CVE List - 2022 / May
Showing 101 - 200 of 2161 CVEs for May 2022 (Page 2 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-23618 | 2022-05-02 | A reflected cross site scripting (XSS) vulnerability in Xtend Voice... |
| CVE-2020-23620 | 2022-05-02 | The Java Remote Management Interface of all versions of Orlansoft... |
| CVE-2020-23621 | 2022-05-02 | The Java Remote Management Interface of all versions of SVI... |
| CVE-2022-29824 | 2022-05-03 | In libxml2 before 2.9.14, several buffer handling functions in buf.c... |
| CVE-2022-28118 | 2022-05-03 | SiteServer CMS v7.x allows attackers to execute arbitrary code via... |
| CVE-2022-20745 | 2022-05-03 | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Denial of Service Vulnerability |
| CVE-2022-20746 | 2022-05-03 | Cisco Firepower Threat Defense Software TCP Proxy Denial of Service Vulnerability |
| CVE-2022-20748 | 2022-05-03 | Cisco Firepower Threat Defense Software Local Malware Analysis Denial of Service Vulnerability |
| CVE-2022-20751 | 2022-05-03 | Cisco Firepower Threat Defense Software Snort Out of Memory Denial of Service Vulnerability |
| CVE-2022-20757 | 2022-05-03 | Cisco Firepower Threat Defense Software Denial of Service Vulnerability |
| CVE-2022-20760 | 2022-05-03 | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software DNS Inspection Denial of Service Vulnerability |
| CVE-2022-20759 | 2022-05-03 | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Privilege Escalation Vulnerability |
| CVE-2022-20767 | 2022-05-03 | Cisco Firepower Threat Defense Software DNS Enforcement Denial of Service Vulnerability |
| CVE-2022-20743 | 2022-05-03 | Cisco Firepower Management Center File Upload Security Bypass Vulnerability |
| CVE-2022-20742 | 2022-05-03 | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software IPsec IKEv2 VPN Information Disclosure Vulnerability |
| CVE-2022-20740 | 2022-05-03 | Cisco Firepower Management Center Software Cross-Site Scripting Vulnerability |
| CVE-2022-20737 | 2022-05-03 | Cisco Adaptive Security Appliance Software Clientless SSL VPN Heap Overflow Vulnerability |
| CVE-2022-20730 | 2022-05-03 | Cisco Firepower Threat Defense Software Security Intelligence DNS Feed Bypass Vulnerability |
| CVE-2022-20729 | 2022-05-03 | Cisco Firepower Threat Defense Software XML Injection Vulnerability |
| CVE-2022-20715 | 2022-05-03 | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access SSL VPN Denial of Service Vulnerability |
| CVE-2022-20629 | 2022-05-03 | Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities |
| CVE-2022-20628 | 2022-05-03 | Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities |
| CVE-2022-20627 | 2022-05-03 | Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities |
| CVE-2022-20744 | 2022-05-03 | Cisco Firepower Management Center Software Information Disclosure Vulnerability |
| CVE-2022-21949 | 2022-05-03 | Multiple XXE vulnerabilities in OBS |
| CVE-2022-1554 | 2022-05-03 | Path Traversal due to `send_file` call in clinical-genomics/scout |
| CVE-2022-23063 | 2022-05-03 | Shopizer - Insufficient Session Expiration |
| CVE-2021-42218 | 2022-05-03 | OMPL v1.5.2 contains a memory leak in VFRRT.cpp |
| CVE-2021-41959 | 2022-05-03 | JerryScript Git version 14ff5bf does not sufficiently track and release... |
| CVE-2021-42165 | 2022-05-03 | MitraStar GPT-2541GNAC-N1 (HGU) 100VNZ0b33 devices allow remote authenticated users to... |
| CVE-2021-39390 | 2022-05-03 | Stored XSS in PartKeepr 1.4.0 Edit section in multiple api... |
| CVE-2022-0916 | 2022-05-03 | Broken authentication on Logitech Options due to misvalidation of Oauth state parameter |
| CVE-2022-28590 | 2022-05-03 | A Remote Code Execution (RCE) vulnerability exists in Pixelimity 1.0... |
| CVE-2022-28589 | 2022-05-03 | A stored cross-site scripting (XSS) vulnerability in Pixelimity 1.0 allows... |
| CVE-2022-1292 | 2022-05-03 | The c_rehash script allows command injection |
| CVE-2022-1343 | 2022-05-03 | OCSP_basic_verify may incorrectly verify the response signing certificate |
| CVE-2022-1434 | 2022-05-03 | Incorrect MAC key used in the RC4-MD5 ciphersuite |
| CVE-2022-1473 | 2022-05-03 | Resource leakage when decoding certificates and keys |
| CVE-2022-28560 | 2022-05-03 | There is a stack overflow vulnerability in the goform/fast_setting_wifi_set function... |
| CVE-2022-28561 | 2022-05-03 | There is a stack overflow vulnerability in the /goform/setMacFilterCfg function... |
| CVE-2021-22573 | 2022-05-03 | Incorrect signature verification on Google-oauth-java-client |
| CVE-2021-22556 | 2022-05-03 | Integer Overflow in Fuchsia Kernel |
| CVE-2022-0882 | 2022-05-03 | Illegal access to Kernel log in Fuchsia |
| CVE-2022-22137 | 2022-05-03 | A memory corruption vulnerability exists in the ioca_mys_rgb_allocate functionality of... |
| CVE-2022-23400 | 2022-05-03 | A stack-based buffer overflow vulnerability exists in the IGXMPXMLParser::parseDelimiter functionality... |
| CVE-2022-28505 | 2022-05-03 | Jfinal_cms 5.1.0 is vulnerable to SQL Injection via com.jflyfox.system.log.LogController.java. |
| CVE-2022-27962 | 2022-05-03 | Bluecms 1.6 has a SQL injection vulnerability at cooike. |
| CVE-2022-28585 | 2022-05-03 | EmpireCMS 7.5 has a SQL injection vulnerability in AdClass.php |
| CVE-2021-46440 | 2022-05-03 | Storing passwords in a recoverable format in the DOCUMENTATION plugin... |
| CVE-2022-28588 | 2022-05-03 | In SpringBootMovie <=1.2 when adding movie names, malicious code can... |
| CVE-2022-29001 | 2022-05-03 | In SpringBootMovie <=1.2, the uploaded file suffix parameter is not... |
| CVE-2022-28599 | 2022-05-03 | A stored cross-site scripting (XSS) vulnerability exists in FUEL-CMS 1.5.1... |
| CVE-2021-29854 | 2022-05-03 | IBM Maximo Asset Management 7.6.1.1 and 7.6.1.2 is vulnerable to... |
| CVE-2022-22368 | 2022-05-03 | IBM Spectrum Scale 5.1.0 through 5.1.3.0 uses weaker than expected... |
| CVE-2022-1331 | 2022-05-03 | Delta Electronics DMARS Improper Restriction of XML External Entity Reference |
| CVE-2022-28780 | 2022-05-03 | Improper access control vulnerability in Weather prior to SMR May-2022... |
| CVE-2022-28781 | 2022-05-03 | Improper input validation in Settings prior to SMR-May-2022 Release 1... |
| CVE-2022-28782 | 2022-05-03 | Improper access control vulnerability in Contents To Window prior to... |
| CVE-2022-28783 | 2022-05-03 | Improper validation of removing package name in Galaxy Themes prior... |
| CVE-2022-28784 | 2022-05-03 | Path traversal vulnerability in Galaxy Themes prior to SMR May-2022... |
| CVE-2022-28785 | 2022-05-03 | Improper buffer size check logic in aviextractor library prior to... |
| CVE-2022-28786 | 2022-05-03 | Improper buffer size check logic in aviextractor library prior to... |
| CVE-2022-28787 | 2022-05-03 | Improper buffer size check logic in wmfextractor library prior to... |
| CVE-2022-28788 | 2022-05-03 | Improper buffer size check logic in aviextractor library prior to... |
| CVE-2022-28789 | 2022-05-03 | Unprotected activities in Voice Note prior to version 21.3.51.11 allows... |
| CVE-2022-28790 | 2022-05-03 | Improper authentication in Link to Windows Service prior to version... |
| CVE-2022-28791 | 2022-05-03 | Improper input validation vulnerability in InstallAgent in Galaxy Store prior... |
| CVE-2022-28792 | 2022-05-03 | DLL hijacking vulnerability in Gear IconX PC Manager prior to... |
| CVE-2022-28793 | 2022-05-03 | Given the TEE is compromised and controlled by the attacker,... |
| CVE-2022-20084 | 2022-05-03 | In telephony, there is a possible way to disable receiving... |
| CVE-2022-20109 | 2022-05-03 | In ion, there is a possible use after free due... |
| CVE-2022-20110 | 2022-05-03 | In ion, there is a possible use after free due... |
| CVE-2022-20085 | 2022-05-03 | In netdiag, there is a possible symbolic link following due... |
| CVE-2022-27313 | 2022-05-03 | An arbitrary file deletion vulnerability in Gitea v1.16.3 allows attackers... |
| CVE-2022-20087 | 2022-05-03 | In ccu, there is a possible out of bounds write... |
| CVE-2022-20088 | 2022-05-03 | In aee driver, there is a possible reference count mistake... |
| CVE-2022-20089 | 2022-05-03 | In aee driver, there is a possible memory corruption due... |
| CVE-2022-20090 | 2022-05-03 | In aee driver, there is a possible use after free... |
| CVE-2022-20091 | 2022-05-03 | In aee driver, there is a possible use after free... |
| CVE-2022-20092 | 2022-05-03 | In alac decoder, there is a possible out of bounds... |
| CVE-2022-20093 | 2022-05-03 | In telephony, there is a possible way to disable receiving... |
| CVE-2022-20094 | 2022-05-03 | In imgsensor, there is a possible out of bounds write... |
| CVE-2022-20095 | 2022-05-03 | In imgsensor, there is a possible out of bounds write... |
| CVE-2022-20096 | 2022-05-03 | In camera, there is a possible information disclosure due to... |
| CVE-2022-20097 | 2022-05-03 | In aee daemon, there is a possible information disclosure due... |
| CVE-2022-20098 | 2022-05-03 | In aee daemon, there is a possible information disclosure due... |
| CVE-2022-20099 | 2022-05-03 | In aee daemon, there is a possible out of bounds... |
| CVE-2022-20100 | 2022-05-03 | In aee daemon, there is a possible information disclosure due... |
| CVE-2022-27330 | 2022-05-03 | A cross-site scripting (XSS) vulnerability in /public/admin/index.php?add_product of E-Commerce Website... |
| CVE-2022-20101 | 2022-05-03 | In aee daemon, there is a possible information disclosure due... |
| CVE-2022-20102 | 2022-05-03 | In aee daemon, there is a possible information disclosure due... |
| CVE-2022-20103 | 2022-05-03 | In aee daemon, there is a possible information disclosure due... |
| CVE-2022-20104 | 2022-05-03 | In aee daemon, there is a possible information disclosure due... |
| CVE-2022-20105 | 2022-05-03 | In MM service, there is a possible out of bounds... |
| CVE-2022-20106 | 2022-05-03 | In MM service, there is a possible out of bounds... |
| CVE-2022-20107 | 2022-05-03 | In subtitle service, there is a possible application crash due... |
| CVE-2022-20108 | 2022-05-03 | In voice service, there is a possible out of bounds... |
| CVE-2022-20111 | 2022-05-03 | In ion, there is a possible use after free due... |
| CVE-2022-21743 | 2022-05-03 | In ion, there is a possible use after free due... |
| CVE-2022-1548 | 2022-05-03 | Playbook members are allowed to escalate their membership privileges and perform actions restricted to playbook admins. |