Daily Vulnerability Trends: Tue Aug 02 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-22047Windows CSRSS Elevation of Privilege Vulnerability. This CVE ID is unique from...
Vulnerabilities
IBM Robotic Process Automation privilege escalation | CVE-2022-30616
NAME IBM Robotic Process Automation privilege escalation Platforms Affected:IBM Robotic Process Automation 21.0.0 IBM Robotic Process Automation 21.0.1 IBM Robotic...
Daily Vulnerability Trends: Mon Aug 01 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2021-42785Buffer Overflow vulnerability in tvnviewer.exe of TightVNC Viewer allows a remote attacker...
Daily Vulnerability Trends: Sun Jul 31 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-22047Windows CSRSS Elevation of Privilege Vulnerability. This CVE ID is unique from...
TP-LINK TL-R473G command execution | CVE-2022-34555
NAME TP-LINK TL-R473G command execution Platforms Affected:TP-LINK TL-R473G 2.0.1 Build 220529 Rel.65574nRisk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION TP-LINK TL-R473G could...
Synology Audio Station buffer overflow | CVE-2022-27612
NAME Synology Audio Station buffer overflow Platforms Affected:Synology Audio Station for DSM 6.2Risk Level:7.3Exploitability:HighConsequences:Gain Access DESCRIPTION Synology Audio Station is...
Synology Media Server buffer overflow | CVE-2022-22683
NAME Synology Media Server buffer overflow Platforms Affected:Synology Media Server for SRM 1.2 Synology Media Server for DSM 6.2Risk Level:10Exploitability:HighConsequences:Gain...
Synology WebDAV Server directory traversal | CVE-2022-22685
NAME Synology WebDAV Server directory traversal Platforms Affected:Synology WebDAV Server 2.4.0Risk Level:8.7Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION Synology WebDAV Server could allow a...
Schneider Electric SpaceLogic C-Bus Home Controller command execution |
NAME Schneider Electric SpaceLogic C-Bus Home Controller command execution Platforms Affected:Schneider Electric SpaceLogic C-Bus Home Controller 5200WHC2Risk Level:8.8Exploitability:Proof of ConceptConsequences:Gain...
IBM PowerVM VIOS denial of service | CVE-2022-35643
NAME IBM PowerVM VIOS denial of service Platforms Affected:IBM PowerVM VIOS 3.1Risk Level:9.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION IBM PowerVM VIOS 3.1 could...
Daily Vulnerability Trends: Sat Jul 30 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-32744 No description provided CVE-2022-20186In kbase_mem_alias of mali_kbase_mem_linux.c, there is a possible...
McAfee Agent Smart Installer for Windows code execution | CVE-2022-2313
NAME McAfee Agent Smart Installer for Windows code execution Platforms Affected:McAfee Agent Smart Installer for Windows 5.7.6Risk Level:8.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...
JustSystems JUST Online Update for J-License privilege escalation |
NAME JustSystems JUST Online Update for J-License privilege escalation Platforms Affected:JustSystems JUST Online Update for J-LicenseRisk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION JustSystems...
EnterpriseDT CompleteFTP Server directory traversal | CVE-2022-2560
NAME EnterpriseDT CompleteFTP Server directory traversal Platforms Affected:EnterpriseDT CompleteFTP Server 22.1Risk Level:8.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION EnterpriseDT CompleteFTP Server could allow a...
Loan Management System login SQL injection |
NAME Loan Management System login SQL injection Platforms Affected:Sourcecodester Loan Management System 1.0Risk Level:9.8Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION Loan Management System is...
Apache Calcite Avatica code execution | CVE-2022-36364
NAME Apache Calcite Avatica code execution Platforms Affected:Apache Calcite Avatica 1.21.0Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Apache Calcite Avatica could allow a...
Synology CardDAV Server SQL injection | CVE-2022-27613
NAME Synology CardDAV Server SQL injection Platforms Affected:Synology CardDAV Server for DSM 6.2Risk Level:8.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION Synology CardDAV Server is...
Daily Vulnerability Trends: Fri Jul 29 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-20186In kbase_mem_alias of mali_kbase_mem_linux.c, there is a possible arbitrary code execution due...
Western Digital My Cloud devices cross-site scripting | CVE-2022-22999
NAME Western Digital My Cloud devices cross-site scripting Platforms Affected:Western Digital My CloudRisk Level:8.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Western Digital My Cloud...
SolarView Compact file upload | CVE-2022-35239
NAME SolarView Compact file upload Platforms Affected:Contec SolarView Compact SV-CPT-MC310 7.23 Contec SolarView Compact SV-CPT-MC310F 7.23Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION SolarView...
PEGA Infinity security bypass | CVE-2022-24083
NAME PEGA Infinity security bypass Platforms Affected:PEGA Infinity 7.3.1 PEGA Infinity 8.7.2Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION PEGA Infinity could allow a...
PCProtect Endpoint privilege escalation |
NAME PCProtect Endpoint privilege escalation Platforms Affected:PCProtect Endpoint 5.17.470Risk Level:8.4Exploitability:Proof of ConceptConsequences:Gain Privileges DESCRIPTION PCProtect Endpoint could allow a local...
Jenkins CLIF Performance Testing Plugin directory traversal | CVE-2022-36894
NAME Jenkins CLIF Performance Testing Plugin directory traversal Platforms Affected:jenkins CLIF Performance Testing Plugin 64.vc0d66de1dfb_fRisk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Jenkins CLIF...
Node.js autolinker module security bypass |
NAME Node.js autolinker module security bypass Platforms Affected:Node.js AutolinkerRisk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Node.js autolinker module could allow a remote attacker...
