CVE List - 2022 / August
Showing 1101 - 1200 of 2306 CVEs for August 2022 (Page 12 of 24)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-36530 | 2022-08-16 | An issue was discovered in rageframe2 2.6.37. There is a XSS vulnerability in the user agent related parameters of the info.php page. |
| CVE-2022-30264 | 2022-08-16 | The Emerson ROC and FloBoss RTU product lines through 2022-05-02 perform insecure filesystem operations. They utilize the ROC protocol (4000/TCP, 5000/TCP) for communications between a master terminal and RTUs. Opcode... |
| CVE-2022-36273 | 2022-08-16 | Tenda AC9 V15.03.2.21_cn is vulnerable to command injection via goform/SetSysTimeCfg. |
| CVE-2022-36272 | 2022-08-16 | Mingsoft MCMS 5.2.8 was discovered to contain a SQL injection vulnerability in /mdiy/page/verify URI via fieldName parameter. |
| CVE-2022-36599 | 2022-08-16 | Mingsoft MCMS 5.2.8 was discovered to contain a SQL injection vulnerability in /mdiy/model/delete URI via models Lists. |
| CVE-2022-38362 | 2022-08-16 | Docker Provider <3.0 RCE vulnerability in example dag |
| CVE-2022-36242 | 2022-08-16 | Clinic's Patient Management System v1.0 is vulnerable to SQL Injection via /pms/update_medicine.php?id=. |
| CVE-2022-38194 | 2022-08-16 | Portal for ArcGIS system properties are not properly encrypted (10.8.1 only) |
| CVE-2022-38193 | 2022-08-16 | Code injection issue in Portal for ArcGIS (10.7.1 and 10.8.1) |
| CVE-2022-38192 | 2022-08-16 | There is a stored cross-site scripting (XSS) vulnerability in ArcGIS API for JavaScript. |
| CVE-2022-38184 | 2022-08-16 | There is an improper access control vulnerability in Portal for ArcGIS versions 10.8.1 |
| CVE-2022-38189 | 2022-08-16 | There is a stored cross-site scripting (XSS) vulnerability in ArcGIS API for JavaScript. |
| CVE-2022-30575 | 2022-08-16 | TIBCO Statistica Reflected Cross Site Scripting (XSS) Vulnerability |
| CVE-2022-30576 | 2022-08-16 | TIBCO Statistica Stored Cross Site Scripting (XSS) Vulnerability |
| CVE-2021-39035 | 2022-08-16 | IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.4, and 6.1.1.0 through 6.1.1.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code... |
| CVE-2021-39085 | 2022-08-16 | IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.4, and 6.1.1.0 through 6.1.1.1 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements,... |
| CVE-2021-39086 | 2022-08-16 | IBM Sterling File Gateway 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.4, and 6.1.1.0 through 6.1.1.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is... |
| CVE-2021-39087 | 2022-08-16 | IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.4, and 6.1.1.0 through 6.1.1.1 could allow an authenticated user to obtain sensitive information due to improper permission controls.... |
| CVE-2022-2843 | 2022-08-16 | MotoPress Timetable and Event Schedule Quick Edit admin-ajax.php cross site scripting |
| CVE-2022-2844 | 2022-08-16 | MotoPress Timetable and Event Schedule Calendar cross site scripting |
| CVE-2022-2847 | 2022-08-16 | SourceCodester Guest Management System front.php sql injection |
| CVE-2022-2831 | 2022-08-16 | A flaw was found in Blender 3.3.0. An interger overflow in source/blender/blendthumb/src/blendthumb_extract.cc may lead to program crash or memory corruption. |
| CVE-2022-2833 | 2022-08-16 | Endless Infinite loop in Blender-thumnailing due to logical bugs. |
| CVE-2022-2832 | 2022-08-16 | A flaw was found in Blender 3.3.0. A null pointer dereference exists in source/blender/gpu/opengl/gl_backend.cc that may lead to loss of confidentiality and integrity. |
| CVE-2020-1755 | 2022-08-16 | In Moodle before 3.8.2, 3.7.5, 3.6.9 and 3.5.11, X-Forwarded-For headers could be used to spoof a user's IP, in order to bypass remote address checks. |
| CVE-2020-1756 | 2022-08-16 | In Moodle before 3.8.2, 3.7.5, 3.6.9 and 3.5.11, insufficient input escaping was applied to the PHP unit webrunner admin tool. |
| CVE-2020-10728 | 2022-08-16 | A flaw was found in automationbroker/apb container in versions up to and including 2.0.4-1. This container grants all users sudoer permissions allowing an unauthorized user with access to the running... |
| CVE-2020-14320 | 2022-08-16 | In Moodle before 3.9.1, 3.8.4 and 3.7.7, the filter in the admin task log required extra sanitizing to prevent a reflected XSS risk. |
| CVE-2020-14379 | 2022-08-16 | A flaw was found in Red Hat AMQ Broker in a way that a XEE attack can be done via Broker's configuration files, leading to denial of service and information... |
| CVE-2022-34258 | 2022-08-16 | Adobe Commerce Stored XSS Arbitrary code execution |
| CVE-2022-34256 | 2022-08-16 | Adobe Commerce Improper Authorization Privilege escalation |
| CVE-2022-34254 | 2022-08-16 | Adobe Commerce Improper Limitation of a Pathname to a Restricted Directory Arbitrary code execution |
| CVE-2022-34255 | 2022-08-16 | Adobe Commerce Improper Access Control Privilege escalation |
| CVE-2022-34253 | 2022-08-16 | Adobe Commerce XML Injection Arbitrary code execution |
| CVE-2022-34257 | 2022-08-16 | Adobe Commerce Stored XSS Arbitrary code execution |
| CVE-2022-34259 | 2022-08-16 | Adobe Commerce Improper Access Control Security feature bypass |
| CVE-2022-37438 | 2022-08-16 | Information disclosure via the dashboard drilldown in Splunk Enterprise |
| CVE-2022-37439 | 2022-08-16 | Malformed ZIP file crashes Universal Forwarders and Splunk Enterprise through file monitoring input |
| CVE-2022-37437 | 2022-08-16 | Ingest Actions UI in Splunk Enterprise 9.0.0 disabled TLS certificate validation |
| CVE-2022-2661 | 2022-08-16 | Sequi PortBloque S Improper Authorization |
| CVE-2022-2662 | 2022-08-16 | Sequi PortBloque S Improper Authentication |
| CVE-2022-34998 | 2022-08-16 | JPEGDEC commit be4843c was discovered to contain a global buffer overflow via JPEGDecodeMCU at /src/jpeg.inl. |
| CVE-2022-34999 | 2022-08-16 | JPEGDEC commit be4843c was discovered to contain a FPE via DecodeJPEG at /src/jpeg.inl. |
| CVE-2022-35000 | 2022-08-16 | JPEGDEC commit be4843c was discovered to contain a segmentation fault via fseek at /libio/fseek.c. |
| CVE-2022-35002 | 2022-08-16 | JPEGDEC commit be4843c was discovered to contain a segmentation fault via TIFFSHORT at /src/jpeg.inl. |
| CVE-2022-35003 | 2022-08-16 | JPEGDEC commit be4843c was discovered to contain a global buffer overflow via ucDitherBuffer at /src/jpeg.inl. |
| CVE-2022-35004 | 2022-08-16 | JPEGDEC commit be4843c was discovered to contain a FPE via TIFFSHORT at /src/jpeg.inl. |
| CVE-2022-35007 | 2022-08-16 | PNGDec commit 8abf6be was discovered to contain a heap buffer overflow via __interceptor_fwrite.part.57 at sanitizer_common_interceptors.inc. |
| CVE-2022-35008 | 2022-08-16 | PNGDec commit 8abf6be was discovered to contain a stack overflow via /linux/main.cpp. |
| CVE-2022-37393 | 2022-08-16 | Zimbra zmslapd arbitrary module load |
| CVE-2022-35472 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a global overflow via /release-x64/otfccdump+0x718693. |
| CVE-2022-35474 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b544e. |
| CVE-2022-35476 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x4fbc0b. |
| CVE-2022-35478 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x6babea. |
| CVE-2022-36148 | 2022-08-16 | fdkaac commit 53fe239 was discovered to contain a floating point exception (FPE) via wav_open at /src/wav_reader.c. |
| CVE-2022-36152 | 2022-08-16 | tifig v0.2.2 was discovered to contain a memory leak via operator new[](unsigned long) at /asan/asan_new_delete.cpp. |
| CVE-2022-36155 | 2022-08-16 | tifig v0.2.2 was discovered to contain a resource allocation issue via operator new(unsigned long) at asan_new_delete.cpp. |
| CVE-2022-35009 | 2022-08-16 | PNGDec commit 8abf6be was discovered to contain a memory allocation problem via asan_malloc_linux.cpp. |
| CVE-2022-35010 | 2022-08-16 | PNGDec commit 8abf6be was discovered to contain a heap buffer overflow via asan_interceptors_memintrinsics.cpp. |
| CVE-2022-35011 | 2022-08-16 | PNGDec commit 8abf6be was discovered to contain a global buffer overflow via inflate_fast at /src/inffast.c. |
| CVE-2022-35012 | 2022-08-16 | PNGDec commit 8abf6be was discovered to contain a heap buffer overflow via SaveBMP at /linux/main.cpp. |
| CVE-2022-35013 | 2022-08-16 | PNGDec commit 8abf6be was discovered to contain a FPE via SaveBMP at /linux/main.cpp. |
| CVE-2022-35100 | 2022-08-16 | SWFTools commit 772e55a2 was discovered to contain a segmentation violation via gfxline_getbbox at /lib/gfxtools.c. |
| CVE-2022-35101 | 2022-08-16 | SWFTools commit 772e55a2 was discovered to contain a segmentation violation via /multiarch/memset-vec-unaligned-erms.S. |
| CVE-2022-35104 | 2022-08-16 | SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via DCTStream::reset() at /xpdf/Stream.cc. |
| CVE-2022-35105 | 2022-08-16 | SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via /bin/png2swf+0x552cea. |
| CVE-2022-35106 | 2022-08-16 | SWFTools commit 772e55a2 was discovered to contain a segmentation violation via FoFiTrueType::computeTableChecksum(unsigned char*, int) at /xpdf/FoFiTrueType.cc. |
| CVE-2022-35107 | 2022-08-16 | SWFTools commit 772e55a2 was discovered to contain a stack overflow via vfprintf at /stdio-common/vfprintf.c. |
| CVE-2022-35108 | 2022-08-16 | SWFTools commit 772e55a2 was discovered to contain a segmentation violation via DCTStream::getChar() at /xpdf/Stream.cc. |
| CVE-2022-35109 | 2022-08-16 | SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via draw_stroke at /gfxpoly/stroke.c. |
| CVE-2022-35110 | 2022-08-16 | SWFTools commit 772e55a2 was discovered to contain a memory leak via /lib/mem.c. |
| CVE-2022-35111 | 2022-08-16 | SWFTools commit 772e55a2 was discovered to contain a stack overflow via __sanitizer::StackDepotNode::hash(__sanitizer::StackTrace const&) at /sanitizer_common/sanitizer_stackdepot.cpp. |
| CVE-2022-35113 | 2022-08-16 | SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via swf_DefineLosslessBitsTagToImage at /modules/swfbits.c. |
| CVE-2022-35114 | 2022-08-16 | SWFTools commit 772e55a2 was discovered to contain a segmentation violation via extractFrame at /readers/swf.c. |
| CVE-2022-35433 | 2022-08-16 | ffjpeg commit caade60a69633d74100bd3c2528bddee0b6a1291 was discovered to contain a memory leak via /src/jfif.c. |
| CVE-2022-35434 | 2022-08-16 | jpeg-quantsmooth before commit 8879454 contained a floating point exception (FPE) via /jpeg-quantsmooth/jpegqs+0x4f5d6c. |
| CVE-2022-35447 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b04de. |
| CVE-2022-35448 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b55af. |
| CVE-2022-35449 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b0466. |
| CVE-2022-35450 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b84b1. |
| CVE-2022-35451 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b03b5. |
| CVE-2022-35452 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b0b2c. |
| CVE-2022-35453 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6c08a6. |
| CVE-2022-35454 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b05aa. |
| CVE-2022-35455 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b0d63. |
| CVE-2022-35456 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x617087. |
| CVE-2022-35458 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b05ce. |
| CVE-2022-35459 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6e412a. |
| CVE-2022-35460 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x61731f. |
| CVE-2022-35461 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6c0a32. |
| CVE-2022-35462 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6c0bc3. |
| CVE-2022-35463 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b0478. |
| CVE-2022-35464 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6171b2. |
| CVE-2022-35465 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6c0414. |
| CVE-2022-35467 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6e41b8. |
| CVE-2022-35466 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6c0473. |
| CVE-2022-35468 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6e420d. |
| CVE-2022-35469 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a segmentation violation via /x86_64-linux-gnu/libc.so.6+0xbb384. |
| CVE-2022-35470 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x65fc97. |
| CVE-2022-35473 | 2022-08-16 | OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x4fe9a7. |