CVE List - 2022 / November
Showing 901 - 1000 of 2020 CVEs for November 2022 (Page 10 of 21)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-3957 | 2022-11-11 | GPAC SVG Parser svg_attributes.c svg_parse_preserveaspectratio memory leak |
| CVE-2022-3959 | 2022-11-11 | drogon Session Hash small space of random values |
| CVE-2022-41873 | 2022-11-11 | Out-of-bounds read and write in BLE L2CAP module |
| CVE-2022-41882 | 2022-11-11 | Nextcloud Desktop vulnerable to code injection via malicious link |
| CVE-2022-41892 | 2022-11-11 | Arches vulnerable to SQL Injection |
| CVE-2022-41904 | 2022-11-11 | Element iOS is vulnerable due to missing decoration for events decrypted with untrusted Megolm sessions |
| CVE-2022-41905 | 2022-11-11 | wsgidav is vulnerable to Cross-Site Scripting (XSS) when directory browsing is enabled |
| CVE-2022-41906 | 2022-11-11 | OpenSearch Notifications is vulnerable to Server-Side Request Forgery (SSRF) |
| CVE-2022-45182 | 2022-11-11 | Pi-Star_DV_Dash (for Pi-Star DV) before 5aa194d mishandles the module parameter. |
| CVE-2022-45193 | 2022-11-11 | CBRN-Analysis before 22 has weak file permissions under Public Profile,... |
| CVE-2022-45194 | 2022-11-11 | CBRN-Analysis before 22 allows XXE attacks via am mws XML... |
| CVE-2022-41854 | 2022-11-11 | Stack Overflow in Snakeyaml |
| CVE-2022-26341 | 2022-11-11 | Insufficiently protected credentials in software in Intel(R) AMT SDK before... |
| CVE-2022-26845 | 2022-11-11 | Improper authentication in firmware for Intel(R) AMT before versions 11.8.93,... |
| CVE-2022-27497 | 2022-11-11 | Null pointer dereference in firmware for Intel(R) AMT before version... |
| CVE-2022-29893 | 2022-11-11 | Improper authentication in firmware for Intel(R) AMT before versions 11.8.93,... |
| CVE-2021-33159 | 2022-11-11 | Improper authentication in subsystem for Intel(R) AMT before versions 11.8.93,... |
| CVE-2022-29466 | 2022-11-11 | Improper input validation in firmware for Intel(R) SPS before version... |
| CVE-2022-29515 | 2022-11-11 | Missing release of memory after effective lifetime in firmware for... |
| CVE-2022-30691 | 2022-11-11 | Uncontrolled resource consumption in the Intel(R) Support Android application before... |
| CVE-2022-36367 | 2022-11-11 | Incorrect default permissions in the Intel(R) Support Android application before... |
| CVE-2022-30297 | 2022-11-11 | Cross-site scripting in the Intel(R) EMA software before version 1.8.0... |
| CVE-2022-27638 | 2022-11-11 | Uncontrolled search path element in the Intel(R) Advanced Link Analyzer... |
| CVE-2022-26086 | 2022-11-11 | Uncontrolled search path element in the PresentMon software maintained by... |
| CVE-2022-26508 | 2022-11-11 | Improper authentication in the Intel(R) SDP Tool before version 3.0.0... |
| CVE-2022-27499 | 2022-11-11 | Premature release of resource during expected lifetime in the Intel(R)... |
| CVE-2022-30548 | 2022-11-11 | Uncontrolled search path element in the Intel(R) Glorp software may... |
| CVE-2022-27187 | 2022-11-11 | Uncontrolled search path element in the Intel(R) Quartus Prime Standard... |
| CVE-2022-27233 | 2022-11-11 | XML injection in the Quartus(R) Prime Programmer included in the... |
| CVE-2021-26251 | 2022-11-11 | Improper input validation in the Intel(R) Distribution of OpenVINO(TM) Toolkit... |
| CVE-2022-33942 | 2022-11-11 | Protection mechanism failure in the Intel(R) DCM software before version... |
| CVE-2022-29486 | 2022-11-11 | Improper buffer restrictions in the Hyperscan library maintained by Intel(R)... |
| CVE-2022-26513 | 2022-11-11 | Out-of-bounds write in some Intel(R) XMM(TM) 7560 Modem software before... |
| CVE-2022-27874 | 2022-11-11 | Improper authentication in some Intel(R) XMM(TM) 7560 Modem software before... |
| CVE-2022-28611 | 2022-11-11 | Improper input validation in some Intel(R) XMM(TM) 7560 Modem software... |
| CVE-2022-26369 | 2022-11-11 | Out-of-bounds read in some Intel(R) XMM(TM) 7560 Modem software before... |
| CVE-2022-28126 | 2022-11-11 | Improper input validation in some Intel(R) XMM(TM) 7560 Modem software... |
| CVE-2022-26367 | 2022-11-11 | Improper buffer restrictions in some Intel(R) XMM(TM) 7560 Modem software... |
| CVE-2022-26079 | 2022-11-11 | Improper conditions check in some Intel(R) XMM(TM) 7560 Modem software... |
| CVE-2022-27639 | 2022-11-11 | Incomplete cleanup in some Intel(R) XMM(TM) 7560 Modem software before... |
| CVE-2022-26045 | 2022-11-11 | Improper buffer restrictions in some Intel(R) XMM(TM) 7560 Modem software... |
| CVE-2021-33164 | 2022-11-11 | Improper access control in BIOS firmware for some Intel(R) NUCs... |
| CVE-2022-33176 | 2022-11-11 | Improper input validation in BIOS firmware for some Intel(R) NUC... |
| CVE-2022-37345 | 2022-11-11 | Improper authentication in BIOS firmware[A1] for some Intel(R) NUC Kits... |
| CVE-2022-21794 | 2022-11-11 | Improper authentication in BIOS firmware for some Intel(R) NUC Boards,... |
| CVE-2022-34152 | 2022-11-11 | Improper input validation in BIOS firmware for some Intel(R) NUC... |
| CVE-2022-32569 | 2022-11-11 | Improper buffer restrictions in BIOS firmware for some Intel(R) NUC... |
| CVE-2022-36789 | 2022-11-11 | Improper access control in BIOS firmware for some Intel(R) NUC... |
| CVE-2022-35276 | 2022-11-11 | Improper access control in BIOS firmware for some Intel(R) NUC... |
| CVE-2022-38099 | 2022-11-11 | Improper input validation in BIOS firmware for some Intel(R) NUC... |
| CVE-2022-26124 | 2022-11-11 | Improper buffer restrictions in BIOS firmware for some Intel(R) NUC... |
| CVE-2022-36370 | 2022-11-11 | Improper authentication in BIOS firmware for some Intel(R) NUC Boards... |
| CVE-2022-37334 | 2022-11-11 | Improper initialization in BIOS firmware for some Intel(R) NUC 11... |
| CVE-2022-36349 | 2022-11-11 | Insecure default variable initialization in BIOS firmware for some Intel(R)... |
| CVE-2022-30542 | 2022-11-11 | Improper input validation in the firmware for some Intel(R) Server... |
| CVE-2022-25917 | 2022-11-11 | Uncaught exception in the firmware for some Intel(R) Server Board... |
| CVE-2022-26006 | 2022-11-11 | Improper input validation in the BIOS firmware for some Intel(R)... |
| CVE-2022-21198 | 2022-11-11 | Time-of-check time-of-use race condition in the BIOS firmware for some... |
| CVE-2022-36400 | 2022-11-11 | Path traversal in the installer software for some Intel(r) NUC... |
| CVE-2022-36384 | 2022-11-11 | Unquoted search path in the installer software for some Intel(r)... |
| CVE-2022-36380 | 2022-11-11 | Uncontrolled search path in the installer software for some Intel(r)... |
| CVE-2022-36377 | 2022-11-11 | Insecure inherited permissions in some Intel(R) Wireless Adapter Driver installation... |
| CVE-2022-33973 | 2022-11-11 | Improper access control in the Intel(R) WAPI Security software for... |
| CVE-2022-26047 | 2022-11-11 | Improper input validation for some Intel(R) PROSet/Wireless WiFi, Intel vPro(R)... |
| CVE-2022-26024 | 2022-11-11 | Improper access control in the Intel(R) NUC HDMI Firmware Update... |
| CVE-2022-28667 | 2022-11-11 | Out-of-bounds write for some Intel(R) PROSet/Wireless WiFi software before version... |
| CVE-2021-33064 | 2022-11-11 | Uncontrolled search path in the software installer for Intel(R) System... |
| CVE-2022-26028 | 2022-11-11 | Uncontrolled search path in the Intel(R) VTune(TM) Profiler software before... |
| CVE-2022-3510 | 2022-11-11 | Parsing issue in protobuf message-type extension |
| CVE-2022-34331 | 2022-11-11 | IBM Power FW security bypass |
| CVE-2022-38387 | 2022-11-11 | IBM Cloud Pak for Security (CP4S) 1.10.0.0 through 1.10.2.0 could... |
| CVE-2022-38385 | 2022-11-11 | IBM Cloud Pak for Security (CP4S) 1.10.0.0 through 1.10.2.0 could... |
| CVE-2022-40750 | 2022-11-11 | IBM WebSphere Application Server cross-site scripting |
| CVE-2022-36776 | 2022-11-11 | IBM Cloud Pak for Security (CP4S) 1.10.0.0 79and 1.10.2.0 is... |
| CVE-2022-40753 | 2022-11-11 | IBM InfoSphere Information Server cross-site scripting |
| CVE-2022-31772 | 2022-11-11 | IBM MQ denial of service |
| CVE-2022-38650 | 2022-11-12 | A remote unauthenticated insecure deserialization vulnerability exists in VMware Hyperic... |
| CVE-2022-38652 | 2022-11-12 | A remote insecure deserialization vulnerability exixsts in VMWare Hyperic Agent... |
| CVE-2022-45188 | 2022-11-12 | Netatalk through 3.1.13 has an afp_getappl heap-based buffer overflow resulting... |
| CVE-2022-38651 | 2022-11-12 | A security filter misconfiguration exists in VMware Hyperic Server 5.8.6.... |
| CVE-2022-3963 | 2022-11-12 | gnuboard5 FAQ Key ID faq.php cross site scripting |
| CVE-2022-40773 | 2022-11-12 | Zoho ManageEngine ServiceDesk Plus MSP before 10609 and SupportCenter Plus... |
| CVE-2022-41339 | 2022-11-12 | In Zoho ManageEngine Mobile Device Manager Plus before 10.1.2207.5, the... |
| CVE-2022-43671 | 2022-11-12 | Zoho ManageEngine Password Manager Pro before 12122, PAM360 before 5711,... |
| CVE-2022-43672 | 2022-11-12 | Zoho ManageEngine Password Manager Pro before 12122, PAM360 before 5711,... |
| CVE-2022-45195 | 2022-11-12 | SimpleXMQ before 3.4.0, as used in SimpleX Chat before 4.2,... |
| CVE-2022-45196 | 2022-11-12 | Hyperledger Fabric 2.3 allows attackers to cause a denial of... |
| CVE-2022-3964 | 2022-11-13 | ffmpeg QuickTime RPZA Video Encoder rpzaenc.c out-of-bounds |
| CVE-2022-3965 | 2022-11-13 | ffmpeg QuickTime Graphics Video Encoder smcenc.c smc_encode_stream out-of-bounds |
| CVE-2022-3968 | 2022-11-13 | emlog article_save.php cross site scripting |
| CVE-2022-3979 | 2022-11-13 | NagVis CoreLogonMultisite.php checkAuthCookie type conversion |
| CVE-2022-3966 | 2022-11-13 | Ultimate Member Plugin Template class-shortcodes.php load_template pathname traversal |
| CVE-2022-3967 | 2022-11-13 | Vesta Control Panel sed main.sh argument injection |
| CVE-2022-3969 | 2022-11-13 | OpenKM FileUtils.java getFileExtension temp file |
| CVE-2022-3970 | 2022-11-13 | LibTIFF tif_getimage.c TIFFReadRGBATileExt integer overflow |
| CVE-2022-3971 | 2022-11-13 | matrix-appservice-irc PgDataStore.ts sql injection |
| CVE-2022-3972 | 2022-11-13 | Pingkon HMS-PHP adminlogin.php sql injection |
| CVE-2022-3973 | 2022-11-13 | Pingkon HMS-PHP Data Pump Metadata admin.php sql injection |
| CVE-2022-3974 | 2022-11-13 | Axiomatic Bento4 mp4info Ap4StdCFileByteStream.cpp ReadPartial heap-based overflow |
| CVE-2022-3975 | 2022-11-13 | NukeViet CMS Data URL Request.php filterAttr cross site scripting |