CVE List - 2022 / January
Showing 1601 - 1700 of 1988 CVEs for January 2022 (Page 17 of 20)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-0334 | 2022-01-25 | A flaw was found in Moodle in versions 3.11 to... |
| CVE-2022-0335 | 2022-01-25 | A flaw was found in Moodle in versions 3.11 to... |
| CVE-2021-4133 | 2022-01-25 | A flaw was found in Keycloak in versions from 12.0.0... |
| CVE-2021-4145 | 2022-01-25 | A NULL pointer dereference issue was found in the block... |
| CVE-2021-40337 | 2022-01-25 | OWASP Related Vulnerabilities in Hitachi Energy’s LinkOne Product |
| CVE-2021-45729 | 2022-01-25 | WordPress WP Google Map plugin <= 1.8.0 - Privilege Escalation vulnerability |
| CVE-2021-43298 | 2022-01-25 | The code that performs password matching when using 'Basic' HTTP... |
| CVE-2022-23009 | 2022-01-25 | On BIG-IQ Centralized Management 8.x before 8.1.0, an authenticated administrative... |
| CVE-2022-23008 | 2022-01-25 | On NGINX Controller API Management versions 3.18.0-3.19.0, an authenticated attacker... |
| CVE-2022-23010 | 2022-01-25 | On BIG-IP versions 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x... |
| CVE-2022-23011 | 2022-01-25 | On certain hardware BIG-IP platforms, in version 15.1.x before 15.1.4... |
| CVE-2022-23014 | 2022-01-25 | On versions 16.1.x before 16.1.2 and 15.1.x before 15.1.4.1, when... |
| CVE-2022-23015 | 2022-01-25 | On BIG-IP versions 16.x before 16.1.0, 15.1.x before 15.1.4.1, and... |
| CVE-2022-23016 | 2022-01-25 | On versions 16.1.x before 16.1.2 and 15.1.x before 15.1.4.1, when... |
| CVE-2022-23012 | 2022-01-25 | On BIG-IP versions 15.1.x before 15.1.4.1 and 14.1.x before 14.1.4.5,... |
| CVE-2022-23013 | 2022-01-25 | On BIG-IP DNS & GTM version 16.x before 16.1.0, 15.1.x... |
| CVE-2022-23017 | 2022-01-25 | On BIG-IP version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x... |
| CVE-2022-23018 | 2022-01-25 | On BIG-IP AFM version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1,... |
| CVE-2022-23026 | 2022-01-25 | On BIG-IP ASM & Advanced WAF version 16.1.x before 16.1.2,... |
| CVE-2022-23022 | 2022-01-25 | On BIG-IP version 16.1.x before 16.1.2, when an HTTP profile... |
| CVE-2022-23023 | 2022-01-25 | On BIG-IP version 16.1.x before 16.1.2.1, 15.1.x before 15.1.5, 14.1.x... |
| CVE-2022-23024 | 2022-01-25 | On BIG-IP AFM version 16.x before 16.1.0, 15.1.x before 15.1.4.1,... |
| CVE-2022-23025 | 2022-01-25 | On BIG-IP version 16.1.x before 16.1.1, 15.1.x before 15.1.4, 14.1.x... |
| CVE-2022-23020 | 2022-01-25 | On BIG-IP version 16.1.x before 16.1.2, when the 'Respond on... |
| CVE-2022-23019 | 2022-01-25 | On BIG-IP version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x... |
| CVE-2022-23021 | 2022-01-25 | On BIG-IP version 16.1.x before 16.1.2, when any of the... |
| CVE-2022-23027 | 2022-01-25 | On BIG-IP versions 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, 13.1.x... |
| CVE-2022-23031 | 2022-01-25 | On BIG-IP FPS, ASM, and Advanced WAF versions 16.1.x before... |
| CVE-2022-23030 | 2022-01-25 | On version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before... |
| CVE-2022-23032 | 2022-01-25 | In all versions before 7.2.1.4, when proxy settings are configured... |
| CVE-2022-23028 | 2022-01-25 | On BIG-IP AFM version 16.x before 16.1.0, 15.1.x before 15.1.5,... |
| CVE-2022-23029 | 2022-01-25 | On BIG-IP version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x... |
| CVE-2021-41598 | 2022-01-25 | UI misrepresentation of granted permissions in GitHub Enterprise Server leading to unauthorized access to user |
| CVE-2021-43799 | 2022-01-25 | RabbitMQ exposes ports with weak default secrets in Zulip Server |
| CVE-2022-23258 | 2022-01-25 | Microsoft Edge for Android Spoofing Vulnerability |
| CVE-2021-36289 | 2022-01-25 | Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain... |
| CVE-2021-36294 | 2022-01-25 | Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain... |
| CVE-2021-36295 | 2022-01-25 | Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain... |
| CVE-2021-36296 | 2022-01-25 | Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain... |
| CVE-2021-36346 | 2022-01-25 | Dell iDRAC 8 prior to version 2.82.82.82 contain a denial... |
| CVE-2021-36347 | 2022-01-25 | iDRAC9 versions prior to 5.00.20.00 and iDRAC8 versions prior to... |
| CVE-2021-36348 | 2022-01-25 | iDRAC9 versions prior to 5.00.20.00 contain an input injection vulnerability.... |
| CVE-2021-46386 | 2022-01-26 | File upload vulnerability in mingSoft MCMS through 5.2.5, allows remote... |
| CVE-2022-0355 | 2022-01-26 | Improper Removal of Sensitive Information Before Storage or Transfer in feross/simple-get |
| CVE-2022-0359 | 2022-01-26 | Heap-based Buffer Overflow in vim/vim |
| CVE-2022-0361 | 2022-01-26 | Heap-based Buffer Overflow in vim/vim |
| CVE-2022-0368 | 2022-01-26 | Out-of-bounds Read in vim/vim |
| CVE-2021-22570 | 2022-01-26 | Nullptr Dereference in Protobuf |
| CVE-2021-22600 | 2022-01-26 | Double Free in net/packet/af_packet.c leading to priviledge escalation |
| CVE-2022-23959 | 2022-01-26 | In Varnish Cache before 6.6.2 and 7.x before 7.0.2, Varnish... |
| CVE-2021-46560 | 2022-01-26 | The firmware on Moxa TN-5900 devices through 3.1 allows command... |
| CVE-2021-46559 | 2022-01-26 | The firmware on Moxa TN-5900 devices through 3.1 has a... |
| CVE-2019-25056 | 2022-01-26 | In Bromite through 78.0.3904.130, there are adblock rules in the... |
| CVE-2022-23968 | 2022-01-26 | Xerox VersaLink devices on specific versions of firmware before 2022-01-26... |
| CVE-2022-21944 | 2022-01-26 | watchman: chown in [email protected] unit allows symlink attack |
| CVE-2022-0374 | 2022-01-26 | Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat |
| CVE-2022-0375 | 2022-01-26 | Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat |
| CVE-2022-0251 | 2022-01-26 | Cross-site Scripting (XSS) - Stored in pimcore/pimcore |
| CVE-2021-44118 | 2022-01-26 | SPIP 4.0.0 is affected by a Cross Site Scripting (XSS)... |
| CVE-2021-41766 | 2022-01-26 | Insecure Java Deserialization in Apache Karaf |
| CVE-2022-22932 | 2022-01-26 | Path traversal flaws |
| CVE-2021-44120 | 2022-01-26 | SPIP 4.0.0 is affected by a Cross Site Scripting (XSS)... |
| CVE-2021-44122 | 2022-01-26 | SPIP 4.0.0 is affected by a Cross Site Request Forgery... |
| CVE-2021-44123 | 2022-01-26 | SPIP 4.0.0 is affected by a remote command execution vulnerability.... |
| CVE-2022-0203 | 2022-01-26 | Improper Access Control in crater-invoice/crater |
| CVE-2022-0362 | 2022-01-26 | SQL Injection in star7th/showdoc |
| CVE-2021-45975 | 2022-01-26 | In ListCheck.exe in Acer Care Center 4.x before 4.00.3038, a... |
| CVE-2021-46117 | 2022-01-26 | jpress 4.2.0 is vulnerable to remote code execution via io.jpress.module.page.PageNotifyKit#doSendEmail.... |
| CVE-2022-0379 | 2022-01-26 | Cross-site Scripting (XSS) - Stored in microweber/microweber |
| CVE-2022-0378 | 2022-01-26 | Cross-site Scripting (XSS) - Reflected in microweber/microweber |
| CVE-2021-44692 | 2022-01-26 | BuddyBoss Platform through 1.8.0 allows remote attackers to obtain the... |
| CVE-2021-43334 | 2022-01-26 | BuddyBoss Platform through 1.8.0 allows XSS via the Group Name... |
| CVE-2022-22851 | 2022-01-26 | A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodtester... |
| CVE-2021-46118 | 2022-01-26 | jpress 4.2.0 is vulnerable to remote code execution via io.jpress.module.article.kit.ArticleNotifyKit#doSendEmail.... |
| CVE-2021-46383 | 2022-01-26 | https://gitee.com/mingSoft/MCMS MCMS <=5.2.5 is affected by: SQL Injection. The impact... |
| CVE-2021-46116 | 2022-01-26 | jpress 4.2.0 is vulnerable to remote code execution via io.jpress.web.admin._TemplateController#doInstall.... |
| CVE-2021-46115 | 2022-01-26 | jpress 4.2.0 is vulnerable to RCE via io.jpress.web.admin._TemplateController#doUploadFile. The admin... |
| CVE-2021-29838 | 2022-01-26 | IBM Security Guardium Insights 3.0 could allow a remote attacker... |
| CVE-2021-29845 | 2022-01-26 | IBM Security Guardium Insights 3.0 could allow an authenticated user... |
| CVE-2021-29846 | 2022-01-26 | IBM Security Guardium Insights 3.0 could allow an authenticated user... |
| CVE-2021-46561 | 2022-01-26 | controller/org.controller/org.controller.js in the CVE Services API 1.1.1 before 5c50baf3bda28133a3bc90b854765a64fb538304 allows... |
| CVE-2022-23990 | 2022-01-26 | Expat (aka libexpat) before 2.4.4 has an integer overflow in... |
| CVE-2022-23993 | 2022-01-26 | /usr/local/www/pkg.php in pfSense CE before 2.6.0 and pfSense Plus before... |
| CVE-2022-22850 | 2022-01-26 | A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodtester... |
| CVE-2021-46385 | 2022-01-26 | https://gitee.com/mingSoft/MCMS MCMS <=5.2.5 is affected by: SQL Injection. The impact... |
| CVE-2021-46114 | 2022-01-26 | jpress v 4.2.0 is vulnerable to RCE via io.jpress.module.product.ProductNotifyKit#doSendEmail. The... |
| CVE-2022-22852 | 2022-01-26 | A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodtester... |
| CVE-2022-21686 | 2022-01-26 | Server Side Twig Template Injection in PrestaShop |
| CVE-2021-32840 | 2022-01-26 | Path Traversal in SharpZipLib |
| CVE-2021-32842 | 2022-01-26 | Path Traversal in SharpZipLib |
| CVE-2021-32841 | 2022-01-26 | Path Traversal in SharpZipLib |
| CVE-2021-32849 | 2022-01-26 | Arbitrary command execution in Gerapy |
| CVE-2021-41166 | 2022-01-26 | Permission bypass in Nextcloud Android App |
| CVE-2022-23181 | 2022-01-27 | Local privilege escalation with FileStore |
| CVE-2022-21722 | 2022-01-27 | Potential out-of-bound read during RTP/RTCP parsing in PJSIP |
| CVE-2022-21723 | 2022-01-27 | Out-of-bounds read in multipart parsing in PJSIP |
| CVE-2022-0387 | 2022-01-27 | Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat |
| CVE-2022-22828 | 2022-01-27 | An insecure direct object reference for the file-download URL in... |
| CVE-2022-0370 | 2022-01-27 | Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat |
| CVE-2022-0372 | 2022-01-27 | Cross-site Scripting (XSS) - Stored in crater-invoice/crater |