CVE List - 2022 / April
Showing 701 - 800 of 2039 CVEs for April 2022 (Page 8 of 21)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-20064 | 2022-04-11 | In ccci, there is a possible leak of kernel pointer... |
| CVE-2022-20065 | 2022-04-11 | In ccci, there is a possible out of bounds read... |
| CVE-2022-20066 | 2022-04-11 | In atf (hwfde), there is a possible leak of sensitive... |
| CVE-2022-20067 | 2022-04-11 | In mdp, there is a possible out of bounds write... |
| CVE-2022-20052 | 2022-04-11 | In mdp, there is a possible memory corruption due to... |
| CVE-2022-20068 | 2022-04-11 | In mobile_log_d, there is a possible symbolic link following due... |
| CVE-2022-20069 | 2022-04-11 | In preloader (usb), there is a possible out of bounds... |
| CVE-2022-20070 | 2022-04-11 | In ssmr, there is a possible out of bounds write... |
| CVE-2022-20071 | 2022-04-11 | In ccu, there is a possible escalation of privilege due... |
| CVE-2022-20072 | 2022-04-11 | In search engine service, there is a possible way to... |
| CVE-2022-20073 | 2022-04-11 | In preloader (usb), there is a possible out of bounds... |
| CVE-2022-20074 | 2022-04-11 | In preloader (partition), there is a possible out of bounds... |
| CVE-2022-20075 | 2022-04-11 | In ged, there is a possible out of bounds write... |
| CVE-2022-20076 | 2022-04-11 | In ged, there is a possible memory corruption due to... |
| CVE-2022-20077 | 2022-04-11 | In vow, there is a possible memory corruption due to... |
| CVE-2022-20078 | 2022-04-11 | In vow, there is a possible memory corruption due to... |
| CVE-2022-20079 | 2022-04-11 | In vow, there is a possible read of uninitialized data... |
| CVE-2022-20080 | 2022-04-11 | In SUB2AF, there is a possible memory corruption due to... |
| CVE-2022-22571 | 2022-04-11 | An authenticated high privileged user can perform a stored XSS... |
| CVE-2022-1262 | 2022-04-11 | A command injection vulnerability in the protest binary allows an... |
| CVE-2022-22572 | 2022-04-11 | A non-admin user with user management permission can escalate his... |
| CVE-2022-1161 | 2022-04-11 | ICSA-22-090-05 Rockwell Automation Logix Controllers |
| CVE-2022-1067 | 2022-04-11 | ICSMA-22-095-01 LifePoint Informatics Patient Portal |
| CVE-2022-27844 | 2022-04-11 | WordPress WPvivid plugin <= 0.9.70 - Arbitrary File Read vulnerability |
| CVE-2022-27845 | 2022-04-11 | WordPress Plausible Analytics plugin <= 1.2.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability |
| CVE-2022-22257 | 2022-04-11 | The customization framework has a vulnerability of improper permission control.Successful... |
| CVE-2022-22258 | 2022-04-11 | The Wi-Fi module has an event notification vulnerability.Successful exploitation of... |
| CVE-2022-22256 | 2022-04-11 | The DFX module has an access control vulnerability.Successful exploitation of... |
| CVE-2022-22255 | 2022-04-11 | The application framework has a common DoS vulnerability.Successful exploitation of... |
| CVE-2022-22254 | 2022-04-11 | A permission bypass vulnerability exists when the NFC CAs access... |
| CVE-2021-46742 | 2022-04-11 | The multi-window module has a vulnerability of unauthorized insertion and... |
| CVE-2022-22253 | 2022-04-11 | The DFX module has a vulnerability of improper validation of... |
| CVE-2021-46740 | 2022-04-11 | The device authentication service module has a defect vulnerability introduced... |
| CVE-2021-40065 | 2022-04-11 | The communication module has a service logic error vulnerability.Successful exploitation... |
| CVE-2022-1193 | 2022-04-11 | Improper access control in GitLab CE/EE versions 10.7 prior to... |
| CVE-2022-1157 | 2022-04-11 | Missing sanitization of logged exception messages in all versions prior... |
| CVE-2022-22962 | 2022-04-11 | VMware Horizon Agent for Linux (prior to 22.x) contains a... |
| CVE-2022-22964 | 2022-04-11 | VMware Horizon Agent for Linux (prior to 22.x) contains a... |
| CVE-2022-0835 | 2022-04-11 | AVEVA System Platform Cleartext Storage of Sensitive Information in Memory |
| CVE-2022-0999 | 2022-04-11 | mySCADA myPRO Command Injection |
| CVE-2021-4047 | 2022-04-11 | The release of OpenShift 4.9.6 included four CVE fixes for... |
| CVE-2022-0552 | 2022-04-11 | A flaw was found in the original fix for the... |
| CVE-2022-25615 | 2022-04-11 | WordPress eRoom plugin <= 1.3.8 - Cross-Site Request Forgery (CSRF) vulnerability leading to Cache Deletion |
| CVE-2022-25614 | 2022-04-11 | WordPress eRoom plugin <= 1.3.7 - Cross-Site Request Forgery (CSRF) leading to Sync with Zoom Meetings vulnerability |
| CVE-2022-24829 | 2022-04-11 | Missing authentication in Garden |
| CVE-2022-1316 | 2022-04-11 | Incorrect Permission Assignment for Critical Resource in zerotier/zerotierone |
| CVE-2022-24827 | 2022-04-11 | SQL Injection in elide-datastore-aggregation |
| CVE-2022-24832 | 2022-04-11 | Bundled ldap-authentication-plugin fails to neutralise LDAP special elements in usernames |
| CVE-2022-24837 | 2022-04-11 | Enumerable upload file names in hedgedoc |
| CVE-2022-24833 | 2022-04-11 | Persistent Cross-site Scripting (XSS) vulnerability in PrivateBin |
| CVE-2022-24838 | 2022-04-11 | Command Injection in Appointment Emails for Nextcloud Calendar |
| CVE-2022-24839 | 2022-04-11 | Uncontrolled Resource Consumption in org.cyberneko.html (nokogiri fork) |
| CVE-2022-0436 | 2022-04-12 | Path Traversal in gruntjs/grunt |
| CVE-2022-24765 | 2022-04-12 | Uncontrolled search for the Git directory in Git for Windows |
| CVE-2022-27140 | 2022-04-12 | An arbitrary file upload vulnerability in the file upload module... |
| CVE-2022-27416 | 2022-04-12 | Tcpreplay v4.4.1 was discovered to contain a double-free via __interceptor_free. |
| CVE-2022-27418 | 2022-04-12 | Tcpreplay v4.4.1 has a heap-based buffer overflow in do_checksum_math at... |
| CVE-2022-29036 | 2022-04-12 | Jenkins Credentials Plugin 1111.v35a_307992395 and earlier, except 1087.1089.v2f1b_9a_b_040e4, 1074.1076.v39c30cecb_0e2, and... |
| CVE-2022-29045 | 2022-04-12 | Jenkins promoted builds Plugin 873.v6149db_d64130 and earlier, except 3.10.1, does... |
| CVE-2022-29049 | 2022-04-12 | Jenkins promoted builds Plugin 873.v6149db_d64130 and earlier, except 3.10.1, does... |
| CVE-2022-25622 | 2022-04-12 | The PROFINET (PNIO) stack, when integrated with the Interniche IP... |
| CVE-2022-28346 | 2022-04-12 | An issue was discovered in Django 2.2 before 2.2.28, 3.2... |
| CVE-2022-28347 | 2022-04-12 | A SQL injection issue was discovered in QuerySet.explain() in Django... |
| CVE-2022-29080 | 2022-04-12 | The npm-dependency-versions package through 0.3.0 for Node.js allows command injection... |
| CVE-2022-1302 | 2022-04-12 | Malformed Goose Message in LibIEC61850 may result in a denial of service |
| CVE-2021-40368 | 2022-04-12 | A vulnerability has been identified in SIMATIC S7-400 CPU 412-1... |
| CVE-2021-42029 | 2022-04-12 | A vulnerability has been identified in SIMATIC STEP 7 (TIA... |
| CVE-2022-23448 | 2022-04-12 | A vulnerability has been identified in SIMATIC Energy Manager Basic... |
| CVE-2022-23449 | 2022-04-12 | A vulnerability has been identified in SIMATIC Energy Manager Basic... |
| CVE-2022-23450 | 2022-04-12 | A vulnerability has been identified in SIMATIC Energy Manager Basic... |
| CVE-2022-25650 | 2022-04-12 | A vulnerability has been identified in Mendix Applications using Mendix... |
| CVE-2022-25751 | 2022-04-12 | A vulnerability has been identified in SCALANCE X302-7 EEC (230V),... |
| CVE-2022-25752 | 2022-04-12 | A vulnerability has been identified in SCALANCE X302-7 EEC (230V),... |
| CVE-2022-25753 | 2022-04-12 | A vulnerability has been identified in SCALANCE X302-7 EEC (230V),... |
| CVE-2022-25754 | 2022-04-12 | A vulnerability has been identified in SCALANCE X302-7 EEC (230V),... |
| CVE-2022-25755 | 2022-04-12 | A vulnerability has been identified in SCALANCE X302-7 EEC (230V),... |
| CVE-2022-25756 | 2022-04-12 | A vulnerability has been identified in SCALANCE X302-7 EEC (230V),... |
| CVE-2022-26334 | 2022-04-12 | A vulnerability has been identified in SCALANCE X302-7 EEC (230V),... |
| CVE-2022-26335 | 2022-04-12 | A vulnerability has been identified in SCALANCE X302-7 EEC (230V),... |
| CVE-2022-26380 | 2022-04-12 | A vulnerability has been identified in SCALANCE X302-7 EEC (230V),... |
| CVE-2022-27194 | 2022-04-12 | A vulnerability has been identified in SIMATIC PCS neo (Administration... |
| CVE-2022-27241 | 2022-04-12 | A vulnerability has been identified in Mendix Applications using Mendix... |
| CVE-2022-27480 | 2022-04-12 | A vulnerability has been identified in SICAM A8000 CP-8031 (All... |
| CVE-2022-27481 | 2022-04-12 | A vulnerability has been identified in SCALANCE W1788-1 M12 (All... |
| CVE-2022-28328 | 2022-04-12 | A vulnerability has been identified in SCALANCE W1788-1 M12 (All... |
| CVE-2022-28329 | 2022-04-12 | A vulnerability has been identified in SCALANCE W1788-1 M12 (All... |
| CVE-2022-28661 | 2022-04-12 | A vulnerability has been identified in Simcenter Femap (All versions... |
| CVE-2022-28662 | 2022-04-12 | A vulnerability has been identified in Simcenter Femap (All versions... |
| CVE-2022-28663 | 2022-04-12 | A vulnerability has been identified in Simcenter Femap (All versions... |
| CVE-2022-24247 | 2022-04-12 | RiteCMS version 3.1.0 and below suffers from an arbitrary file... |
| CVE-2022-0140 | 2022-04-12 | Visual Form Builder < 3.0.6 - Unauthenticated Information Disclosure |
| CVE-2022-0141 | 2022-04-12 | Visual Form Builder < 3.0.8 - Entries Deletion/Restoration via CSRF |
| CVE-2022-0142 | 2022-04-12 | Visual Form Builder < 3.0.6 - CSV Injection |
| CVE-2022-24248 | 2022-04-12 | RiteCMS version 3.1.0 and below suffers from an arbitrary file... |
| CVE-2022-0878 | 2022-04-12 | Novel attack against the Combined Charging System (CCS) in electric vehicles to remotely cause a denial of service |
| CVE-2021-32040 | 2022-04-12 | Large aggregation pipelines with a specific stage can crash mongod under default configuration |
| CVE-2022-27161 | 2022-04-12 | Csz Cms 1.2.2 is vulnerable to SQL Injection via cszcms_admin_Members_viewUsers |
| CVE-2022-27162 | 2022-04-12 | CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcms_admin_Members_editUser |
| CVE-2022-27163 | 2022-04-12 | CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcms_admin_Users_editUser |
| CVE-2022-27164 | 2022-04-12 | CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcms_admin_Users_viewUsers |