Multiple Baicells devices command execution | CVE-2023-0776
NAME__________Multiple Baicells devices command executionPlatforms Affected:Baicells Nova 436Q QRTB 2.12.7 Baicells Nova 430E QRTB 2.12.7 Baicells Nova 430I QRTB 2.12.7...
Vulnerabilities
Multiple Dahua embedded products security bypass | CVE-2022-30564
NAME__________Multiple Dahua embedded products security bypassPlatforms Affected:Dahua SD5A Series Dahua IPC-HX5XXX Dahua NVR2XXX Dahua NVR5XXXRisk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Multiple Dahua embedded...
Cockpit clickjacking | CVE-2023-0780
NAME__________Cockpit clickjackingPlatforms Affected:Cockpit Cockpit 2.3.8Risk Level:4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Cockpit could allow a local attacker to hijack the clicking action of the...
Daily Vulnerability Trends: Tue Feb 14 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-20076A vulnerability in the Cisco IOx application hosting environment could allow an...
Node.js @sideway/formula module denial of service | CVE-2023-25166
NAME__________Node.js @sideway/formula module denial of servicePlatforms Affected:Risk Level:5.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Node.js @sideway/formula module is vulnerable to a denial of service,...
Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG command execution | CVE-2022-38547
NAME__________Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG command executionPlatforms Affected:Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG could...
Daily Vulnerability Trends: Mon Feb 13 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-23529** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason:...
Anchore Syft information disclosure | CVE-2023-24827
NAME__________Anchore Syft information disclosurePlatforms Affected:Anchore Syft 0.69.0Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Anchore Syft could allow a remote attacker to obtain sensitive information,...
MediaTek Android privilege escalation | CVE-2022-32654
NAME__________MediaTek Android privilege escalationPlatforms Affected:Risk Level:6.7Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________MediaTek Android could allow a local authenticated attacker to gain elevated privileges on...
Qualcomm Chipsets denial of service | CVE-2022-40502
NAME__________Qualcomm Chipsets denial of servicePlatforms Affected:Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Qualcomm Chipsets are vulnerable to a denial of service, caused by...
Qualcomm Chipsets denial of service | CVE-2022-40513
NAME__________Qualcomm Chipsets denial of servicePlatforms Affected:Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Qualcomm Chipsets are vulnerable to a denial of service, caused by...
Qualcomm Chipsets denial of service | CVE-2022-33216
NAME__________Qualcomm Chipsets denial of servicePlatforms Affected:Risk Level:6Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Qualcomm Chipsets are vulnerable to a denial of service, caused by...
eXo Chat cross-site scripting | CVE-2022-4902
NAME__________eXo Chat cross-site scriptingPlatforms Affected:Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________eXo Chat is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
SourceCodester Medical Certificate Generator SQL injection | CVE-2023-0706
NAME__________SourceCodester Medical Certificate Generator SQL injectionPlatforms Affected:SourceCodester Medical Certificate Generator 1.0Risk Level:5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________SourceCodester Medical Certificate Generator is vulnerable to...
Qualcomm Chipsets code execution | CVE-2022-33280
NAME__________Qualcomm Chipsets code executionPlatforms Affected:Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Qualcomm Chipsets could allow a remote attacker to execute arbitrary code on the...
Calendar Event Management System SQL injection | CVE-2023-0675
NAME__________Calendar Event Management System SQL injectionPlatforms Affected:Calendar Event Management System Calendar Event Management System 2.3.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Calendar Event Management...
MediaTek Android information disclosure | CVE-2023-20606
NAME__________MediaTek Android information disclosurePlatforms Affected:Risk Level:4.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________MediaTek Android could allow a local authenticated attacker to obtain sensitive information, caused...
MediaTek Android privilege escalation | CVE-2023-20615
NAME__________MediaTek Android privilege escalationPlatforms Affected:Risk Level:6.7Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________MediaTek Android could allow a local authenticated attacker to gain elevated privileges on...
MediaTek Android privilege escalation | CVE-2023-20612
NAME__________MediaTek Android privilege escalationPlatforms Affected:Risk Level:6.7Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________MediaTek Android could allow a local authenticated attacker to gain elevated privileges on...
Qualcomm Chipsets denial of service | CVE-2022-25733
NAME__________Qualcomm Chipsets denial of servicePlatforms Affected:Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Qualcomm Chipsets are vulnerable to a denial of service, caused by...
SourceCodester Online Eyewear Shop SQL injection | CVE-2023-0686
NAME__________SourceCodester Online Eyewear Shop SQL injectionPlatforms Affected:SourceCodester Online Eyewear Shop 1.0Risk Level:5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________SourceCodester Online Eyewear Shop is vulnerable to...
MediaTek Android privilege escalation | CVE-2023-20602
NAME__________MediaTek Android privilege escalationPlatforms Affected:Risk Level:6.7Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________MediaTek Android could allow a local authenticated attacker to gain elevated privileges on...
MediaTek Android privilege escalation | CVE-2023-20613
NAME__________MediaTek Android privilege escalationPlatforms Affected:Risk Level:6.7Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________MediaTek Android could allow a local authenticated attacker to gain elevated privileges on...
Qualcomm Chipsets denial of service | CVE-2022-40512
NAME__________Qualcomm Chipsets denial of servicePlatforms Affected:Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Qualcomm Chipsets are vulnerable to a denial of service, caused by...
