CVE List - 2022 / June
Showing 1501 - 1600 of 2149 CVEs for June 2022 (Page 16 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-32973 | 2022-06-21 | An authenticated attacker could create an audit file that bypasses PowerShell cmdlet checks and executes commands with administrator privileges. |
| CVE-2022-32974 | 2022-06-21 | An authenticated attacker could read arbitrary files from the underlying operating system of the scanner using a custom crafted compliance audit file without providing any valid SSH credentials. |
| CVE-2022-27869 | 2022-06-21 | A maliciously crafted TIFF file in Autodesk AutoCAD 2023 can be forced to read and write beyond allocated boundaries when parsing the TIFF file. This vulnerability can be exploited to... |
| CVE-2022-27871 | 2022-06-21 | Autodesk AutoCAD product suite, Revit, Design Review and Navisworks releases using PDFTron prior to 9.1.17 version may be used to write beyond the allocated buffer while parsing PDF files. This... |
| CVE-2022-27867 | 2022-06-21 | A maliciously crafted JT file in Autodesk AutoCAD 2022, 2021, 2020, 2019 can be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution. |
| CVE-2022-27868 | 2022-06-21 | A maliciously crafted CAT file in Autodesk AutoCAD 2023 can be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution. |
| CVE-2022-27870 | 2022-06-21 | A maliciously crafted TGA file in Autodesk AutoCAD 2023 may be used to write beyond the allocated buffer while parsing TGA file. This vulnerability may be exploited to execute arbitrary... |
| CVE-2022-27872 | 2022-06-21 | A maliciously crafted PDF file may be used to dereference a pointer for read or write operation while parsing PDF files in Autodesk Navisworks 2022. The vulnerability exists because the... |
| CVE-2022-22979 | 2022-06-21 | In Spring Cloud Function versions prior to 3.2.6, it is possible for a user who directly interacts with framework provided lookup functionality to cause a denial-of-service condition due to the... |
| CVE-2022-23171 | 2022-06-21 | AtlasVPN - Privilege Escalation |
| CVE-2022-1665 | 2022-06-21 | A set of pre-production kernel packages of Red Hat Enterprise Linux for IBM Power architecture can be booted by the grub in Secure Boot mode even though it shouldn't. These... |
| CVE-2022-1833 | 2022-06-21 | A flaw was found in AMQ Broker Operator 7.9.4 installed via UI using OperatorHub where a low-privilege user that has access to the namespace where the AMQ Operator is deployed... |
| CVE-2022-1596 | 2022-06-21 | ABB Relion REX640 Insufficient file access control |
| CVE-2022-26147 | 2022-06-21 | The Quectel RG502Q-EA modem before 2022-02-23 allow OS Command Injection. |
| CVE-2022-30874 | 2022-06-21 | There is a Cross Site Scripting Stored (XSS) vulnerability in NukeViet CMS before 4.5.02. |
| CVE-2022-33995 | 2022-06-21 | A path traversal issue in entry attachments in Devolutions Remote Desktop Manager before 2022.2 allows attackers to create or overwrite files in an arbitrary location. |
| CVE-2022-2068 | 2022-06-21 | The c_rehash script allows command injection |
| CVE-2021-39006 | 2022-06-21 | IBM QRadar WinCollect Agent 10.0 and 10.0.1 could allow an attacker to obtain sensitive information due to missing best practices. IBM X-Force ID: 213549. |
| CVE-2021-36761 | 2022-06-21 | The GeoAnalytics feature in Qlik Sense April 2020 patch 4 allows SSRF. |
| CVE-2021-40511 | 2022-06-21 | OBDA systems’ Mastro 1.0 is vulnerable to XML Entity Expansion (aka “billion laughs”) attack allowing denial of service. |
| CVE-2021-40510 | 2022-06-21 | XML eXternal Entity (XXE) in OBDA systems’ Mastro 1.0 allows remote attackers to read system files via custom DTDs. |
| CVE-2022-31095 | 2022-06-21 | Exposure of Sensitive Information in discourse-chat |
| CVE-2022-34176 | 2022-06-22 | Jenkins JUnit Plugin 1119.va_a_5e9068da_d7 and earlier does not escape descriptions of test results, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Run/Update permission. |
| CVE-2022-34177 | 2022-06-22 | Jenkins Pipeline: Input Step Plugin 448.v37cea_9a_10a_70 and earlier archives files uploaded for `file` parameters for Pipeline `input` steps on the controller as part of build metadata, using the parameter name... |
| CVE-2022-34300 | 2022-06-22 | In tinyexr 1.0.1, there is a heap-based buffer over-read in tinyexr::DecodePixelData. |
| CVE-2022-22967 | 2022-06-22 | An issue was discovered in SaltStack Salt in versions before 3002.9, 3003.5, 3004.2. PAM auth fails to reject locked accounts, which allows a previously authorized user whose account is locked... |
| CVE-2017-20082 | 2022-06-22 | JUNG Smart Visu Server backdoor |
| CVE-2017-20083 | 2022-06-22 | JUNG Smart Visu Server SSH Server backdoor |
| CVE-2017-20084 | 2022-06-22 | JUNG Smart Visu Server KNX Group Address backdoor |
| CVE-2022-23057 | 2022-06-22 | ERPNext - Stored XSS in My Profile |
| CVE-2022-23056 | 2022-06-22 | ERPNext - Stored XSS leads to account takover |
| CVE-2022-23058 | 2022-06-22 | ERPNext - Stored XSS in My Settings |
| CVE-2022-23055 | 2022-06-22 | ERPNext - Improper user access conrol |
| CVE-2022-21952 | 2022-06-22 | SUMA unauthenticated remote DoS via resource exhaustion |
| CVE-2022-31248 | 2022-06-22 | SUMA user enumeration via weak error message |
| CVE-2022-23077 | 2022-06-22 | Habitica - DOM XSS in login page |
| CVE-2022-23078 | 2022-06-22 | Habitica - Open redirect in login page |
| CVE-2022-2174 | 2022-06-22 | Cross-site Scripting (XSS) - Reflected in microweber/microweber |
| CVE-2022-34296 | 2022-06-22 | In Zalando Skipper before 0.13.218, a query predicate could be bypassed via a prepared request. |
| CVE-2022-23079 | 2022-06-22 | motoradmin - host header Injection in the reset password functionality |
| CVE-2022-33105 | 2022-06-22 | Redis v7.0 was discovered to contain a memory leak via the component streamGetEdgeID. |
| CVE-2022-29526 | 2022-06-22 | Go before 1.17.10 and 1.18.x before 1.18.2 has Incorrect Privilege Assignment. When called with a non-zero flags parameter, the Faccessat function could incorrectly report that a file is accessible. |
| CVE-2022-34298 | 2022-06-22 | The NT auth module in OpenAM before 14.6.6 allows a "replace Samba username attack." |
| CVE-2022-33067 | 2022-06-22 | Lrzip v0.651 was discovered to contain multiple invalid arithmetic shifts via the functions get_magic in lrzip.c and Predictor::init in libzpaq/libzpaq.cpp. These vulnerabilities allow attackers to cause a Denial of Service... |
| CVE-2022-33068 | 2022-06-22 | An integer overflow in the component hb-ot-shape-fallback.cc of Harfbuzz v4.3.0 allows attackers to cause a Denial of Service (DoS) via unspecified vectors. |
| CVE-2022-33069 | 2022-06-22 | Ethereum Solidity v0.8.14 contains an assertion failure via SMTEncoder::indexOrMemberAssignment() at SMTEncoder.cpp. |
| CVE-2022-33070 | 2022-06-22 | Protobuf-c v1.4.0 was discovered to contain an invalid arithmetic shift via the function parse_tag_and_wiretype in protobuf-c/protobuf-c.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via unspecified vectors. |
| CVE-2022-33024 | 2022-06-22 | There is an Assertion `int decode_preR13_entities(BITCODE_RL, BITCODE_RL, unsigned int, BITCODE_RL, BITCODE_RL, Bit_Chain *, Dwg_Data *' failed at dwg2dxf: decode.c:5801 in libredwg v0.12.4.4608. |
| CVE-2022-33026 | 2022-06-22 | LibreDWG v0.12.4.4608 was discovered to contain a heap buffer overflow via the function bit_calc_CRC at bits.c. |
| CVE-2022-33027 | 2022-06-22 | LibreDWG v0.12.4.4608 was discovered to contain a heap-use-after-free via the function dwg_add_handleref at dwg.c. |
| CVE-2022-33028 | 2022-06-22 | LibreDWG v0.12.4.4608 was discovered to contain a heap buffer overflow via the function dwg_add_object at decode.c. |
| CVE-2022-33025 | 2022-06-22 | LibreDWG v0.12.4.4608 was discovered to contain a heap-use-after-free via the function decode_preR13_section at decode_r11.c. |
| CVE-2022-33032 | 2022-06-22 | LibreDWG v0.12.4.4608 was discovered to contain a heap-buffer-overflow via the function decode_preR13_section_hdr at decode_r11.c. |
| CVE-2022-33033 | 2022-06-22 | LibreDWG v0.12.4.4608 was discovered to contain a double-free via the function dwg_read_file at dwg.c. |
| CVE-2022-33034 | 2022-06-22 | LibreDWG v0.12.4.4608 was discovered to contain a stack overflow via the function copy_bytes at decode_r2007.c. |
| CVE-2022-31395 | 2022-06-22 | Algo Communication Products Ltd. 8373 IP Zone Paging Adapter Firmware 1.7.6 allows attackers to perform a directory traversal via a web request sent to /fm-data.lua. |
| CVE-2022-20651 | 2022-06-22 | Cisco Adaptive Security Device Manager Information Disclosure Vulnerability |
| CVE-2022-32535 | 2022-06-22 | Web server runs as root |
| CVE-2022-32534 | 2022-06-22 | OS Command Injection |
| CVE-2022-32536 | 2022-06-22 | Privilege Escalation |
| CVE-2021-26636 | 2022-06-22 | Maxboard Remote Code Execution |
| CVE-2021-26637 | 2022-06-22 | SiHAS Improper Authentication vulnerability |
| CVE-2021-26638 | 2022-06-22 | Xi Smarthome wallpad authentication bypass vulnerability |
| CVE-2022-22980 | 2022-06-22 | A Spring Data MongoDB application is vulnerable to SpEL Injection when using @Query or @Aggregation-annotated query methods with SpEL expressions that contain query parameter placeholders for value binding if the... |
| CVE-2022-32553 | 2022-06-22 | Pure Storage FlashArray products running Purity//FA 6.2.0 - 6.2.3, 6.1.0 - 6.1.12, 6.0.0 - 6.0.8, 5.3.0 - 5.3.17, 5.2.x and prior Purity//FA releases, and Pure Storage FlashBlade products running Purity//FB... |
| CVE-2022-32552 | 2022-06-22 | Pure Storage FlashArray products running Purity//FA 6.2.0 - 6.2.3, 6.1.0 - 6.1.12, 6.0.0 - 6.0.8, 5.3.0 - 5.3.17, 5.2.x and prior Purity//FA releases, and Pure Storage FlashBlade products running Purity//FB... |
| CVE-2022-32549 | 2022-06-22 | log injection in Sling logging |
| CVE-2022-32554 | 2022-06-22 | Pure Storage FlashArray products running Purity//FA 6.2.0 - 6.2.3, 6.1.0 - 6.1.12, 6.0.0 - 6.0.8, 5.3.0 - 5.3.17, 5.2.x and prior Purity//FA releases, and Pure Storage FlashBlade products running Purity//FB... |
| CVE-2022-34299 | 2022-06-22 | There is a heap-based buffer over-read in libdwarf 0.4.0. This issue is related to dwarf_global_formref_b. |
| CVE-2022-31787 | 2022-06-22 | IdeaTMS 2022 is vulnerable to SQL Injection via the PATH_INFO |
| CVE-2022-34170 | 2022-06-22 | In Jenkins 2.320 through 2.355 (both inclusive) and LTS 2.332.1 through LTS 2.332.3 (both inclusive) the help icon does not escape the feature name that is part of its tooltip,... |
| CVE-2022-34171 | 2022-06-22 | In Jenkins 2.321 through 2.355 (both inclusive) and LTS 2.332.1 through LTS 2.332.3 (both inclusive) the HTML output generated for new symbol-based SVG icons includes the 'title' attribute of 'l:ionicon'... |
| CVE-2022-34172 | 2022-06-22 | In Jenkins 2.340 through 2.355 (both inclusive) symbol-based icons unescape previously escaped values of 'tooltip' parameters, resulting in a cross-site scripting (XSS) vulnerability. |
| CVE-2022-34173 | 2022-06-22 | In Jenkins 2.340 through 2.355 (both inclusive) the tooltip of the build button in list views supports HTML without escaping the job display name, resulting in a cross-site scripting (XSS)... |
| CVE-2022-34174 | 2022-06-22 | In Jenkins 2.355 and earlier, LTS 2.332.3 and earlier, an observable timing discrepancy on the login form allows distinguishing between login attempts with an invalid username, and login attempts with... |
| CVE-2022-34175 | 2022-06-22 | Jenkins 2.335 through 2.355 (both inclusive) allows attackers in some cases to bypass a protection mechanism, thereby directly accessing some view fragments containing sensitive information, bypassing any permission checks in... |
| CVE-2022-34178 | 2022-06-22 | Jenkins Embeddable Build Status Plugin 2.0.3 allows specifying a 'link' query parameter that build status badges will link to, without restricting possible values, resulting in a reflected cross-site scripting (XSS)... |
| CVE-2022-34179 | 2022-06-22 | Jenkins Embeddable Build Status Plugin 2.0.3 and earlier allows specifying a `style` query parameter that is used to choose a different SVG image style without restricting possible values, resulting in... |
| CVE-2022-34180 | 2022-06-22 | Jenkins Embeddable Build Status Plugin 2.0.3 and earlier does not correctly perform the ViewStatus permission check in the HTTP endpoint it provides for "unprotected" status badge access, allowing attackers without... |
| CVE-2022-34181 | 2022-06-22 | Jenkins xUnit Plugin 3.0.8 and earlier implements an agent-to-controller message that creates a user-specified directory if it doesn't exist, and parsing files inside it as test results, allowing attackers able... |
| CVE-2022-34182 | 2022-06-22 | Jenkins Nested View Plugin 1.20 through 1.25 (both inclusive) does not escape search parameters, resulting in a reflected cross-site scripting (XSS) vulnerability. |
| CVE-2022-34183 | 2022-06-22 | Jenkins Agent Server Parameter Plugin 1.1 and earlier does not escape the name and description of Agent Server parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS)... |
| CVE-2022-34184 | 2022-06-22 | Jenkins CRX Content Package Deployer Plugin 1.9 and earlier does not escape the name and description of CRX Content Package Choice parameters on views displaying parameters, resulting in a stored... |
| CVE-2022-34185 | 2022-06-22 | Jenkins Date Parameter Plugin 0.0.4 and earlier does not escape the name and description of Date parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable... |
| CVE-2022-34186 | 2022-06-22 | Jenkins Dynamic Extended Choice Parameter Plugin 1.0.1 and earlier does not escape the name and description of Moded Extended Choice parameters on views displaying parameters, resulting in a stored cross-site... |
| CVE-2022-34187 | 2022-06-22 | Jenkins Filesystem List Parameter Plugin 0.0.7 and earlier does not escape the name and description of File system objects list parameters on views displaying parameters, resulting in a stored cross-site... |
| CVE-2022-34188 | 2022-06-22 | Jenkins Hidden Parameter Plugin 0.0.4 and earlier does not escape the name and description of Hidden Parameter parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability... |
| CVE-2022-34189 | 2022-06-22 | Jenkins Image Tag Parameter Plugin 1.10 and earlier does not escape the name and description of Image Tag parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS)... |
| CVE-2022-34190 | 2022-06-22 | Jenkins Maven Metadata Plugin for Jenkins CI server Plugin 2.1 and earlier does not escape the name and description of List maven artifact versions parameters on views displaying parameters, resulting... |
| CVE-2022-34191 | 2022-06-22 | Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.77 and earlier does not escape the name of NetStorm Test parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability... |
| CVE-2022-34192 | 2022-06-22 | Jenkins ontrack Jenkins Plugin 4.0.0 and earlier does not escape the name of Ontrack: Multi Parameter choice, Ontrack: Parameter choice, and Ontrack: SingleParameter parameters on views displaying parameters, resulting in... |
| CVE-2022-34193 | 2022-06-22 | Jenkins Package Version Plugin 1.0.1 and earlier does not escape the name of Package version parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by... |
| CVE-2022-34194 | 2022-06-22 | Jenkins Readonly Parameter Plugin 1.0.0 and earlier does not escape the name and description of Readonly String and Readonly Text parameters on views displaying parameters, resulting in a stored cross-site... |
| CVE-2022-34195 | 2022-06-22 | Jenkins Repository Connector Plugin 2.2.0 and earlier does not escape the name and description of Maven Repository Artifact parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS)... |
| CVE-2022-34196 | 2022-06-22 | Jenkins REST List Parameter Plugin 1.5.2 and earlier does not escape the name and description of REST list parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS)... |
| CVE-2022-34197 | 2022-06-22 | Jenkins Sauce OnDemand Plugin 1.204 and earlier does not escape the name and description of Sauce Labs Browsers parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS)... |
| CVE-2022-34198 | 2022-06-22 | Jenkins Stash Branch Parameter Plugin 0.3.0 and earlier does not escape the name and description of Stash Branch parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS)... |
| CVE-2022-34199 | 2022-06-22 | Jenkins Convertigo Mobile Platform Plugin 1.1 and earlier stores passwords unencrypted in job config.xml files on the Jenkins controller where they can be viewed by users with Extended Read permission,... |
| CVE-2022-34200 | 2022-06-22 | A cross-site request forgery (CSRF) vulnerability in Jenkins Convertigo Mobile Platform Plugin 1.1 and earlier allows attackers to connect to an attacker-specified URL. |
| CVE-2022-34201 | 2022-06-22 | A missing permission check in Jenkins Convertigo Mobile Platform Plugin 1.1 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL. |