CVE List - 2022 / July
Showing 201 - 300 of 1977 CVEs for July 2022 (Page 3 of 20)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-21770 | 2022-07-06 | In sound driver, there is a possible information disclosure due... |
| CVE-2022-21771 | 2022-07-06 | In GED driver, there is a possible use after free... |
| CVE-2022-21772 | 2022-07-06 | In TEEI driver, there is a possible type confusion due... |
| CVE-2022-21773 | 2022-07-06 | In TEEI driver, there is a possible use after free... |
| CVE-2022-21774 | 2022-07-06 | In TEEI driver, there is a possible use after free... |
| CVE-2022-21775 | 2022-07-06 | In sched driver, there is a possible use after free... |
| CVE-2022-21776 | 2022-07-06 | In MDP, there is a possible use after free due... |
| CVE-2022-21777 | 2022-07-06 | In Autoboot, there is a possible permission bypass due to... |
| CVE-2022-21779 | 2022-07-06 | In WLAN driver, there is a possible out of bounds... |
| CVE-2022-21780 | 2022-07-06 | In WLAN driver, there is a possible out of bounds... |
| CVE-2022-21781 | 2022-07-06 | In WLAN driver, there is a possible out of bounds... |
| CVE-2022-21782 | 2022-07-06 | In WLAN driver, there is a possible out of bounds... |
| CVE-2022-21783 | 2022-07-06 | In WLAN driver, there is a possible out of bounds... |
| CVE-2022-21784 | 2022-07-06 | In WLAN driver, there is a possible out of bounds... |
| CVE-2022-21785 | 2022-07-06 | In WLAN driver, there is a possible out of bounds... |
| CVE-2022-21786 | 2022-07-06 | In audio DSP, there is a possible memory corruption due... |
| CVE-2022-21787 | 2022-07-06 | In audio DSP, there is a possible out of bounds... |
| CVE-2022-23172 | 2022-07-06 | Priority - Priority User Enumeration |
| CVE-2022-23173 | 2022-07-06 | Priority - Priority web Insecure direct object references (IDOR) |
| CVE-2022-30619 | 2022-07-06 | Agile Point - Agile Point NX SQL injection (SQLi) |
| CVE-2022-23713 | 2022-07-06 | A cross-site-scripting (XSS) vulnerability was discovered in the Vega Charts... |
| CVE-2022-23714 | 2022-07-06 | A local privilege escalation (LPE) issue was discovered in the... |
| CVE-2022-30929 | 2022-07-06 | Mini-Tmall v1.0 is vulnerable to Insecure Permissions via tomcat-embed-jasper. |
| CVE-2021-3695 | 2022-07-06 | A crafted 16-bit grayscale PNG image may lead to a... |
| CVE-2021-3696 | 2022-07-06 | A heap out-of-bounds write may heppen during the handling of... |
| CVE-2021-3697 | 2022-07-06 | A crafted JPEG image may lead the JPEG reader to... |
| CVE-2022-33737 | 2022-07-06 | The OpenVPN Access Server installer creates a log file readable... |
| CVE-2022-33738 | 2022-07-06 | OpenVPN Access Server before 2.11 uses a weak random generator... |
| CVE-2022-26078 | 2022-07-06 | Gallagher Controller 6000 is vulnerable to a Denial of Service... |
| CVE-2022-26348 | 2022-07-06 | Command Centre Server is vulnerable to SQL Injection via Windows... |
| CVE-2022-34595 | 2022-07-06 | Tenda AX1803 v1.0.0.1_2890 was discovered to contain a command injection... |
| CVE-2022-34596 | 2022-07-06 | Tenda AX1803 v1.0.0.1_2890 was discovered to contain a command injection... |
| CVE-2022-34597 | 2022-07-06 | Tenda AX1806 v1.0.0.1 was discovered to contain a command injection... |
| CVE-2022-34598 | 2022-07-06 | The udpserver in H3C Magic R100 V200R004 and V100R005 has... |
| CVE-2022-31111 | 2022-07-06 | Discrepency in transfer value and actual value due to incorrect truncation in Frontier |
| CVE-2022-31126 | 2022-07-06 | Unauthenticated Remote Code Execution in Roxy-wi |
| CVE-2022-31124 | 2022-07-06 | Possible leak of key's raw field if declared length is incorrect in openssh_key_parser |
| CVE-2022-31131 | 2022-07-06 | Ownership check missing when updating or deleting mail attachments in Nextcloud mail |
| CVE-2022-31127 | 2022-07-06 | Improper handling of email input in next-auth |
| CVE-2022-33047 | 2022-07-06 | OTFCC v0.10.4 was discovered to contain a heap buffer overflow... |
| CVE-2022-2316 | 2022-07-06 | HTML injection vulnerability in secure messages of Devolutions Server before... |
| CVE-2015-3172 | 2022-07-06 | EidoGo is susceptible to Cross-Site Scripting (XSS) attacks via maliciously... |
| CVE-2015-3173 | 2022-07-06 | custom-content-type-manager Wordpress plugin can be used by an administrator to... |
| CVE-2014-8164 | 2022-07-06 | A insecure configuration for certificate verification (http.verify_mode = OpenSSL::SSL::VERIFY_NONE) may... |
| CVE-2021-4234 | 2022-07-06 | OpenVPN Access Server 2.10 and prior versions are susceptible to... |
| CVE-2022-27548 | 2022-07-06 | HCL Launch is vulnerable to information disclosure which can be read by a local user. |
| CVE-2022-27549 | 2022-07-06 | HCL Launch could disclose sensitive database information to a local user in plain text. |
| CVE-2022-20752 | 2022-07-06 | Cisco Unified Communications Products Timing Attack Vulnerability |
| CVE-2022-20768 | 2022-07-06 | Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability |
| CVE-2022-20791 | 2022-07-06 | Cisco Unified Communications Products Arbitrary File Read Vulnerability |
| CVE-2022-20800 | 2022-07-06 | Cisco Unified Communications Products Cross-Site Scripting Vulnerability |
| CVE-2022-20808 | 2022-07-06 | Cisco Smart Software Manager On-Prem Denial of Service Vulnerability |
| CVE-2022-20812 | 2022-07-06 | Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities |
| CVE-2022-20813 | 2022-07-06 | Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities |
| CVE-2022-20815 | 2022-07-06 | Cisco Unified Communications Products Cross-Site Scripting Vulnerability |
| CVE-2022-20859 | 2022-07-06 | Cisco Unified Communications Products Access Control Vulnerability |
| CVE-2022-20862 | 2022-07-06 | Cisco Unified Communications Manager Arbitrary File Read Vulnerability |
| CVE-2022-32060 | 2022-07-07 | An arbitrary file upload vulnerability in the Update Branding Settings... |
| CVE-2022-32449 | 2022-07-07 | TOTOLINK EX300_V2 V4.0.3c.7484 was discovered to contain a command injection... |
| CVE-2022-34592 | 2022-07-07 | Wavlink WL-WN575A3 RPT75A3.V4300.201217 was discovered to contain a command injection... |
| CVE-2022-32205 | 2022-07-07 | A malicious server can serve excessive amounts of `Set-Cookie:` headers... |
| CVE-2022-32206 | 2022-07-07 | curl < 7.84.0 supports "chained" HTTP compression algorithms, meaning that... |
| CVE-2022-32207 | 2022-07-07 | When curl < 7.84.0 saves cookies, alt-svc and hsts data... |
| CVE-2022-32208 | 2022-07-07 | When curl < 7.84.0 does FTP transfers secured by krb5,... |
| CVE-2022-2339 | 2022-07-07 | Server-Side Request Forgery (SSRF) in nocodb/nocodb |
| CVE-2022-2342 | 2022-07-07 | Cross-site Scripting (XSS) - Stored in outline/outline |
| CVE-2022-32567 | 2022-07-07 | The Appfire Jira Misc Custom Fields (JMCF) app 2.4.6 for... |
| CVE-2022-34007 | 2022-07-07 | EQS Integrity Line Professional through 2022-07-01 allows a stored XSS... |
| CVE-2022-33996 | 2022-07-07 | Incorrect permission management in Devolutions Server before 2022.2 allows a... |
| CVE-2022-25046 | 2022-07-07 | A path traversal vulnerability in loader.php of CWP v0.9.8.1122 allows... |
| CVE-2022-25047 | 2022-07-07 | The password reset token in CWP v0.9.8.1126 is generated using... |
| CVE-2022-25048 | 2022-07-07 | Command injection vulnerability in CWP v0.9.8.1126 that allows normal users... |
| CVE-2015-3207 | 2022-07-07 | In Openshift Origin 3 the cookies being set in console... |
| CVE-2015-1785 | 2022-07-07 | In nextgen-galery wordpress plugin before 2.0.77.3 there are two vulnerabilities... |
| CVE-2015-1784 | 2022-07-07 | In nextgen-galery wordpress plugin before 2.0.77.3 there are two vulnerabilities... |
| CVE-2022-31854 | 2022-07-07 | Codoforum v5.1 was discovered to contain an arbitrary file upload... |
| CVE-2022-32441 | 2022-07-07 | A memory corruption in Hex Rays Ida Pro v6.6 allows... |
| CVE-2021-46825 | 2022-07-07 | Symantec Advanced Secure Gateway (ASG) and ProxySG are susceptible to... |
| CVE-2022-23744 | 2022-07-07 | Check Point Endpoint before version E86.50 failed to protect against... |
| CVE-2015-5236 | 2022-07-07 | It was discovered that the IcedTea-Web used codebase attribute of... |
| CVE-2022-32054 | 2022-07-07 | Tenda AC10 US_AC10V1.0RTL_V15.03.06.26_multi_TD01 was discovered to contain a remote code... |
| CVE-2022-32055 | 2022-07-07 | Inout Homestay v2.2 was discovered to contain a SQL injection... |
| CVE-2022-32056 | 2022-07-07 | Online Accreditation Management v1.0 was discovered to contain a SQL... |
| CVE-2022-31133 | 2022-07-07 | Cross site scripting in HumHub |
| CVE-2022-32058 | 2022-07-07 | An infinite loop in the function httpRpmPass of TP-Link TL-WR741N/TL-WR742N... |
| CVE-2022-31135 | 2022-07-07 | Maliciously crafted evidence packet may cause denial of service |
| CVE-2022-31136 | 2022-07-07 | Cross-site Scripting in BookWyrm |
| CVE-2022-31121 | 2022-07-07 | Improper Input Validation in fabric hyperledger |
| CVE-2021-44791 | 2022-07-07 | Reflected XSS on certain HTTP endpoints |
| CVE-2022-28889 | 2022-07-07 | Clickjacking in the web console |
| CVE-2015-5298 | 2022-07-07 | The Google Login Plugin (versions 1.0 and 1.1) allows malicious... |
| CVE-2021-31645 | 2022-07-07 | An issue was discovered in glFTPd 2.11a that allows remote... |
| CVE-2022-33098 | 2022-07-07 | Magnolia CMS v6.2.19 was discovered to contain a cross-site scripting... |
| CVE-2021-35283 | 2022-07-07 | SQL Injection vulnerability in product_admin.php in atoms183 CMS 1.0, allows... |
| CVE-2021-29281 | 2022-07-07 | File upload vulnerability in GFI Mail Archiver versions up to... |
| CVE-2022-33680 | 2022-07-07 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability |
| CVE-2022-2048 | 2022-07-07 | In Eclipse Jetty HTTP/2 server implementation, when encountering an invalid... |
| CVE-2022-2047 | 2022-07-07 | In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru... |
| CVE-2022-2191 | 2022-07-07 | In Eclipse Jetty versions 10.0.0 thru 10.0.9, and 11.0.0 thru... |
| CVE-2021-41042 | 2022-07-07 | In Eclipse Lyo versions 1.0.0 to 4.1.0, a TransformerFactory is... |