CVE List - 2022 / November
Showing 1101 - 1200 of 2020 CVEs for November 2022 (Page 12 of 21)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-42111 | 2022-11-15 | A Cross-site scripting (XSS) vulnerability in the Sharing module's user... |
| CVE-2022-42120 | 2022-11-15 | A SQL injection vulnerability in the Fragment module in Liferay... |
| CVE-2022-42121 | 2022-11-15 | A SQL injection vulnerability in the Layout module in Liferay... |
| CVE-2022-42122 | 2022-11-15 | A SQL injection vulnerability in the Friendly Url module in... |
| CVE-2022-42123 | 2022-11-15 | A Zip slip vulnerability in the Elasticsearch Connector in Liferay... |
| CVE-2022-42124 | 2022-11-15 | ReDoS vulnerability in LayoutPageTemplateEntryUpgradeProcess in Liferay Portal 7.3.2 through 7.4.3.4... |
| CVE-2022-43279 | 2022-11-15 | LimeSurvey before v5.0.4 was discovered to contain a SQL injection... |
| CVE-2022-45379 | 2022-11-15 | Jenkins Script Security Plugin 1189.vb_a_b_7c8fd5fde and earlier stores whole-script approvals... |
| CVE-2021-4240 | 2022-11-15 | phpservermon User.php generatePasswordResetToken predictable algorithm in random number generator |
| CVE-2021-4241 | 2022-11-15 | phpservermon User.php setUserLoggedIn predictable algorithm in random number generator |
| CVE-2022-25667 | 2022-11-15 | Information disclosure in kernel due to improper handling of ICMP... |
| CVE-2022-25671 | 2022-11-15 | Denial of service in MODEM due to reachable assertion in... |
| CVE-2022-25674 | 2022-11-15 | Cryptographic issues in WLAN during the group key handshake of... |
| CVE-2022-25676 | 2022-11-15 | Information disclosure in video due to buffer over-read while parsing... |
| CVE-2022-25679 | 2022-11-15 | Denial of service in video due to improper access control... |
| CVE-2022-25710 | 2022-11-15 | Denial of service due to null pointer dereference when GATT... |
| CVE-2022-25724 | 2022-11-15 | Memory corruption in graphics due to buffer overflow while validating... |
| CVE-2022-25727 | 2022-11-15 | Memory Corruption in modem due to improper length check while... |
| CVE-2022-25741 | 2022-11-15 | Denial of service in WLAN due to potential null pointer... |
| CVE-2022-25742 | 2022-11-15 | Denial of service in modem due to infinite loop while... |
| CVE-2022-25743 | 2022-11-15 | Memory corruption in graphics due to use-after-free while importing graphics... |
| CVE-2022-29275 | 2022-11-15 | In UsbCoreDxe, untrusted input may allow SMRAM or OS memory... |
| CVE-2022-29276 | 2022-11-15 | SMI functions in AhciBusDxe use untrusted inputs leading to corruption... |
| CVE-2022-29277 | 2022-11-15 | Incorrect pointer checks within the the FwBlockServiceSmm driver can allow... |
| CVE-2022-29278 | 2022-11-15 | Incorrect pointer checks within the NvmExpressDxe driver can allow tampering... |
| CVE-2022-29279 | 2022-11-15 | Use of a untrusted pointer allows tampering with SMRAM and... |
| CVE-2022-30283 | 2022-11-15 | In UsbCoreDxe, tampering with the contents of the USB working... |
| CVE-2022-30768 | 2022-11-15 | A Stored Cross Site Scripting (XSS) issue in ZoneMinder 1.36.12... |
| CVE-2022-30769 | 2022-11-15 | Session fixation exists in ZoneMinder through 1.36.12 as an attacker... |
| CVE-2022-30771 | 2022-11-15 | Initialization function in PnpSmm could lead to SMRAM corruption when... |
| CVE-2022-30772 | 2022-11-15 | Manipulation of the input address in PnpSmm function 0x52 could... |
| CVE-2022-33234 | 2022-11-15 | Memory corruption in video due to configuration weakness. in Snapdragon... |
| CVE-2022-33236 | 2022-11-15 | Transient DOS due to buffer over-read in WLAN firmware while... |
| CVE-2022-33237 | 2022-11-15 | Transient DOS due to buffer over-read in WLAN firmware while... |
| CVE-2022-33239 | 2022-11-15 | Transient DOS due to loop with unreachable exit condition in... |
| CVE-2022-38201 | 2022-11-15 | An unvalidated redirect vulnerability exists in Esri ArcGIS Quick Capture Web Designer versions 10.8.1 to 10.9.1. |
| CVE-2022-38666 | 2022-11-15 | Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.146 and earlier unconditionally... |
| CVE-2022-3997 | 2022-11-15 | MonikaBrzica scm upis_u_bazu.php sql injection |
| CVE-2022-3998 | 2022-11-15 | MonikaBrzica scm uredi_korisnika.php sql injection |
| CVE-2022-4006 | 2022-11-15 | WBCE CMS Header class.login.php increase_attempts excessive authentication |
| CVE-2022-40308 | 2022-11-15 | Apache Archiva prior to 2.2.9 may allow the anonymous user to read arbitrary files |
| CVE-2022-40309 | 2022-11-15 | Apache Archiva prior to 2.2.9 allows an authenticated user to delete arbitrary directories |
| CVE-2022-40844 | 2022-11-15 | In Tenda (Shenzhen Tenda Technology Co., Ltd) AC1200 Router model... |
| CVE-2022-40845 | 2022-11-15 | The Tenda AC1200 Router model W15Ev2 V15.11.0.10(1576) is affected by... |
| CVE-2022-40846 | 2022-11-15 | In Tenda AC1200 Router model W15Ev2 V15.11.0.10(1576), a Stored Cross... |
| CVE-2022-40847 | 2022-11-15 | In Tenda AC1200 Router model W15Ev2 V15.11.0.10(1576), there exists a... |
| CVE-2022-41395 | 2022-11-15 | Tenda AC1200 Router Model W15Ev2 V15.11.0.10(1576) was discovered to contain... |
| CVE-2022-41396 | 2022-11-15 | Tenda AC1200 Router Model W15Ev2 V15.11.0.10(1576) was discovered to contain... |
| CVE-2022-41916 | 2022-11-15 | Read one byte past a buffer when normalizing Unicode |
| CVE-2022-41917 | 2022-11-15 | Incorrect Error Handling Allowed Partial File Reads Over REST API in OpenSearch |
| CVE-2022-41918 | 2022-11-15 | Issue with fine-grained access control of indices backing data streams |
| CVE-2022-42053 | 2022-11-15 | Tenda AC1200 Router Model W15Ev2 V15.11.0.10(1576) was discovered to contain... |
| CVE-2022-42058 | 2022-11-15 | Tenda AC1200 Router Model W15Ev2 V15.11.0.10(1576) was discovered to contain... |
| CVE-2022-42060 | 2022-11-15 | Tenda AC1200 Router Model W15Ev2 V15.11.0.10(1576) was discovered to contain... |
| CVE-2022-42118 | 2022-11-15 | A Cross-site scripting (XSS) vulnerability in the Portal Search module... |
| CVE-2022-42119 | 2022-11-15 | Certain Liferay products are vulnerable to Cross Site Scripting (XSS)... |
| CVE-2022-42125 | 2022-11-15 | Zip slip vulnerability in FileUtil.unzip in Liferay Portal 7.4.3.5 through... |
| CVE-2022-42126 | 2022-11-15 | The Asset Libraries module in Liferay Portal 7.3.5 through 7.4.3.28,... |
| CVE-2022-42127 | 2022-11-15 | The Friendly Url module in Liferay Portal 7.4.3.5 through 7.4.3.36,... |
| CVE-2022-42128 | 2022-11-15 | The Hypermedia REST APIs module in Liferay Portal 7.4.1 through... |
| CVE-2022-42129 | 2022-11-15 | An Insecure direct object reference (IDOR) vulnerability in the Dynamic... |
| CVE-2022-42130 | 2022-11-15 | The Dynamic Data Mapping module in Liferay Portal 7.1.0 through... |
| CVE-2022-42131 | 2022-11-15 | Certain Liferay products are affected by: Missing SSL Certificate Validation... |
| CVE-2022-42132 | 2022-11-15 | The Test LDAP Users functionality in Liferay Portal 7.0.0 through... |
| CVE-2022-42977 | 2022-11-15 | The Netic User Export add-on before 1.3.5 for Atlassian Confluence... |
| CVE-2022-42978 | 2022-11-15 | In the Netic User Export add-on before 1.3.5 for Atlassian... |
| CVE-2022-43071 | 2022-11-15 | A stack overflow in the Catalog::readPageLabelTree2(Object*) function of XPDF v4.04... |
| CVE-2022-43265 | 2022-11-15 | An arbitrary file upload vulnerability in the component /pages/save_user.php of... |
| CVE-2022-45380 | 2022-11-15 | Jenkins JUnit Plugin 1159.v0b_396e1e07dd and earlier converts HTTP(S) URLs in... |
| CVE-2022-45381 | 2022-11-15 | Jenkins Pipeline Utility Steps Plugin 2.13.1 and earlier does not... |
| CVE-2022-45382 | 2022-11-15 | Jenkins Naginator Plugin 1.18.1 and earlier does not escape display... |
| CVE-2022-45383 | 2022-11-15 | An incorrect permission check in Jenkins Support Core Plugin 1206.v14049fa_b_d860... |
| CVE-2022-45384 | 2022-11-15 | Jenkins Reverse Proxy Auth Plugin 1.7.3 and earlier stores the... |
| CVE-2022-45385 | 2022-11-15 | A missing permission check in Jenkins CloudBees Docker Hub/Registry Notification... |
| CVE-2022-45386 | 2022-11-15 | Jenkins Violations Plugin 0.7.11 and earlier does not configure its... |
| CVE-2022-45387 | 2022-11-15 | Jenkins BART Plugin 1.0.3 and earlier does not escape the... |
| CVE-2022-45388 | 2022-11-15 | Jenkins Config Rotator Plugin 2.0.1 and earlier does not restrict... |
| CVE-2022-45389 | 2022-11-15 | A missing permission check in Jenkins XP-Dev Plugin 1.0 and... |
| CVE-2022-45390 | 2022-11-15 | A missing permission check in Jenkins loader.io Plugin 1.0.1 and... |
| CVE-2022-45391 | 2022-11-15 | Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.143 and earlier globally... |
| CVE-2022-45392 | 2022-11-15 | Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.143 and earlier stores... |
| CVE-2022-45393 | 2022-11-15 | A cross-site request forgery (CSRF) vulnerability in Jenkins Delete log... |
| CVE-2022-45394 | 2022-11-15 | A missing permission check in Jenkins Delete log Plugin 1.0... |
| CVE-2022-45395 | 2022-11-15 | Jenkins CCCC Plugin 0.6 and earlier does not configure its... |
| CVE-2022-45396 | 2022-11-15 | Jenkins SourceMonitor Plugin 0.2 and earlier does not configure its... |
| CVE-2022-45397 | 2022-11-15 | Jenkins OSF Builder Suite : : XML Linter Plugin 1.0.2... |
| CVE-2022-45398 | 2022-11-15 | A cross-site request forgery (CSRF) vulnerability in Jenkins Cluster Statistics... |
| CVE-2022-45399 | 2022-11-15 | A missing permission check in Jenkins Cluster Statistics Plugin 0.4.6... |
| CVE-2022-45400 | 2022-11-15 | Jenkins JAPEX Plugin 1.7 and earlier does not configure its... |
| CVE-2022-45401 | 2022-11-15 | Jenkins Associated Files Plugin 0.2.1 and earlier does not escape... |
| CVE-2022-45402 | 2022-11-15 | Apache Airflow: Open redirect during login |
| CVE-2022-3480 | 2022-11-15 | Denial-of-Service vulnerability in PHOENIX CONTACT mGuard product family |
| CVE-2022-3737 | 2022-11-15 | Out-of-bounds Read in PHOENIX CONTACT Automationworx Software Suite |
| CVE-2022-3461 | 2022-11-15 | Buffer Overflow in PHOENIX CONTACT Automationworx Software Suite |
| CVE-2022-3240 | 2022-11-15 | The "Follow Me Plugin" plugin for WordPress is vulnerable to... |
| CVE-2022-3893 | 2022-11-15 | Potential XSS on custom menu navigation |
| CVE-2022-3895 | 2022-11-15 | Potential XSS in common user interface component library |
| CVE-2022-3958 | 2022-11-15 | Potential XSS on personal menu navigation |
| CVE-2022-41611 | 2022-11-15 | Potential XSS on sidebar navigation |
| CVE-2022-41789 | 2022-11-15 | Potential XSS on default page header |