Daily Vulnerability Trends: Fri May 13 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2021-40444Microsoft MSHTML Remote Code Execution VulnerabilityCVE-2022-30525A OS command injection vulnerability in the...
CVE
Siemens SICAM P850 and Siemens SICAM P855 cross-site scripting | CVE-2022-29882
NAME Siemens SICAM P850 and Siemens SICAM P855 cross-site scripting Platforms Affected:Siemens SICAM P850 Siemens SICAM P855Risk Level:8.3Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION...
Siemens SICAM P850 and Siemens SICAM P855 denial of service | CVE-2022-29873
NAME Siemens SICAM P850 and Siemens SICAM P855 denial of service Platforms Affected:Siemens SICAM P850 Siemens SICAM P855Risk Level:9.8Exploitability:UnprovenConsequences:Denial of...
Siemens Desigo products code execution | CVE-2022-24039
NAME Siemens Desigo products code execution Platforms Affected:Siemens Desigo DXR2 Siemens Desigo PXC3 Siemens Desigo PXC4 Siemens Desigo PXC5Risk Level:9.9Exploitability:UnprovenConsequences:Gain...
cURL libcurl security bypass | CVE-2022-27782
NAME cURL libcurl security bypass Platforms Affected:cURL libcurl 7.83.0 cURL libcurl 7.16.1Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION cURL libcurl could allow a...
Siemens SICAM P850 and Siemens SICAM P855 denial of service | CVE-2022-29872
NAME Siemens SICAM P850 and Siemens SICAM P855 denial of service Platforms Affected:Siemens SICAM P850 Siemens SICAM P855Risk Level:8.8Exploitability:UnprovenConsequences:Denial of...
SAP Web Dispatcher and SAP Netweaver AS for ABAP and Java cross-site scripting | CVE-2022-27656
NAME SAP Web Dispatcher and SAP Netweaver AS for ABAP and Java cross-site scripting Platforms Affected:SAP ABAP Server of SAP...
Siemens SICAM P850 and Siemens SICAM P855 information disclosure | CVE-2022-29874
NAME Siemens SICAM P850 and Siemens SICAM P855 information disclosure Platforms Affected:Siemens SICAM P850 Siemens SICAM P855Risk Level:8.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION...
Beehive Forum header injection |
NAME Beehive Forum header injection Platforms Affected:Beehive Forum Beehive Forum 1.5.2Risk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Beehive Forum is vulnerable...
cURL libcurl security bypass | CVE-2022-27779
NAME cURL libcurl security bypass Platforms Affected:cURL libcurl 7.82.0 cURL libcurl 7.83.0Risk Level:9.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION cURL libcurl could allow a...
Google Chrome for Android Web Contents code execution | CVE-2022-1637
NAME Google Chrome for Android Web Contents code execution Platforms Affected:Google Chrome for Android 101.0 Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access...
Magnitude Simba Amazon Athena ODBC Driver code execution | CVE-2022-29971
NAME Magnitude Simba Amazon Athena ODBC Driver code execution Platforms Affected:Magnitude Simba Amazon Athena ODBC Driver 1.1.1 Magnitude Simba Amazon...
Google Chrome for Android Performance APIs code execution | CVE-2022-1636
NAME Google Chrome for Android Performance APIs code execution Platforms Affected:Google Chrome for Android 101.0 Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access...
Magnitude Simba Amazon Redshift JDBC Driver code execution | CVE-2022-30240
NAME Magnitude Simba Amazon Redshift JDBC Driver code execution Platforms Affected:Magnitude Simba Amazon Redshift JDBC Driver 1.2.40 Magnitude Simba Amazon...
Google Chrome for Android Web UI Diagnostics code execution | CVE-2022-1641
NAME Google Chrome for Android Web UI Diagnostics code execution Platforms Affected:Google Chrome for Android 101.0 Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain...
Magnitude Simba Amazon Redshift ODBC Driver code execution | CVE-2022-29972
NAME Magnitude Simba Amazon Redshift ODBC Driver code execution Platforms Affected:Magnitude Simba Amazon Redshift ODBC Driver 1.4.14 Magnitude Simba Amazon...
Google Chrome for Android Permission Prompts code execution | CVE-2022-1635
NAME Google Chrome for Android Permission Prompts code execution Platforms Affected:Google Chrome for Android 101.0 Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access...
Galleon NTS-6002-GPS command execution | CVE-2022-27224
NAME Galleon NTS-6002-GPS command execution Platforms Affected:Galleon NTS-6002-GPS 4.14.103-Galleon-NTS-6002.V12 4Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Galleon NTS-6002-GPS could allow a remote authenticated...
QNAP QTS, QuTS hero, and QuTScloud command execution | CVE-2021-44051
NAME QNAP QTS, QuTS hero, and QuTScloud command execution Platforms Affected:QNAP QTS QNAP QuTS hero QNAP QuTScloudRisk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...
Magnitude Simba Amazon Athena JDBC Driver code execution | CVE-2022-30239
NAME Magnitude Simba Amazon Athena JDBC Driver code execution Platforms Affected:Magnitude Simba Amazon Athena JDBC Driver 2.0.25 Magnitude Simba Amazon...
Google Chrome for Android ANGLE code execution | CVE-2022-1639
NAME Google Chrome for Android ANGLE code execution Platforms Affected:Google Chrome for Android 101.0 Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...
Google Chrome for Android Sharing code execution | CVE-2022-1640
NAME Google Chrome for Android Sharing code execution Platforms Affected:Google Chrome for Android 101.0 Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...
Google Chrome for Android Sharesheet code execution | CVE-2022-1633
NAME Google Chrome for Android Sharesheet code execution Platforms Affected:Google Chrome for Android 101.0 Google Chrome 101.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...
Solana rBPF security bypass | CVE-2022-23066
NAME Solana rBPF security bypass Platforms Affected:Solana rBPF 0.2.26 Solana rBPF 0.2.27Risk Level:9.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Solana rBPF could allow a...
