CVE List - 2022 / May
Showing 1001 - 1100 of 2161 CVEs for May 2022 (Page 11 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2021-0154 | 2022-05-12 | Improper input validation in the BIOS firmware for some Intel(R)... |
| CVE-2021-33123 | 2022-05-12 | Improper access control in the BIOS authenticated code module for... |
| CVE-2021-0190 | 2022-05-12 | Uncaught exception in the BIOS firmware for some Intel(R) Processors... |
| CVE-2021-33122 | 2022-05-12 | Insufficient control flow management in the BIOS firmware for some... |
| CVE-2021-0189 | 2022-05-12 | Use of out-of-range pointer offset in the BIOS firmware for... |
| CVE-2021-33124 | 2022-05-12 | Out-of-bounds write in the BIOS authenticated code module for some... |
| CVE-2021-33103 | 2022-05-12 | Unintended intermediary in the BIOS authenticated code module for some... |
| CVE-2021-0159 | 2022-05-12 | Improper input validation in the BIOS authenticated code module for... |
| CVE-2021-0188 | 2022-05-12 | Return of pointer value outside of expected range in the... |
| CVE-2021-0155 | 2022-05-12 | Unchecked return value in the BIOS firmware for some Intel(R)... |
| CVE-2021-40399 | 2022-05-12 | An exploitable use-after-free vulnerability exists in WPS Spreadsheets ( ET... |
| CVE-2022-21147 | 2022-05-12 | An out of bounds read vulnerability exists in the malware... |
| CVE-2022-21182 | 2022-05-12 | A privilege escalation vulnerability exists in the router configuration import... |
| CVE-2022-21238 | 2022-05-12 | A cross-site scripting (xss) vulnerability exists in the info.jsp functionality... |
| CVE-2022-21809 | 2022-05-12 | A file write vulnerability exists in the httpd upload.cgi functionality... |
| CVE-2022-24910 | 2022-05-12 | A buffer overflow vulnerability exists in the httpd parse_ping_result API... |
| CVE-2022-25172 | 2022-05-12 | An information disclosure vulnerability exists in the web interface session... |
| CVE-2022-25995 | 2022-05-12 | A command execution vulnerability exists in the console inhand functionality... |
| CVE-2022-26002 | 2022-05-12 | A stack-based buffer overflow vulnerability exists in the console factory... |
| CVE-2022-26007 | 2022-05-12 | An OS command injection vulnerability exists in the console factory... |
| CVE-2022-26020 | 2022-05-12 | An information disclosure vulnerability exists in the router configuration export... |
| CVE-2022-26042 | 2022-05-12 | An OS command injection vulnerability exists in the daretools binary... |
| CVE-2022-26075 | 2022-05-12 | An OS command injection vulnerability exists in the console infactory_wlan... |
| CVE-2022-26085 | 2022-05-12 | An OS command injection vulnerability exists in the httpd wlscan_ASP... |
| CVE-2022-26420 | 2022-05-12 | An OS command injection vulnerability exists in the console infactory_port... |
| CVE-2022-26510 | 2022-05-12 | A firmware update vulnerability exists in the iburn firmware checks... |
| CVE-2022-26518 | 2022-05-12 | An OS command injection vulnerability exists in the console infactory_net... |
| CVE-2022-26780 | 2022-05-12 | Multiple improper input validation vulnerabilities exists in the libnvram.so nvram_import... |
| CVE-2022-26781 | 2022-05-12 | Multiple improper input validation vulnerabilities exists in the libnvram.so nvram_import... |
| CVE-2022-26782 | 2022-05-12 | Multiple improper input validation vulnerabilities exists in the libnvram.so nvram_import... |
| CVE-2022-27172 | 2022-05-12 | A hard-coded password vulnerability exists in the console infactory functionality... |
| CVE-2021-26369 | 2022-05-12 | A malicious or compromised UApp or ABL may be used... |
| CVE-2021-26366 | 2022-05-12 | An attacker, who gained elevated privileges via some other vulnerability,... |
| CVE-2022-29363 | 2022-05-12 | Phpok v6.1 was discovered to contain a deserialization vulnerability via... |
| CVE-2021-26351 | 2022-05-12 | Insufficient DRAM address validation in System Management Unit (SMU) may... |
| CVE-2021-26362 | 2022-05-12 | A malicious or compromised UApp or ABL may be used... |
| CVE-2021-26361 | 2022-05-12 | A malicious or compromised User Application (UApp) or AGESA Boot... |
| CVE-2021-26368 | 2022-05-12 | Insufficient check of the process type in Trusted OS (TOS)... |
| CVE-2021-26317 | 2022-05-12 | Failure to verify the protocol in SMM may allow an... |
| CVE-2021-26386 | 2022-05-12 | A malicious or compromised UApp or ABL may be used... |
| CVE-2021-26363 | 2022-05-12 | A malicious or compromised UApp or ABL could potentially change... |
| CVE-2022-29368 | 2022-05-12 | Moddable commit before 135aa9a4a6a9b49b60aa730ebc3bcc6247d75c45 was discovered to contain an out-of-bounds... |
| CVE-2022-29369 | 2022-05-12 | Nginx NJS v0.7.2 was discovered to contain a segmentation violation... |
| CVE-2021-22531 | 2022-05-12 | A bug exist in the input parameter of Access Manager... |
| CVE-2022-28819 | 2022-05-12 | Adobe Character Animator SVG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| CVE-2022-28818 | 2022-05-12 | ColdFusion Reflected Cross-Site Scripting could lead to Arbitrary Code Execution |
| CVE-2021-27478 | 2022-05-12 | EIPStackGroup OpENer Ethernet/IP Incorrect Conversion between Numeric Types |
| CVE-2021-27482 | 2022-05-12 | EIPStackGroup OpENer Ethernet/IP Out-of-bounds Read |
| CVE-2021-27498 | 2022-05-12 | EIPStackGroup OpENer Ethernet/IP Reachable Assertion |
| CVE-2021-27500 | 2022-05-12 | EIPStackGroup OpENer Ethernet/IP Reachable Assertion |
| CVE-2022-23742 | 2022-05-12 | Check Point Endpoint Security Client for Windows versions earlier than... |
| CVE-2022-23139 | 2022-05-12 | ZTE's ZXMP M721 product has a permission and access control... |
| CVE-2022-22970 | 2022-05-12 | In spring framework versions prior to 5.3.20+ , 5.2.22+ and... |
| CVE-2022-22971 | 2022-05-12 | In spring framework versions prior to 5.3.20+ , 5.2.22+ and... |
| CVE-2022-22796 | 2022-05-12 | Sysaid – Sysaid System Takeover |
| CVE-2022-22797 | 2022-05-12 | Sysaid – sysaid Open Redirect |
| CVE-2022-22798 | 2022-05-12 | Sysaid – Pro Plus Edition, SysAid Help Desk Broken Access Control |
| CVE-2022-23165 | 2022-05-12 | Sysaid – Sysaid 14.2.0 Reflected Cross-Site Scripting (XSS) |
| CVE-2022-23166 | 2022-05-12 | Sysaid – Sysaid Local File Inclusion (LFI) |
| CVE-2020-22984 | 2022-05-12 | Cross-Site Scripting (XSS) vulnerability in MicroStrategy Web SDK 10.11 and... |
| CVE-2020-22987 | 2022-05-12 | Cross-Site Scripting (XSS) vulnerability in MicroStrategy Web SDK 10.11 and... |
| CVE-2020-22986 | 2022-05-12 | Cross-Site Scripting (XSS) vulnerability in MicroStrategy Web SDK 10.11 and... |
| CVE-2020-22985 | 2022-05-12 | Cross-Site Scripting (XSS) vulnerability in MicroStrategy Web SDK 10.11 and... |
| CVE-2021-27768 | 2022-05-12 | An SSL certificate host verification vulnerability affects HCL Verse for Android |
| CVE-2021-27769 | 2022-05-12 | HCL Sametime is vulnerable to an information disclosure |
| CVE-2021-27770 | 2022-05-12 | HCL Sametime is vulnerable to arbitrary HTTP requests |
| CVE-2021-27771 | 2022-05-12 | HCL Sametime is susceptible a file transfer service vulnerability |
| CVE-2021-27772 | 2022-05-12 | HCL Sametime is vulnerable to an information disclosure |
| CVE-2021-27773 | 2022-05-12 | HCL Sametime is vulnerable to clickjacking |
| CVE-2021-27777 | 2022-05-12 | HCL Unica Platform is vulnerable to XML External Entity (XXE) injection |
| CVE-2022-27134 | 2022-05-12 | EOSIO batdappboomx v327c04cf has an Access-control vulnerability in the `transfer`... |
| CVE-2022-29218 | 2022-05-12 | Unauthorized takeover for new versions of some platform-specific gems |
| CVE-2022-1714 | 2022-05-13 | Out-of-bounds Read in radareorg/radare2 |
| CVE-2022-25762 | 2022-05-13 | Response mix-up with WebSocket concurrent send and close |
| CVE-2021-42967 | 2022-05-13 | Unrestricted file upload in /novel-admin/src/main/java/com/java2nb/common/controller/FileController.java in novel-plus all versions allows... |
| CVE-2021-42969 | 2022-05-13 | Certain Anaconda3 2021.05 are affected by OS command injection. When... |
| CVE-2020-22983 | 2022-05-13 | A Server-Side Request Forgery (SSRF) vulnerability exists in MicroStrategy Web... |
| CVE-2022-30374 | 2022-05-13 | Air Cargo Management System 1.0 is vulnerable to SQL Injection... |
| CVE-2022-30373 | 2022-05-13 | Air Cargo Management System 1.0 is vulnerable to SQL Injection... |
| CVE-2022-30372 | 2022-05-13 | Air Cargo Management System 1.0 is vulnerable to SQL Injection... |
| CVE-2022-30371 | 2022-05-13 | Air Cargo Management System 1.0 is vulnerable to SQL Injection... |
| CVE-2022-30370 | 2022-05-13 | Air Cargo Management System 1.0 is vulnerable to SQL Injection... |
| CVE-2022-29383 | 2022-05-13 | NETGEAR ProSafe SSL VPN firmware FVS336Gv2 and FVS336Gv3 was discovered... |
| CVE-2022-30489 | 2022-05-13 | WAVLINK WN535 G3 was discovered to contain a cross-site scripting... |
| CVE-2022-29854 | 2022-05-13 | A vulnerability in Mitel 6900 Series IP (MiNet) phones excluding... |
| CVE-2022-30367 | 2022-05-13 | Air Cargo Management System v1.0 is vulnerable to file deletion... |
| CVE-2022-30379 | 2022-05-13 | Sourcecodester Simple Social Networking Site v1.0 is vulnerable to SQL... |
| CVE-2022-30378 | 2022-05-13 | Sourcecodester Simple Social Networking Site v1.0 is vulnerable to SQL... |
| CVE-2022-30376 | 2022-05-13 | Sourcecodester Simple Social Networking Site v1.0 is vulnerable to SQL... |
| CVE-2022-30375 | 2022-05-13 | Sourcecodester Simple Social Networking Site v1.0 is vulnerable to file... |
| CVE-2022-30403 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-30402 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-30401 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-30400 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-30399 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-30398 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-30396 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-30395 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-30393 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to SQL Injection via... |
| CVE-2022-30392 | 2022-05-13 | Merchandise Online Store v1.0 is vulnerable to SQL Injection via... |