Argo Project Argo CD security bypass | CVE-2023-22736
NAME__________Argo Project Argo CD security bypassPlatforms Affected:Argo Project Argo CD 2.5.7 Argo Project Argo CD 2.6.0-rc4 Argo Project Argo CD...
Vulnerabilities
Siretta QUARTZ-GOLD directory traversal | CVE-2022-41154
NAME__________Siretta QUARTZ-GOLD directory traversalPlatforms Affected:Risk Level:8.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Siretta QUARTZ-GOLD could allow a remote attacker to traverse directories on the system,...
Siretta QUARTZ-GOLD command execution |
NAME__________Siretta QUARTZ-GOLD command executionPlatforms Affected:Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Siretta QUARTZ-GOLD could allow a remote attacker to execute arbitrary commands...
Siretta QUARTZ-GOLD command execution | CVE-2022-40222
NAME__________Siretta QUARTZ-GOLD command executionPlatforms Affected:Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Siretta QUARTZ-GOLD could allow a remote attacker to execute arbitrary commands...
Siretta QUARTZ-GOLD command execution | CVE-2022-42493
NAME__________Siretta QUARTZ-GOLD command executionPlatforms Affected:Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Siretta QUARTZ-GOLD could allow a remote attacker to execute arbitrary commands...
Discourse cross-site scripting | CVE-2023-22468
NAME__________Discourse cross-site scriptingPlatforms Affected:Discourse Discourse 3.0.0 Discourse Discourse 3.1.0.beta1Risk Level:8.3Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Discourse is vulnerable to cross-site scripting, caused by improper...
Siretta QUARTZ-GOLD buffer overflow | CVE-2022-41991
NAME__________Siretta QUARTZ-GOLD buffer overflowPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Siretta QUARTZ-GOLD is vulnerable to a heap-based buffer overflow, caused by improper bounds...
Argo Project Argo CD security bypass | CVE-2023-22482
NAME__________Argo Project Argo CD security bypassPlatforms Affected:Argo CD Argo CD 1.8.2 Argo Project Argo CD 2.3.13 Argo Project Argo CD...
Siretta QUARTZ-GOLD command execution | CVE-2022-42492
NAME__________Siretta QUARTZ-GOLD command executionPlatforms Affected:Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Siretta QUARTZ-GOLD could allow a remote attacker to execute arbitrary commands...
Siretta QUARTZ-GOLD command execution | CVE-2022-42491
NAME__________Siretta QUARTZ-GOLD command executionPlatforms Affected:Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Siretta QUARTZ-GOLD could allow a remote attacker to execute arbitrary commands...
BaiCells Nova 227, Nova 233, Nova 243, and Nova 246 LTE TDD eNodeB devices code execution | CVE-2023-24508
NAME__________BaiCells Nova 227, Nova 233, Nova 243, and Nova 246 LTE TDD eNodeB devices code executionPlatforms Affected:BaiCells Nova 246 RTS/RTD...
Pi-hole security bypass | CVE-2023-23614
NAME__________Pi-hole security bypassPlatforms Affected:Pi-hole Pi-hole 4.0 Pi-hole Pi-hole 5.18.2Risk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Pi-hole could allow a remote authenticated attacker to bypass...
UFLO2 code execution | CVE-2022-25894
NAME__________UFLO2 code executionPlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________UFLO2 could allow a remote attacker to execute arbitrary code on the system, caused...
Daily Vulnerability Trends: Sun Jan 29 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2020-28362Go before 1.14.12 and 1.15.x before 1.15.4 allows Denial of Service.CVE-2022-34718Windows TCP/IP...
Daily Vulnerability Trends: Sat Jan 28 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-3094Sending a flood of dynamic DNS updates may cause `named` to allocate...
Book Store Management System cross-site scripting | CVE-2023-23024
NAME__________Book Store Management System cross-site scriptingPlatforms Affected:Risk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Book Store Management System is vulnerable to cross-site scripting, caused by...
Tenable.sc cross-site scripting | CVE-2023-24494
NAME__________Tenable.sc cross-site scriptingPlatforms Affected:Tenable Tenable.sc 5.23.1Risk Level:8.3Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Tenable.sc is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Nodejs simple-git module code execution | CVE-2022-25860
NAME__________Nodejs simple-git module code executionPlatforms Affected:Node.js simple-git 3.15.1Risk Level:8.1Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Nodejs simple-git module could allow a remote attacker...
Sengled Zigbee Smart Bulb denial of service | CVE-2022-47100
NAME__________Sengled Zigbee Smart Bulb denial of servicePlatforms Affected:Risk Level:8.1Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Sengled Zigbee Smart Bulb is vulnerable to a denial...
Broadcom Symantec Identity Manager response splitting | CVE-2023-23950
NAME__________Broadcom Symantec Identity Manager response splittingPlatforms Affected:Broadcom Symantec Identity Manager 14.3 Broadcom Symantec Identity Manager 14.4Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Broadcom Symantec...
Broadcom Symantec Identity Manager cross-site scripting | CVE-2023-23949
NAME__________Broadcom Symantec Identity Manager cross-site scriptingPlatforms Affected:Broadcom Symantec Identity Manager 14.3 Broadcom Symantec Identity Manager 14.4Risk Level:8.1Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Broadcom Symantec...
Econolite EOS brute force | CVE-2023-0452
NAME__________Econolite EOS brute forcePlatforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Econolite EOS is vulnerable to a brute force attack, caused by the use...
Delta Electronics InfraSuite Device Master privilege escalation | CVE-2023-0444
NAME__________Delta Electronics InfraSuite Device Master privilege escalationPlatforms Affected:Delta Electronics InfraSuite Device Master 00.00.01aRisk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Delta Electronics InfraSuite Device Master...
Sierra Wireless AirLink Router command execution | CVE-2022-46649
NAME__________Sierra Wireless AirLink Router command executionPlatforms Affected:Risk Level:8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Sierra Wireless AirLink Router could allow a remote authenticated attacker to...
