Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-26352Advisory: DotCMS Remote Code Execution (CVE-2022-26352)CVE-2022-1338CVE-2022-1338CVE-2022-29972CVE-2022-29972CVE-2022-22954VMSA-2022-0011 - Server Side Template Injection in...
NAME Google Chrome Browser UI code execution Platforms Affected:Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
NAME Node.js colors-help module code execution Platforms Affected:Node.js colors-helpRisk Level:9.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js colors-help module could allow a remote attacker...
NAME Red Planet Computers Laundry Management System username SQL injection Platforms Affected:Red Planet Computers Laundry Management System 1.0Risk Level:9.8Exploitability:UnprovenConsequences:Data Manipulation...
NAME Flux project Flux2, helm-controller and kustomize-controller code execution Platforms Affected:Flux project Flux2 0.28.5 Flux project kustomize-controller 0.22.3 Flux project...
NAME SchedMD Slurm privilege escalation Platforms Affected:SchedMD Slurm 20.11.6 SchedMD Slurm 20.02.6Risk Level:9.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION SchedMD Slurm could allow a...
NAME Node.js colors_express module code execution Platforms Affected:Node.js colors_expressRisk Level:9.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js colors_express module could allow a remote attacker...
NAME WPS Office buffer overflow Platforms Affected:Kingsoft WPS Office 11.2.0.10351Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION WPS Office is vulnerable to...
NAME Flux project Flux2 and kustomize-controller directory traversal Platforms Affected:Flux project Flux2 0.28.5 Flux project kustomize-controller 0.23.0Risk Level:9.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION...
NAME Google Chrome Permission Prompts code execution Platforms Affected:Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
NAME QNAP QTS, QuTS hero, and QuTScloud command execution Platforms Affected:QNAP QTS QNAP QuTS hero QNAP QuTScloudRisk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...
NAME F5 BIG-IP (Advanced WAF, APM, ASM) and Guided Configuration (GC) security bypass Platforms Affected:F5 BIG-IP (APM) 14.1.0 F5 BIG-IP...
NAME The Update Framework (TUF) go-tuf security bypass Platforms Affected:The Update Framework (TUF) go-tuf 0.2.0Risk Level:8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION The Update...
NAME Google Chrome Performance APIs code execution Platforms Affected:Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
NAME RubyGems RubyGems.org security bypass Platforms Affected:RubyGems RubyGems.orgRisk Level:9.9Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION RubyGems RubyGems.org could allow a remote authenticated attacker to...
NAME rsyslog buffer overflow Platforms Affected:rsyslog rsyslog 8.2204.0Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION rsyslog is vulnerable to a heap-based buffer overflow, caused...
NAME Google Chrome Web Contents code execution Platforms Affected:Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
NAME Node.js matrix-appservice-irc module command execution Platforms Affected:Node.js matrix-appservice-irc 0.33.1Risk Level:8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js matrix-appservice-irc module could allow a remote...
NAME Node.js colors-helper module code execution Platforms Affected:Node.js colors-helperRisk Level:9.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js colors-helper module could allow a remote attacker...
NAME Google Chrome Web UI Diagnostics code execution Platforms Affected:Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a...
NAME Google Chrome V8 Internationalization buffer overflow Platforms Affected:Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome is vulnerable to a...
NAME Google Chrome Sharesheet code execution Platforms Affected:Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
NAME Sophos Firewall cross-site scripting Platforms Affected:Sophos Firewall 18.5 MR3 Sophos Firewall 18.5 MR2 Sophos Firewall 18.4Risk Level:8.4Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION...
NAME Brocade SANnav security bypass Platforms Affected:Brocade SANnav 1.0 Brocade SANnav 2.0 Brocade SANnav 2.1Risk Level:8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Brocade SANnav...
