4
2022-12-19 CVE-2022-4614 Cross-site Scripting (XSS) - Stored in GitHub repository alagrede/znote-app prior to 1.7.11.
5.4
2022-12-19 CVE-2022-31683 Concourse (7.x.y prior to 7.8.3 and 6.x.y prior to 6.7.9) contains an authorization bypass issue.
5.4
2022-12-19 CVE-2022-3937 The Easy Video Player WordPress plugin before 1.2.2.3 does not sanitize and escapes some parameters, which could allow users with a role as low as Contributor to perform Cross-Site Scripting attacks.
5.4
2022-12-19 CVE-2022-3983 The Checkout for PayPal WordPress plugin before 1.0.14 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks
5.4
2022-12-19 CVE-2022-3984 The Flowplayer Video Player WordPress plugin before 1.0.5 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks
5.4
2022-12-19 CVE-2022-3985 The Videojs HTML5 Player WordPress plugin before 1.1.9 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks
5.4
2022-12-19 CVE-2022-3986 The WP Stripe Checkout WordPress plugin before 1.2.2.21 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks
5.4
2022-12-19 CVE-2022-3987 The Responsive Lightbox2 WordPress plugin before 1.0.4 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks
5.4
2022-12-19 CVE-2022-4058 The Photo Gallery by 10Web WordPress plugin before 1.8.3 does not validate and escape some parameters before outputting them back in in JS code later on in another page, which could lead to Stored XSS issue when an attacker makes a logged in admin open a malicious URL or page under their control.
5.4
2022-12-19 CVE-2022-4609 Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
5.4
2022-12-19 CVE-2022-38653 Hcltech Cross-site Scripting vulnerability in Hcltech Digital Experience 8.5/9.0/9.5

In HCL Digital Experience, customized XSS payload can be constructed such that it is served in the application unencoded.

5.4
2022-12-19 CVE-2022-3877 Clickstudios Cross-site Scripting vulnerability in Clickstudios Passwordstate

A vulnerability, which was classified as problematic, was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome.

5.4
2022-12-25 CVE-2021-4277 A vulnerability, which was classified as problematic, has been found in fredsmith utils.
5.3
2022-12-25 CVE-2022-44381 Snipe-IT through 6.0.14 allows attackers to check whether a user account exists because of response variations in a /password/reset request.
5.3
2022-12-24 CVE-2022-22449 IBM Information Exposure Through an Error Message vulnerability in IBM Security Verify Governance 10.0.1

IBM Security Verify Governance, Identity Manager 10.01 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.

5.3
2022-12-23 CVE-2022-44565 An improper access validation vulnerability exists in airMAX AC <8.7.11, airFiber 60/LR <2.6.2, airFiber 60 XG/HD <v1.0.0 and airFiber GBE <1.4.1 that allows a malicious actor to retrieve status and usage data from the UISP device.
5.3
2022-12-23 CVE-2022-23513 Pi-Hole is a network-wide ad blocking via your own Linux hardware, AdminLTE is a Pi-hole Dashboard for stats and more.
5.3
2022-12-22 CVE-2022-36354 Openimageio Project
Fedoraproject
Off-by-one Error vulnerability in multiple products

A heap out-of-bounds read vulnerability exists in the RLA format parser of OpenImageIO master-branch-9aeece7a and v2.3.19.0.

5.3
2022-12-22 CVE-2022-35646 IBM Improper Authentication vulnerability in IBM Security Verify Governance 10.0.1

IBM Security Verify Governance, Identity Manager 10.0.1 software component could allow an authenticated user to modify or cancel any other user's access request using man-in-the-middle techniques.

5.3
2022-12-22 CVE-2022-36318 When visiting directory listings for `chrome://` URLs as source text, some parameters were reflected.
5.3
2022-12-22 CVE-2022-41697 Ghost Response Discrepancy Information Exposure vulnerability in Ghost 5.9.4

A user enumeration vulnerability exists in the login functionality of Ghost Foundation Ghost 5.9.4.

5.3
2022-12-22 CVE-2022-25948 The package liquidjs before 10.0.0 are vulnerable to Information Exposure when ownPropertyOnly parameter is set to False, which results in leaking properties of a prototype.
5.3
2022-12-21 CVE-2022-3185 Dataprobe iBoot-PDU FW versions prior to 1.42.06162022 contain a vulnerability where the affected product exposes sensitive data concerning the device.
5.3
2022-12-21 CVE-2022-3187 Dataprobe iBoot-PDU FW versions prior to 1.42.06162022 contain a vulnerability where certain PHP pages only validate when a valid connection is established with the database.
5.3
2022-12-21 CVE-2022-3188 Dataprobe iBoot-PDU FW versions prior to 1.42.06162022 contain a vulnerability where unauthenticated users could open PHP index pages without authentication and download the history file from the device; the history file includes the latest actions completed by specific users.
5.3
2022-12-21 CVE-2022-3189 Dataprobe iBoot-PDU FW versions prior to 1.42.06162022 contain a vulnerability where a specially crafted PHP script could use parameters from a HTTP request to create a URL capable of changing the host parameter.
5.3
2022-12-21 CVE-2022-23551 aad-pod-identity assigns Azure Active Directory identities to Kubernetes applications and has now been deprecated as of 24 October 2022.
5.3
2022-12-21 CVE-2022-4630 Daloradius Incorrect Permission Assignment for Critical Resource vulnerability in Daloradius

Sensitive Cookie Without 'HttpOnly' Flag in GitHub repository lirantal/daloradius prior to master.

5.3
2022-12-21 CVE-2022-42454 Insights for Vulnerability Remediation (IVR) is vulnerable to man-in-the-middle attacks that may lead to information disclosure.
5.3
2022-12-20 CVE-2022-46313 The sensor privacy module has an authentication vulnerability.
5.3
2022-12-20 CVE-2022-46318 Huawei Unspecified vulnerability in Huawei Emui 11.0.1/12.0.0/12.0.1

The HAware module has a function logic error.

5.3
2022-12-20 CVE-2022-43872 IBM Incorrect Authorization vulnerability in IBM Financial Transaction Manager 3.2.4

IBM Financial Transaction Manager 3.2.4 authorization checks are done incorrectly for some HTTP requests which allows getting unauthorized technical information (e.g.

5.3
2022-12-19 CVE-2022-43887 IBM Information Exposure Through Log Files vulnerability in IBM Cognos Analytics

IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could be vulnerable to sensitive information exposure by passing API keys to log files.

5.3
2022-12-19 CVE-2022-4611 Clickstudios Use of Hard-coded Credentials vulnerability in Clickstudios Passwordstate

A vulnerability, which was classified as problematic, was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome.

5.3
2022-12-19 CVE-2022-37392 Improper Check for Unusual or Exceptional Conditions vulnerability in handling the requests to Apache Traffic Server.
5.3
2022-12-19 CVE-2022-47547 Protocol Improper Preservation of Permissions vulnerability in Protocol Gossipsub 1.1

GossipSub 1.1, as used for Ethereum 2.0, allows a peer to maintain a positive score (and thus not be pruned from the network) even though it continuously misbehaves by never forwarding topic messages.

5.3
2022-12-20 CVE-2022-39166 IBM Unspecified vulnerability in IBM Security Guardium 11.4

IBM Security Guardium 11.4 could allow a privileged user to obtain sensitive information inside of an HTTP response.

4.9
2022-12-19 CVE-2022-4108 The Wholesale Market for WooCommerce WordPress plugin before 1.0.8 does not validate user input used to generate system path, allowing high privilege users such as admin to download arbitrary file from the server even when they should not be able to (for example in multisite)
4.9
2022-12-23 CVE-2022-4697 The ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘wp_user_cover_default_image_url’ parameter in versions up to, and including, 4.5.0 due to insufficient input sanitization and output escaping.
4.8
2022-12-23 CVE-2022-4698 The ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several form fields in versions up to, and including, 4.5.0 due to insufficient input sanitization and output escaping.
4.8
2022-12-21 CVE-2022-44449 Stored cross-site scripting vulnerability in Zenphoto versions prior to 1.6 allows remote a remote authenticated attacker with an administrative privilege to inject an arbitrary script.
4.8
2022-12-20 CVE-2022-46422 An issue in Netgear WNR2000 v1 1.2.3.7 and earlier allows authenticated attackers to cause a Denial of Service (DoS) via uploading a crafted firmware image during the firmware update process.
4.8
2022-12-20 CVE-2022-46428 TP-Link TL-WR1043ND V1 3.13.15 and earlier allows authenticated attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image during the firmware update process.
4.8
2022-12-20 CVE-2022-46430 TP-Link TL-WR740N V1 and V2 v3.12.4 and earlier allows authenticated attackers to execute arbitrary code or cause a Denial of Service (DoS) via uploading a crafted firmware image during the firmware update process.
4.8
2022-12-20 CVE-2022-4619 The Sidebar Widgets by CodeLights plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘Extra CSS class’ parameter in versions up to, and including, 1.4 due to insufficient input sanitization and output escaping.
4.8
2022-12-19 CVE-2022-40435 Employee Performance Evaluation System Project Cross-site Scripting vulnerability in Employee Performance Evaluation System Project Employee Performance Evaluation System 1.0

Employee Performance Evaluation System v1.0 was discovered to contain a persistent cross-site scripting (XSS) vulnerability via adding new entries under the Departments and Designations module.

4.8
2022-12-19 CVE-2022-3832 The External Media WordPress plugin before 1.0.36 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
4.8
2022-12-19 CVE-2022-4112 VMS Studio Cross-site Scripting vulnerability in Vms-Studio Quizlord 1.0.1/2.0

The Quizlord WordPress plugin through 2.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

4.8
2022-12-20 CVE-2022-39304 ghinstallation provides transport, which implements http.RoundTripper to provide authentication as an installation for GitHub Apps.
4.7
2022-12-20 CVE-2022-46771 IBM Cross-site Scripting vulnerability in IBM Urbancode Deploy 7.3.0.0

IBM UrbanCode Deploy (UCD) 6.2.0.0 through 6.2.7.18, 7.0.5.0 through 7.0.5.13, 7.1.0.0 through 7.1.2.9, 7.2.0.0 through 7.2.3.2 and 7.3.0.0 is vulnerable to cross-site scripting.

4.6
2022-12-22 CVE-2022-22457 IBM Cleartext Storage of Sensitive Information vulnerability in IBM Security Verify Governance 10.0.1

IBM Security Verify Governance, Identity Manager 10.0.1 stores sensitive information including user credentials in plain clear text which can be read by a local privileged user.

4.4
2022-12-20 CVE-2022-43382 IBM Unspecified vulnerability in IBM AIX and Vios

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a local user with elevated privileges to exploit a vulnerability in the lpd daemon to cause a denial of service.

4.4
2022-12-24 CVE-2022-43860 IBM SQL Injection vulnerability in IBM I 7.3/7.4/7.5

IBM Navigator for i 7.3, 7.4, and 7.5 could allow an authenticated user to obtain sensitive information they are authorized to but not while using this interface.

4.3
2022-12-22 CVE-2022-3794 The Jeg Elementor Kit plugin for WordPress is vulnerable to authorization bypass in various AJAX actions in versions up to, and including, 2.5.6.
4.3
2022-12-22 CVE-2022-43857 IBM Path Traversal vulnerability in IBM I 7.3/7.4/7.5

IBM Navigator for i 7.3, 7.4 and 7.5 could allow an authenticated user to access IBM Navigator for i log files they are authorized to but not while using this interface.

4.3
2022-12-22 CVE-2022-43858 IBM Path Traversal vulnerability in IBM I 7.3/7.4/7.5

IBM Navigator for i 7.3, 7.4, and 7.5 could allow an authenticated user to access the file system and download files they are authorized to but not while using this interface.

4.3
2022-12-22 CVE-2022-43859 IBM SQL Injection vulnerability in IBM I 7.3/7.4/7.5

IBM Navigator for i 7.3, 7.4, and 7.5 could allow an authenticated user to obtain sensitive information for an object they are authorized to but not while using this interface.

4.3
2022-12-22 CVE-2021-4221 Mozilla Unspecified vulnerability in Mozilla Firefox

If a domain name contained a RTL character, it would cause the domain to be rendered to the right of the path.

4.3
2022-12-22 CVE-2022-1520 When viewing an email message A, which contains an attached message B, where B is encrypted or digitally signed or both, Thunderbird may show an incorrect encryption or signature status.
4.3
2022-12-22 CVE-2022-22743 When navigating from inside an iframe while requesting fullscreen access, an attacker-controlled tab could have made the browser unable to leave fullscreen mode.
4.3
2022-12-22 CVE-2022-22749 When scanning QR codes, Firefox for Android would have allowed navigation to some URLs that do not point to web content.<br>*This bug only affects Firefox for Android.
4.3
2022-12-22 CVE-2022-22762 Mozilla Unspecified vulnerability in Mozilla Firefox

Under certain circumstances, a JavaScript alert (or prompt) could have been shown while another website was displayed underneath it.

4.3
2022-12-22 CVE-2022-26382 While the text displayed in Autofill tooltips cannot be directly read by JavaScript, the text was rendered using page fonts.
4.3
2022-12-22 CVE-2022-26383 When resizing a popup after requesting fullscreen access, the popup would not display the fullscreen notification.
4.3
2022-12-22 CVE-2022-29915 The Performance API did not properly hide the fact whether a request cross-origin resource has observed redirects.
4.3
2022-12-22 CVE-2022-31745 If array shift operations are not used, the Garbage Collector may have become confused about valid objects.
4.3
2022-12-22 CVE-2022-34472 If there was a PAC URL set and the server that hosts the PAC was not reachable, OCSP requests would have been blocked, resulting in incorrect error pages being shown.
4.3
2022-12-22 CVE-2022-36315 When loading a script with Subresource Integrity, attackers with an injection capability could trigger the reuse of previously cached entries with incorrect, different integrity metadata.
4.3
2022-12-22 CVE-2022-38474 A website that had permission to access the microphone could record audio without the audio notification being shown.
4.3
2022-12-22 CVE-2022-3034 When receiving an HTML email that specified to load an <code>iframe</code> element from a remote location, a request to the remote document was sent.
4.3
2022-12-22 CVE-2022-45417 Service Workers did not detect Private Browsing Mode correctly in all cases, which could have led to Service Workers being written to disk for websites visited in Private Browsing Mode.
4.3
2022-12-22 CVE-2022-46877 Mozilla
Debian
By confusing the browser, the fullscreen notification could have been delayed or suppressed, resulting in potential user confusion or spoofing attacks.
4.3
2022-12-22 CVE-2022-41654 An authentication bypass vulnerability exists in the newsletter subscription functionality of Ghost Foundation Ghost 5.9.4.
4.3
2022-12-19 CVE-2022-4124 The Popup Manager WordPress plugin through 1.6.6 does not have authorisation and CSRF checks when deleting popups, which could allow unauthenticated users to delete them
4.3
2022-12-19 CVE-2022-4125 The Popup Manager WordPress plugin through 1.6.6 does not have authorisation and CSRF check when creating/updating popups, and is missing sanitisation as well as escaping, which could allow unauthenticated attackers to create arbitrary popups and add Stored XSS payloads as well
4.3

2 Low Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2022-12-22 CVE-2022-41977 Openimageio
Fedoraproject
Out-of-bounds Read vulnerability in multiple products

An out of bounds read vulnerability exists in the way OpenImageIO version v2.3.19.0 processes string fields in TIFF image files.

3.3
2022-12-22 CVE-2022-42931 Logins saved by Firefox should be managed by the Password Manager component which uses encryption to save files on-disk.
3.3