Daily Vulnerability Trends: Fri Oct 21 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-41852Those using JXPath to interpret untrusted XPath expressions may be vulnerable to...
Vulnerabilities
Oracle Virtualization VM VirtualBox Core security bypass | CVE-2022-39427
NAME Oracle Virtualization VM VirtualBox Core security bypass Platforms Affected:Oracle VM VirtualBox 6.1.38Risk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Oracle Virtualization VM VirtualBox...
Apache Dubbo code execution | CVE-2022-39198
NAME Apache Dubbo code execution Platforms Affected:Apache Dubbo 2.7.0 Apache Dubbo 3.0.0 Apache Dubbo 2.7.17 Apache Dubbo 3.0.11 Apache Dubbo...
Mozilla Firefox and Firefox ESR security bypass | CVE-2022-42927
NAME Mozilla Firefox and Firefox ESR security bypass Platforms Affected:Mozilla Firefox ESR 102.3 Mozilla Firefox 105Risk Level:8.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Mozilla...
Linux Kernel denial of service | CVE-2022-3595
NAME Linux Kernel denial of service Platforms Affected:Linux KernelRisk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Linux Kernel is vulnerable to a denial of...
Mozilla Firefox and Firefox ESR code execution | CVE-2022-42932
NAME Mozilla Firefox and Firefox ESR code execution Platforms Affected:Mozilla Firefox ESR 102.3 Mozilla Firefox 105Risk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Mozilla...
Mozilla Firefox and Firefox ESR code execution | CVE-2022-42928
NAME Mozilla Firefox and Firefox ESR code execution Platforms Affected:Mozilla Firefox ESR 102.3 Mozilla Firefox 105Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Mozilla...
Daily Vulnerability Trends: Thu Oct 20 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-42722In the Linux kernel 5.8 through 5.19.x before 5.19.16, local attackers able...
IBM InfoSphere Information Server external entity injection | CVE-2022-40747
NAME IBM InfoSphere Information Server external entity injection Platforms Affected:IBM InfoSphere Information Server 11.7Risk Level:8.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION IBM InfoSphere Information...
Daily Vulnerability Trends: Wed Oct 19 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-42948 No description provided CVE-2022-40684An authentication bypass using an alternate path or...
Gogs cross-site scripting | CVE-2022-32174
NAME Gogs cross-site scripting Platforms Affected:Gogs Gogs 0.11.53 Gogs Gogs 0.11.66 Gogs Gogs 0.11.79 Gogs Gogs 0.11.86 Gogs Gogs 0.11.91...
Siemens products privilege escalation | CVE-2022-31765
NAME Siemens products privilege escalation Platforms Affected:Siemens RUGGEDCOM RM1224 LTE(4G) EU (6GK6108- 4AM00-2BA2) 7.1.1 Siemens RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)...
ResIOT IoT Platform and LoRaWAN Network Server cross-site request forgery | CVE-2022-34020
NAME ResIOT IoT Platform and LoRaWAN Network Server cross-site request forgery Platforms Affected:ResIOT ResIOT IoT Platform and LoRaWAN Network Server...
Juniper Networks Junos OS command execution | CVE-2022-22241
NAME Juniper Networks Junos OS command execution Platforms Affected:Juniper Networks Junos OS 19.2 Juniper Networks Junos OS 19.3 Juniper Networks...
Siemens SCALANCE devices cross-site scripting | CVE-2022-40631
NAME Siemens SCALANCE devices cross-site scripting Platforms Affected:Siemens SCALANCE X200-4P IRT Siemens SCALANCE X201-3P IRT Siemens SCALANCE X202-2IRT Siemens SCALANCE...
Siemens LOGO! 8 BM buffer overflow | CVE-2022-36361
NAME Siemens LOGO! 8 BM buffer overflow Platforms Affected:Siemens LOGO! 8 BMRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Siemens LOGO! 8 BM is...
Siemens products denial of service | CVE-2022-31766
NAME Siemens products denial of service Platforms Affected:Siemens RUGGEDCOM RM1224 LTE(4G) EU (6GK6108- 4AM00-2BA2) 7.1.1 Siemens RUGGEDCOM RM1224 LTE(4G) NAM...
Apache Commons Text code execution | CVE-2022-42889
NAME Apache Commons Text code execution Platforms Affected:Apache Commons Text 1.9.0Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Apache Commons Text could allow a...
Siemens products code execution | CVE-2022-40181
NAME Siemens products code execution Platforms Affected:Siemens Desigo PXM30-1 02.20.126.11-40 Siemens Desigo PXM30.E 02.20.126.11-40 Siemens Desigo PXM40-1 02.20.126.11-40 Siemens Desigo...
Linux Kernel code execution | CVE-2022-42720
NAME Linux Kernel code execution Platforms Affected:Linux Kernel 5.1 Linux Kernel 5.19.14Risk Level:8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION Linux Kernel could allow...
Juniper Junos OS Evolved privilege escalation | CVE-2022-22239
NAME Juniper Junos OS Evolved privilege escalation Platforms Affected:Juniper Junos OS EvolvedRisk Level:8.2Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Juniper Junos OS Evolved could...
Juniper Networks Paragon Active Assurance cross-site scripting | CVE-2022-22229
NAME Juniper Networks Paragon Active Assurance cross-site scripting Platforms Affected:Juniper Networks Paragon Active Assurance 3.1.0 Juniper Networks Paragon Active Assurance...
Sony Content Transfer code execution | CVE-2022-41796
NAME Sony Content Transfer code execution Platforms Affected:Sony Content Transfer for Windows 1.3Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Sony Content Transfer could...
Linux Kernel code execution | CVE-2022-42719
NAME Linux Kernel code execution Platforms Affected:Linux Kernel 5.2 Linux Kernel 5.19.14Risk Level:8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION Linux Kernel could allow...
