CVE List - 2022 / March
Showing 1 - 100 of 2065 CVEs for March 2022 (Page 1 of 21)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-24720 | 2022-03-01 | Improper Input Validation in image_processing |
| CVE-2022-26332 | 2022-03-01 | Cipi 3.1.15 allows Add Server stored XSS via the /api/servers... |
| CVE-2022-25018 | 2022-03-01 | Pluxml v5.8.7 was discovered to allow attackers to execute arbitrary... |
| CVE-2022-25020 | 2022-03-01 | A cross-site scripting (XSS) vulnerability in Pluxml v5.8.7 allows attackers... |
| CVE-2022-25022 | 2022-03-01 | A cross-site scripting (XSS) vulnerability in Htmly v2.8.1 allows attackers... |
| CVE-2021-42767 | 2022-03-01 | A directory traversal vulnerability in the apoc plugins in Neo4J... |
| CVE-2021-42951 | 2022-03-01 | A Remote Code Execution (RCE) vulnerability exists in Algorithmia MSOL... |
| CVE-2021-44961 | 2022-03-01 | A memory leakage flaw exists in the class PerimeterGenerator of... |
| CVE-2021-44962 | 2022-03-01 | An out-of-bounds read vulnerability exists in the GCode::extrude() functionality of... |
| CVE-2020-12775 | 2022-03-01 | Hicos citizen certificate client-side component - Command Injection |
| CVE-2022-22262 | 2022-03-01 | ASUS Armoury Crate & Aura Creator Installer之ROG Live Service - Improper Link Resolution Before File Access |
| CVE-2022-24446 | 2022-03-01 | An issue was discovered in Zoho ManageEngine Key Manager Plus... |
| CVE-2021-43619 | 2022-03-01 | Trusted Firmware M 1.4.x through 1.4.1 has a buffer overflow... |
| CVE-2021-35036 | 2022-03-01 | A cleartext storage of information vulnerability in the Zyxel VMG3625-T50B... |
| CVE-2021-4039 | 2022-03-01 | A command injection vulnerability in the web interface of the... |
| CVE-2022-0776 | 2022-03-01 | Cross-site Scripting (XSS) - DOM in hakimel/reveal.js |
| CVE-2022-0777 | 2022-03-01 | Weak Password Recovery Mechanism for Forgotten Password in microweber/microweber |
| CVE-2021-44747 | 2022-03-01 | Denial-of-Service (DoS) Vulnerability |
| CVE-2022-23377 | 2022-03-01 | Archeevo below 5.0 is affected by local file inclusion through... |
| CVE-2022-23380 | 2022-03-01 | There is a SQL injection vulnerability in the background of... |
| CVE-2021-46387 | 2022-03-01 | ZyXEL ZyWALL 2 Plus Internet Security Appliance is affected by... |
| CVE-2021-44238 | 2022-03-01 | AyaCMS 3.1.2 is vulnerable to Remote Code Execution (RCE) via... |
| CVE-2022-23387 | 2022-03-01 | An issue was discovered in taocms 3.0.2. This is a... |
| CVE-2020-4925 | 2022-03-01 | A security vulnerability in the Spectrum Scale 5.0 and 5.1... |
| CVE-2021-38955 | 2022-03-01 | IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow... |
| CVE-2021-38986 | 2022-03-01 | IBM MQ Appliance 9.2 CD and 9.2 LTS does not... |
| CVE-2022-22321 | 2022-03-01 | IBM MQ Appliance 9.2 CD and 9.2 LTS local messaging... |
| CVE-2021-36171 | 2022-03-01 | The use of a cryptographically weak pseudo-random number generator in... |
| CVE-2021-36166 | 2022-03-01 | An improper authentication vulnerability in FortiMail before 7.0.1 may allow... |
| CVE-2021-32586 | 2022-03-01 | An improper input validation vulnerability in the web server CGI... |
| CVE-2021-43075 | 2022-03-01 | A improper neutralization of special elements used in an os... |
| CVE-2022-22300 | 2022-03-01 | A improper handling of insufficient permissions or privileges in Fortinet... |
| CVE-2021-41193 | 2022-03-01 | Use of Externally-Controlled Format String in wire-avs |
| CVE-2020-15936 | 2022-03-01 | A improper input validation in Fortinet FortiGate version 6.4.3 and... |
| CVE-2021-43077 | 2022-03-01 | A improper neutralization of special elements used in an sql... |
| CVE-2022-24717 | 2022-03-01 | Cross Site Scripting (XSS) in ssr-pages |
| CVE-2022-24718 | 2022-03-01 | Path Traversal in ssr-pages |
| CVE-2022-24719 | 2022-03-01 | Unauthorized forwarding of confidential headers in fluture-node |
| CVE-2022-25010 | 2022-03-01 | The component /rootfs in RageFile of Stepmania v5.1b2 and below... |
| CVE-2021-41652 | 2022-03-01 | Insecure permissions in the file database.sdb of BatFlat CMS v1.3.6... |
| CVE-2022-25012 | 2022-03-01 | Argus Surveillance DVR v4.0 employs weak password encryption. |
| CVE-2021-41282 | 2022-03-01 | diag_routes.php in pfSense 2.5.2 allows sed data injection. Authenticated users... |
| CVE-2022-24251 | 2022-03-01 | Extensis Portfolio v4.0 was discovered to contain an authenticated unrestricted... |
| CVE-2022-24252 | 2022-03-01 | An unrestricted file upload vulnerability in the FileTransferServlet component of... |
| CVE-2022-24253 | 2022-03-01 | Extensis Portfolio v4.0 was discovered to contain an authenticated unrestricted... |
| CVE-2022-24254 | 2022-03-01 | An unrestricted file upload vulnerability in the Backup/Restore Archive component... |
| CVE-2022-24255 | 2022-03-01 | Extensis Portfolio v4.0 was discovered to contain hardcoded credentials which... |
| CVE-2022-25050 | 2022-03-01 | rtl_433 21.12 was discovered to contain a stack overflow in... |
| CVE-2021-45861 | 2022-03-01 | There is an Assertion `num <= INT_BIT' failed at BitStreamReader::skipBits... |
| CVE-2021-45864 | 2022-03-01 | tsMuxer git-c6a0277 was discovered to contain a segmentation fault via... |
| CVE-2021-45860 | 2022-03-01 | An integer overflow in DTSStreamReader::findFrame() of tsMuxer git-2678966 allows attackers... |
| CVE-2022-25051 | 2022-03-01 | An Off-by-one Error occurs in cmr113_decode of rtl_433 21.12 when... |
| CVE-2021-45863 | 2022-03-01 | tsMuxer git-2678966 was discovered to contain a heap-based buffer overflow... |
| CVE-2021-23192 | 2022-03-02 | A flaw was found in the way samba implemented DCE/RPC.... |
| CVE-2021-23222 | 2022-03-02 | A man-in-the-middle attacker can inject false responses to the client's... |
| CVE-2021-3631 | 2022-03-02 | A flaw was found in libvirt while it generates SELinux... |
| CVE-2021-3654 | 2022-03-02 | A vulnerability was found in openstack-nova's console proxy, noVNC. By... |
| CVE-2021-3677 | 2022-03-02 | A flaw was found in postgresql. A purpose-crafted query can... |
| CVE-2021-3738 | 2022-03-02 | In DCE/RPC it is possible to share the handles (cookies... |
| CVE-2021-3772 | 2022-03-02 | A flaw was found in the Linux SCTP stack. A... |
| CVE-2022-0824 | 2022-03-02 | Improper Access Control to Remote Code Execution in webmin/webmin |
| CVE-2021-3667 | 2022-03-02 | An improper locking issue was found in the virStoragePoolLookupByTargetPath API... |
| CVE-2022-0577 | 2022-03-02 | Exposure of Sensitive Information to an Unauthorized Actor in scrapy/scrapy |
| CVE-2022-22303 | 2022-03-02 | An exposure of sensitive system information to an unauthorized control... |
| CVE-2022-22301 | 2022-03-02 | An improper neutralization of special elements used in an OS... |
| CVE-2021-44166 | 2022-03-02 | An improper access control vulnerability [CWE-284 ] in FortiToken Mobile... |
| CVE-2022-23395 | 2022-03-02 | jQuery Cookie 1.4.1 is affected by prototype pollution, which can... |
| CVE-2022-0829 | 2022-03-02 | Improper Authorization in webmin/webmin |
| CVE-2022-25634 | 2022-03-02 | Qt through 5.15.8 and 6.x through 6.2.3 can load system... |
| CVE-2022-23779 | 2022-03-02 | Zoho ManageEngine Desktop Central before 10.1.2137.8 exposes the installed server... |
| CVE-2022-24306 | 2022-03-02 | Zoho ManageEngine SharePoint Manager Plus before 4329 allows account takeover... |
| CVE-2022-24305 | 2022-03-02 | Zoho ManageEngine SharePoint Manager Plus before 4329 is vulnerable to... |
| CVE-2022-24447 | 2022-03-02 | An issue was discovered in Zoho ManageEngine Key Manager Plus... |
| CVE-2022-0819 | 2022-03-02 | Code Injection in dolibarr/dolibarr |
| CVE-2021-38996 | 2022-03-02 | IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow... |
| CVE-2022-22350 | 2022-03-02 | IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow... |
| CVE-2021-43070 | 2022-03-02 | Multiple relative path traversal vulnerabilities [CWE-23] in FortiWLM management interface... |
| CVE-2022-25016 | 2022-03-02 | Home Owners Collection Management System v1.0 was discovered to contain... |
| CVE-2022-23878 | 2022-03-02 | seacms V11.5 is affected by an arbitrary code execution vulnerability... |
| CVE-2021-38268 | 2022-03-02 | The Dynamic Data Mapping module in Liferay Portal 7.0.0 through... |
| CVE-2022-23640 | 2022-03-02 | Improper Restriction of XML External Entity Reference in Excel-Streaming-Reader |
| CVE-2022-23656 | 2022-03-02 | Cross-site scripting vulnerability in Zulip Server |
| CVE-2022-22944 | 2022-03-02 | VMware Workspace ONE Boxer contains a stored cross-site scripting (XSS)... |
| CVE-2022-25045 | 2022-03-02 | Home Owners Collection Management System v1.0 was discovered to contain... |
| CVE-2022-23956 | 2022-03-02 | Potential vulnerabilities have been identified in the BIOS for some... |
| CVE-2022-23953 | 2022-03-02 | Potential vulnerabilities have been identified in the BIOS for some... |
| CVE-2022-0675 | 2022-03-02 | Puppet Firewall Module May Leave Unmanaged Rules |
| CVE-2021-45074 | 2022-03-02 | JFrog Artifactory before 7.29.3 and 6.23.38, is vulnerable to Broken... |
| CVE-2021-46270 | 2022-03-02 | JFrog Artifactory before 7.31.10, is vulnerable to Broken Access Control... |
| CVE-2022-23954 | 2022-03-02 | Potential vulnerabilities have been identified in the BIOS for some... |
| CVE-2022-23955 | 2022-03-02 | Potential vulnerabilities have been identified in the BIOS for some... |
| CVE-2022-23958 | 2022-03-02 | Potential vulnerabilities have been identified in the BIOS for some... |
| CVE-2022-23957 | 2022-03-02 | Potential vulnerabilities have been identified in the BIOS for some... |
| CVE-2021-41001 | 2022-03-02 | An authenticated remote code execution vulnerability was discovered in the... |
| CVE-2021-41000 | 2022-03-02 | Multiple authenticated remote code execution vulnerabilities were discovered in the... |
| CVE-2021-41002 | 2022-03-02 | Multiple authenticated remote path traversal vulnerabilities were discovered in the... |
| CVE-2021-41003 | 2022-03-02 | Multiple unauthenticated command injection vulnerabilities were discovered in the AOS-CX... |
| CVE-2022-0711 | 2022-03-02 | A flaw was found in the way HAProxy processed HTTP... |
| CVE-2021-3623 | 2022-03-02 | A flaw was found in libtpms. The flaw can be... |
| CVE-2021-3658 | 2022-03-02 | bluetoothd from bluez incorrectly saves adapters' Discoverable status when a... |