CVE List - 2022 / January
Showing 1 - 100 of 1988 CVEs for January 2022 (Page 1 of 20)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2021-41817 | 2022-01-01 | Date.parse in the date gem through 3.2.0 for Ruby allows... |
| CVE-2021-44716 | 2022-01-01 | net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows... |
| CVE-2021-44717 | 2022-01-01 | Go before 1.16.12 and 1.17.x before 1.17.5 on UNIX allows... |
| CVE-2021-41819 | 2022-01-01 | CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes in cookie... |
| CVE-2021-43333 | 2022-01-01 | The Datalogic DXU service on (for example) DL-Axist devices does... |
| CVE-2021-44852 | 2022-01-01 | An issue was discovered in BS_RCIO64.sys in Biostar RACING GT... |
| CVE-2021-45960 | 2022-01-01 | In Expat (aka libexpat) before 2.4.3, a left shift by... |
| CVE-2021-45972 | 2022-01-01 | The giftrans function in giftrans 1.12.2 contains a stack-based buffer... |
| CVE-2021-44896 | 2022-01-01 | DMP Roadmap before 3.0.4 allows XSS. |
| CVE-2022-22293 | 2022-01-01 | admin/limits.php in Dolibarr 7.0.2 allows HTML injection, as demonstrated by... |
| CVE-2021-36751 | 2022-01-02 | ENC DataVault 7.2.3 and before, and OEM versions, use an... |
| CVE-2022-0080 | 2022-01-02 | Heap-based Buffer Overflow in mruby/mruby |
| CVE-2022-0079 | 2022-01-03 | Generation of Error Message Containing Sensitive Information in star7th/showdoc |
| CVE-2021-25981 | 2022-01-03 | Talkyard - Insufficient Session Expiration |
| CVE-2021-25994 | 2022-01-03 | Userfrosting - Host-Header Injection Leads to Account Takeover |
| CVE-2020-11263 | 2022-01-03 | An integer overflow due to improper check performed after the... |
| CVE-2021-1894 | 2022-01-03 | Improper access control in TrustZone due to improper error handling... |
| CVE-2021-1918 | 2022-01-03 | Improper handling of resource allocation in virtual machines can lead... |
| CVE-2021-30262 | 2022-01-03 | Improper validation of a socket state when socket events are... |
| CVE-2021-30267 | 2022-01-03 | Possible integer overflow to buffer overflow due to improper input... |
| CVE-2021-30268 | 2022-01-03 | Possible heap Memory Corruption Issue due to lack of input... |
| CVE-2021-30269 | 2022-01-03 | Possible null pointer dereference due to lack of TLB validation... |
| CVE-2021-30270 | 2022-01-03 | Possible null pointer dereference in thread profile trap handler due... |
| CVE-2021-30271 | 2022-01-03 | Possible null pointer dereference in trap handler due to lack... |
| CVE-2021-30272 | 2022-01-03 | Possible null pointer dereference in thread cache operation handler due... |
| CVE-2021-30273 | 2022-01-03 | Possible assertion due to improper handling of IPV6 packet with... |
| CVE-2021-30274 | 2022-01-03 | Possible integer overflow in access control initialization interface due to... |
| CVE-2021-30275 | 2022-01-03 | Possible integer overflow in page alignment interface due to lack... |
| CVE-2021-30276 | 2022-01-03 | Improper access control while doing XPU re-configuration dynamically can lead... |
| CVE-2021-30278 | 2022-01-03 | Improper input validation in TrustZone memory transfer interface can lead... |
| CVE-2021-30279 | 2022-01-03 | Possible access control violation while setting current permission for VMIDs... |
| CVE-2021-30282 | 2022-01-03 | Possible out of bound write in RAM partition table due... |
| CVE-2021-30283 | 2022-01-03 | Possible denial of service due to improper handling of debug... |
| CVE-2021-30289 | 2022-01-03 | Possible buffer overflow due to lack of range check while... |
| CVE-2021-30293 | 2022-01-03 | Possible assertion due to lack of input validation in PUSCH... |
| CVE-2021-30298 | 2022-01-03 | Possible out of bound access due to improper validation of... |
| CVE-2021-30303 | 2022-01-03 | Possible buffer overflow due to lack of buffer length check... |
| CVE-2021-30335 | 2022-01-03 | Possible assertion in QOS request due to improper validation when... |
| CVE-2021-30336 | 2022-01-03 | Possible out of bound read due to lack of domain... |
| CVE-2021-30337 | 2022-01-03 | Possible use after free when process shell memory is freed... |
| CVE-2021-30348 | 2022-01-03 | Improper validation of LLM utility timers availability can lead to... |
| CVE-2021-30351 | 2022-01-03 | An out of bound memory access can occur due to... |
| CVE-2021-35093 | 2022-01-03 | Possible memory corruption in BT controller when it receives an... |
| CVE-2021-44158 | 2022-01-03 | ASUS RT-AX56U Router - Stack-based buffer overflow |
| CVE-2021-45916 | 2022-01-03 | SUN & MOON RISE CO., LTD. Shockwall - Improper Input Validation |
| CVE-2021-45917 | 2022-01-03 | SUN & MOON RISE CO., LTD. Shockwall - Improper Authentication |
| CVE-2021-44674 | 2022-01-03 | An information exposure issue has been discovered in Opmantek Open-AudIT... |
| CVE-2021-24680 | 2022-01-03 | WP Travel Engine < 5.3.1 - Editor+ Stored Cross-Site Scripting |
| CVE-2021-24786 | 2022-01-03 | Download Monitor < 4.4.5 - Admin+ SQL Injection |
| CVE-2021-24828 | 2022-01-03 | Mortgage Calculator / Loan Calculator < 1.5.17 - Contributor+ Stored Cross-Site Scripting |
| CVE-2021-24831 | 2022-01-03 | Tab - Accordion, FAQ < 1.3.2 - Unauthenticated AJAX Calls |
| CVE-2021-24893 | 2022-01-03 | Stars Rating < 3.5.1 - Comments Denial of Service |
| CVE-2021-24963 | 2022-01-03 | LiteSpeed Cache < 4.4.4 - Admin+ Reflected Cross-Site Scripting |
| CVE-2021-24964 | 2022-01-03 | LiteSpeed Cache < 4.4.4 - IP Check Bypass to Unauthenticated Stored XSS |
| CVE-2021-24973 | 2022-01-03 | Site Reviews < 5.17.3 - Unauthenticated Stored Cross-Site Scripting |
| CVE-2021-24991 | 2022-01-03 | WooCommerce PDF Invoices & Packing Slips < 2.10.5 - Reflected Cross-Site Scripting |
| CVE-2021-24999 | 2022-01-03 | Booster for Woocommerce < 5.4.9 - Reflected Cross-Site Scripting in PDF Invoicing Module |
| CVE-2021-25000 | 2022-01-03 | Booster for WooCommerce < 5.4.9 - Reflected Cross-Site Scripting in General Module |
| CVE-2021-25001 | 2022-01-03 | Booster for WooCommerce < 5.4.9 - Reflected Cross-Site Scripting in Product XML Feeds Module |
| CVE-2021-25016 | 2022-01-03 | Chaty < 2.8.3 - Reflected Cross-Site Scripting |
| CVE-2021-25020 | 2022-01-03 | CAOS < 4.1.9 - Admin+ Arbitrary Folder Deletion via Path Traversal |
| CVE-2021-25021 | 2022-01-03 | OMGF < 4.5.12 - Admin+ Arbitrary Folder Deletion via Path Traversal |
| CVE-2021-25023 | 2022-01-03 | Speed Booster Pack < 4.3.3.1 - Admin+ SQL Injection |
| CVE-2021-25022 | 2022-01-03 | UpdraftPlus < 1.16.66 - Reflected Cross-Site Scripting |
| CVE-2021-25027 | 2022-01-03 | PowerPack Addons for Elementor < 2.6.2 - Reflected Cross-Site Scripting |
| CVE-2021-25030 | 2022-01-03 | Events Made Easy < 2.2.36 - Subscriber+ SQL Injection |
| CVE-2021-25040 | 2022-01-03 | Booking Calendar < 8.9.2 - Reflected Cross-Site Scripting |
| CVE-2021-45428 | 2022-01-03 | TLR-2005KSH is affected by an incorrect access control vulnerability. THe... |
| CVE-2021-46109 | 2022-01-03 | Invalid input sanitizing leads to reflected Cross Site Scripting (XSS)... |
| CVE-2021-3837 | 2022-01-03 | Improper Authorization in openwhyd/openwhyd |
| CVE-2020-23026 | 2022-01-03 | A NULL pointer dereference in the main() function dhry_1.c of... |
| CVE-2021-20147 | 2022-01-03 | ManageEngine ADSelfService Plus below build 6116 contains an observable response... |
| CVE-2021-20148 | 2022-01-03 | ManageEngine ADSelfService Plus below build 6116 stores the password policy... |
| CVE-2021-37120 | 2022-01-03 | There is a Double free vulnerability in Smartphone.Successful exploitation of... |
| CVE-2021-37121 | 2022-01-03 | There is a Configuration defects in Smartphone.Successful exploitation of this... |
| CVE-2021-37098 | 2022-01-03 | Hilinksvc service exists a Data Processing Errors vulnerability .Successful exploitation... |
| CVE-2021-37116 | 2022-01-03 | PCManager has a Weaknesses Introduced During Design vulnerability .Successful exploitation... |
| CVE-2021-37125 | 2022-01-03 | Arbitrary file has a Exposure of Sensitive Information to an... |
| CVE-2021-37126 | 2022-01-03 | Arbitrary file has a Exposure of Sensitive Information to an... |
| CVE-2021-37128 | 2022-01-03 | HwPCAssistant has a Path Traversal vulnerability .Successful exploitation of this... |
| CVE-2021-37132 | 2022-01-03 | PackageManagerService has a Permissions, Privileges, and Access Controls vulnerability .Successful... |
| CVE-2021-37134 | 2022-01-03 | Location-related APIs exists a Race Condition vulnerability.Successful exploitation of this... |
| CVE-2021-39968 | 2022-01-03 | Changlian Blocklist has a Business Logic Errors vulnerability .Successful exploitation... |
| CVE-2021-39970 | 2022-01-03 | HwPCAssistant has a Improper Input Validation vulnerability.Successful exploitation of this... |
| CVE-2021-39971 | 2022-01-03 | Password vault has a External Control of System or Configuration... |
| CVE-2021-39972 | 2022-01-03 | MyHuawei-App has a Exposure of Sensitive Information to an Unauthorized... |
| CVE-2021-39975 | 2022-01-03 | Hilinksvc has a Data Processing Errors vulnerability.Successful exploitation of this... |
| CVE-2021-39978 | 2022-01-03 | Telephony application has a SQL Injection vulnerability.Successful exploitation of this... |
| CVE-2021-39979 | 2022-01-03 | HHEE system has a Code Injection vulnerability.Successful exploitation of this... |
| CVE-2021-39980 | 2022-01-03 | Telephony application has a Exposure of Sensitive Information to an... |
| CVE-2021-39981 | 2022-01-03 | Chang Lian application has a vulnerability which can be maliciously... |
| CVE-2021-39982 | 2022-01-03 | Phone Manager application has a Improper Privilege Management vulnerability.Successful exploitation... |
| CVE-2021-37111 | 2022-01-03 | There is a Memory leakage vulnerability in Smartphone.Successful exploitation of... |
| CVE-2021-37113 | 2022-01-03 | There is a Privilege escalation vulnerability with the file system... |
| CVE-2021-37114 | 2022-01-03 | There is an Out-of-bounds read vulnerability in Smartphone.Successful exploitation of... |
| CVE-2021-37117 | 2022-01-03 | There is a Service logic vulnerability in Smartphone.Successful exploitation of... |
| CVE-2021-37119 | 2022-01-03 | There is a Service logic vulnerability in Smartphone.Successful exploitation of... |
| CVE-2021-37112 | 2022-01-03 | Hisuite module has a External Control of System or Configuration... |
| CVE-2021-37118 | 2022-01-03 | The HwNearbyMain module has a Improper Handling of Exceptional Conditions... |
| CVE-2021-39977 | 2022-01-03 | The HwNearbyMain module has a NULL Pointer Dereference vulnerability.Successful exploitation... |