Vim denial of service | CVE-2022-2816
NAME Vim denial of service Platforms Affected:Vim Vim 9.0.0210Risk Level:7.8Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION Vim is vulnerable to a...
Node.js ot-performance module code execution |
NAME Node.js ot-performance module code execution Platforms Affected:Node.js ot-performanceRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ot-performance module could allow a remote attacker...
Node.js @epc-infra/dns-stack module code execution |
NAME Node.js @epc-infra/dns-stack module code execution Platforms Affected:Node.js @epc-infra/dns-stackRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @epc-infra/dns-stack module could allow a remote attacker...
Node.js tempus-core-services module code execution |
NAME Node.js tempus-core-services module code execution Platforms Affected:Node.js tempus-core-servicesRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js tempus-core-services module could allow a remote attacker...
Node.js pancake-cake-vault module code execution |
NAME Node.js pancake-cake-vault module code execution Platforms Affected:Node.js pancake-cake-vaultRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js pancake-cake-vault module could allow a remote attacker...
Node.js @s3p-js-deep-purple/utils module code execution |
NAME Node.js @s3p-js-deep-purple/utils module code execution Platforms Affected:Node.js @s3p-js-deep-purple/utilsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @s3p-js-deep-purple/utils module could allow a remote attacker...
WWBN AVideo cross-site scripting | CVE-2022-28712
NAME WWBN AVideo cross-site scripting Platforms Affected:WWBN AVideo 11.6 WWBN AVideo dev master commit 3f7c0364Risk Level:9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION WWBN AVideo...
Node.js @epc-infra/edge-stack module code execution |
NAME Node.js @epc-infra/edge-stack module code execution Platforms Affected:Node.js @epc-infra/edge-stackRisk Level:9.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Node.js @epc-infra/edge-stack module could allow a remote attacker...
Node.js @epc-apps/api-outages module code execution |
NAME Node.js @epc-apps/api-outages module code execution Platforms Affected:Node.js @epc-apps/api-outagesRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @epc-apps/api-outages module could allow a remote attacker...
Vim code execution | CVE-2022-2817
NAME Vim code execution Platforms Affected:Vim Vim 9.0.0210Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim could allow a remote attacker to...
Node.js bsc-library module code execution |
NAME Node.js bsc-library module code execution Platforms Affected:Node.js bsc-libraryRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js bsc-library module could allow a remote attacker...
WWBN AVideo cross-site scripting | CVE-2022-32772
NAME WWBN AVideo cross-site scripting Platforms Affected:WWBN AVideo 11.6 WWBN AVideo dev master commit 3f7c0364Risk Level:9.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION WWBN AVideo...
Node.js @epc-apps/api-ingestor module code execution |
NAME Node.js @epc-apps/api-ingestor module code execution Platforms Affected:Node.js @epc-apps/api-ingestorRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @epc-apps/api-ingestor module could allow a remote attacker...
Node.js ot-menu-test module code execution |
NAME Node.js ot-menu-test module code execution Platforms Affected:Node.js ot-menu-testRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ot-menu-test module could allow a remote attacker...
Node.js ot-pausedetector module code execution |
NAME Node.js ot-pausedetector module code execution Platforms Affected:Node.js ot-pausedetectorRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ot-pausedetector module could allow a remote attacker...
Python apache-airflow-providers-docker package code execution | CVE-2022-38362
NAME Python apache-airflow-providers-docker package code execution Platforms Affected:Python apache-airflow-providers-docker 2.7.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Python apache-airflow-providers-docker package could allow a remote...
WWBN AVideo cross-site scripting | CVE-2022-32771
NAME WWBN AVideo cross-site scripting Platforms Affected:WWBN AVideo 11.6 WWBN AVideo dev master commit 3f7c0364Risk Level:9.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION WWBN AVideo...
Node.js @epc-apps/edge-lambdas module code execution |
NAME Node.js @epc-apps/edge-lambdas module code execution Platforms Affected:Node.js @epc-apps/edge-lambdasRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @epc-apps/edge-lambdas module could allow a remote attacker...
WWBN AVideo cross-site scripting | CVE-2022-30690
NAME WWBN AVideo cross-site scripting Platforms Affected:WWBN AVideo 11.6 WWBN AVideo dev master commit 3f7c0364Risk Level:9.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION WWBN AVideo...
Node.js @epc-infra/dynamo-stack module code execution |
NAME Node.js @epc-infra/dynamo-stack module code execution Platforms Affected:Node.js @epc-infra/dynamo-stackRisk Level:9.8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION Node.js @epc-infra/dynamo-stack module could allow a remote...
ÆPIC Leak is the first CPU flaw able to architecturally disclose sensitive data
Researchers uncovered a new flaw, dubbed ÆPIC, in Intel CPUs that enables attackers to obtain encryption keys and other secret...
Zoom fixed two flaws in macOS App that were disclosed at DEF CON
Zoom addressed two high-severity vulnerabilities in its macOS app that were disclosed at the DEF CON conference. Zoom last week...
Daily Vulnerability Trends: Wed Aug 17 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-35804SMB Client and Server Remote Code Execution Vulnerability.CVE-2022-31793do_request in request.c in muhttpd...
Two more malicious Python packages in the PyPI
On August 8, CheckPoint published a report on ten malicious Python packages in the Python Package Index (PyPI), the most...
