CVE List - 2022 / September
Showing 1 - 100 of 2148 CVEs for September 2022 (Page 1 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-35527 | 2022-09-01 | In SQLite 3.31.1, there is an out of bounds access problem through ALTER TABLE for views that have a nested FROM clause. |
| CVE-2021-3826 | 2022-09-01 | Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in libiberty allows attackers to potentially cause a denial of service (segmentation fault and crash) via a crafted mangled symbol. |
| CVE-2022-1615 | 2022-09-01 | In Samba, GnuTLS gnutls_rnd() can fail and give predictable random values. |
| CVE-2022-1632 | 2022-09-01 | An Improper Certificate Validation attack was found in Openshift. A re-encrypt Route with destinationCACertificate explicitly set to the default serviceCA skips internal Service TLS certificate validation. This flaw allows an... |
| CVE-2022-1729 | 2022-09-01 | A race condition was found the Linux kernel in perf_event_open() which can be exploited by an unprivileged user to gain root privileges. The bug allows to build several exploit primitives... |
| CVE-2022-2319 | 2022-09-01 | A flaw was found in the Xorg-x11-server. An out-of-bounds access issue can occur in the ProcXkbSetGeometry function due to improper validation of the request length. |
| CVE-2022-2320 | 2022-09-01 | A flaw was found in the Xorg-x11-server. The specific flaw exists within the handling of ProcXkbSetDeviceInfo requests. The issue results from the lack of proper validation of user-supplied data, which... |
| CVE-2022-2663 | 2022-09-01 | An issue was found in the Linux kernel in nf_conntrack_irc where the message handling can be confused and incorrectly matches the message. A firewall may be able to be bypassed... |
| CVE-2022-2764 | 2022-09-01 | A flaw was found in Undertow. Denial of service can be achieved as Undertow server waits for the LAST_CHUNK forever for EJB invocations. |
| CVE-2022-2996 | 2022-09-01 | A flaw was found in the python-scciclient when making an HTTPS connection to a server where the server's certificate would not be verified. This issue opens up the connection to... |
| CVE-2022-3061 | 2022-09-01 | Found Linux Kernel flaw in the i740 driver. The Userspace program could pass any values to the driver through ioctl() interface. The driver doesn't check the value of 'pixclock', so... |
| CVE-2022-32743 | 2022-09-01 | Samba does not validate the Validated-DNS-Host-Name right for the dNSHostName attribute which could permit unprivileged users to write it. |
| CVE-2022-36130 | 2022-09-01 | HashiCorp Boundary up to 0.10.1 did not properly perform data integrity checks to ensure the resources were associated with the correct scopes, allowing potential privilege escalation for authorized users of... |
| CVE-2022-36671 | 2022-09-01 | Novel-Plus v3.6.2 was discovered to contain an arbitrary file download vulnerability via the background file download API. |
| CVE-2022-36672 | 2022-09-01 | Novel-Plus v3.6.2 was discovered to contain a hard-coded JWT key located in the project config file. This vulnerability allows attackers to create a custom user session. |
| CVE-2022-36674 | 2022-09-01 | Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /schedules/view_schedule.php. |
| CVE-2022-36675 | 2022-09-01 | Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /schedules/manage_schedule.php. |
| CVE-2022-36676 | 2022-09-01 | Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /categories/view_category.php. |
| CVE-2022-36449 | 2022-09-01 | An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory, write a limited... |
| CVE-2022-3072 | 2022-09-01 | Cross-site Scripting (XSS) - Stored in francoisjacquet/rosariosis |
| CVE-2022-36053 | 2022-09-01 | Out-of-bounds read in the uIP buffer module |
| CVE-2022-36052 | 2022-09-01 | Out-of-bounds read when decompressing UDP header |
| CVE-2022-36054 | 2022-09-01 | Out-of-bounds write when decompressing 6LoWPAN payload in Contiki-NG |
| CVE-2022-36055 | 2022-09-01 | Denial of service in Helm |
| CVE-2022-38790 | 2022-09-01 | Weave GitOps Enterprise before 0.9.0-rc.5 has a cross-site scripting (XSS) bug allowing a malicious user to inject a javascript: link in the UI. When clicked by a victim user, the... |
| CVE-2022-37435 | 2022-09-01 | Apache ShenYu Admin Improper Privilege Management |
| CVE-2022-28199 | 2022-09-01 | NVIDIA’s distribution of the Data Plane Development Kit (MLNX_DPDK) contains a vulnerability in the network stack, where error recovery is not handled properly, which can allow a remote attacker to... |
| CVE-2022-36355 | 2022-09-01 | WordPress Easy Org Chart plugin <= 3.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability |
| CVE-2022-36373 | 2022-09-01 | WordPress MP3 jPlayer plugin <= 2.7.3 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities |
| CVE-2022-36796 | 2022-09-01 | WordPress CallRail Phone Call Tracking plugin <= 0.4.9 - Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) |
| CVE-2021-45027 | 2022-09-01 | An arbitrary file download vulnerability in Oliver v5 Library Server Versions < 5.00.008.053 via the FileServlet function allows for arbitrary file download by an attacker using unsanitized user supplied input. |
| CVE-2022-36583 | 2022-09-01 | DedeCMS V5.7.97 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities at /dede/co_do.php via the dopost, rpok, and aid parameters. |
| CVE-2020-35532 | 2022-09-01 | In LibRaw, an out-of-bounds read vulnerability exists within the "simple_decode_row()" function (libraw\src\x3f\x3f_utils_patched.cpp) which can be triggered via an image with a large row_stride field. |
| CVE-2020-35531 | 2022-09-01 | In LibRaw, an out-of-bounds read vulnerability exists within the get_huffman_diff() function (libraw\src\x3f\x3f_utils_patched.cpp) when reading data from an image file. |
| CVE-2020-35530 | 2022-09-01 | In LibRaw, there is an out-of-bounds write vulnerability within the "new_node()" function (libraw\src\x3f\x3f_utils_patched.cpp) that can be triggered via a crafted X3F file. |
| CVE-2020-35535 | 2022-09-01 | In LibRaw, there is an out-of-bounds read vulnerability within the "LibRaw::parseSonySRF()" function (libraw\src\metadata\sony.cpp) when processing srf files. |
| CVE-2020-35534 | 2022-09-01 | In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files. |
| CVE-2020-35533 | 2022-09-01 | In LibRaw, an out-of-bounds read vulnerability exists within the "LibRaw::adobe_copy_pixel()" function (libraw\src\decoders\dng.cpp) when reading data from the image file. |
| CVE-2020-27784 | 2022-09-01 | A vulnerability was found in the Linux kernel, where accessing a deallocated instance in printer_ioctl() printer_ioctl() tries to access of a printer_dev instance. However, use-after-free arises because it had been... |
| CVE-2022-34372 | 2022-09-01 | Dell PowerProtect Cyber Recovery versions before 19.11.0.2 contain an authentication bypass vulnerability. A remote unauthenticated attacker may potentially access and interact with the docker registry API leading to an authentication... |
| CVE-2022-34379 | 2022-09-01 | Dell EMC CloudLink 7.1.2 and all prior versions contain an Authentication Bypass Vulnerability. A remote attacker, with the knowledge of the active directory usernames, could potentially exploit this vulnerability to... |
| CVE-2022-34380 | 2022-09-01 | Dell CloudLink 7.1.3 and all earlier versions contain an Authentication Bypass Using an Alternate Path or Channel Vulnerability. A high privileged local attacker may potentially exploit this vulnerability leading to... |
| CVE-2020-4301 | 2022-09-01 | IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the... |
| CVE-2021-20468 | 2022-09-01 | IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the... |
| CVE-2021-29823 | 2022-09-01 | IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the... |
| CVE-2021-39009 | 2022-09-01 | IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 stores user credentials in plain clear text which can be read by a local privileged user. IBM X-Force ID: 213554. |
| CVE-2021-39045 | 2022-09-01 | IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could allow a local attacker to obtain information due to the autocomplete feature on password input fields. IBM X-Force ID: 214345. |
| CVE-2022-30614 | 2022-09-01 | IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to a denial of service via email flooding caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability... |
| CVE-2022-36773 | 2022-09-01 | IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose... |
| CVE-2022-36601 | 2022-09-01 | The Eclipse TCF debug interface in JasMiner-X4-Server-20220621-090907 and below is open on port 1534. This issue allows unauthenticated attackers to gain root privileges on the affected device and access sensitive... |
| CVE-2022-36602 | 2022-09-01 | InnoSilicon A10 a10_20200924_120556 was discovered to contain a remote code execution (RCE) vulnerability in the setPlatformAPI function. |
| CVE-2022-36603 | 2022-09-01 | InnoSilicon T3T+ t2t+_soc_20190911_151433.swu was discovered to contain a remote code execution (RCE) vulnerability in the checkUrl function. |
| CVE-2022-36604 | 2022-09-01 | An access control issue in Canaan Avalon ASIC Miner 2020.3.30 and below allows unauthenticated attackers to arbitrarily change user passwords via a crafted POST request. |
| CVE-2022-1677 | 2022-09-01 | In OpenShift Container Platform, a user with permissions to create or modify Routes can craft a payload that inserts a malformed entry into one of the cluster router's HAProxy configuration... |
| CVE-2022-1902 | 2022-09-01 | A flaw was found in the Red Hat Advanced Cluster Security for Kubernetes. Notifier secrets were not properly sanitized in the GraphQL API. This flaw allows authenticated ACS users to... |
| CVE-2022-2238 | 2022-09-01 | A vulnerability was found in the search-api container in Red Hat Advanced Cluster Management for Kubernetes when a query in the search filter gets parsed by the backend. This flaw... |
| CVE-2022-2256 | 2022-09-01 | A Stored Cross-site scripting (XSS) vulnerability was found in keycloak as shipped in Red Hat Single Sign-On 7. This flaw allows a privileged attacker to execute malicious scripts in the... |
| CVE-2022-2806 | 2022-09-01 | It was found that the ovirt-log-collector/sosreport collects the RHV admin password unfiltered. Fixed in: sos-4.2-20.el8_6, ovirt-log-collector-4.4.7-2.el8ev |
| CVE-2022-2308 | 2022-09-01 | A flaw was found in vDPA with VDUSE backend. There are currently no checks in VDUSE kernel driver to ensure the size of the device config space is in line... |
| CVE-2022-36621 | 2022-09-01 | Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEE_AllocateTransientObject. |
| CVE-2022-36622 | 2022-09-01 | Samsung Electronics mTower v0.3.0 and earlier was discovered to contain a NULL pointer dereference via the function TEE_GetObjectInfo1. |
| CVE-2022-2403 | 2022-09-01 | A credentials leak was found in the OpenShift Container Platform. The private key for the external cluster certificate was stored incorrectly in the oauth-serving-cert ConfigMaps, and accessible to any authenticated... |
| CVE-2022-2447 | 2022-09-01 | A flaw was found in Keystone. There is a time lag (up to one hour in a default configuration) between when security policy says a token should be revoked from... |
| CVE-2022-2639 | 2022-09-01 | An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying and reserving memory for a new action of a new... |
| CVE-2022-2738 | 2022-09-01 | The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-8945, which was previously... |
| CVE-2022-2739 | 2022-09-01 | The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-14370, which was previously... |
| CVE-2022-3078 | 2022-09-01 | An issue was discovered in the Linux kernel through 5.16-rc6. There is a lack of check after calling vzalloc() and lack of free after allocation in drivers/media/test-drivers/vidtv/vidtv_s302m.c. |
| CVE-2022-23452 | 2022-09-01 | An authorization flaw was found in openstack-barbican, where anyone with an admin role could add secrets to a different project container. This flaw allows an attacker on the network to... |
| CVE-2022-39188 | 2022-09-02 | An issue was discovered in include/asm-generic/tlb.h in the Linux kernel before 5.19. Because of a race condition (unmap_mapping_range versus munmap), a device driver can free a page while it still... |
| CVE-2022-39190 | 2022-09-02 | An issue was discovered in net/netfilter/nf_tables_api.c in the Linux kernel before 5.19.6. A denial of service can occur upon binding to an already bound chain. |
| CVE-2020-22669 | 2022-09-02 | Modsecurity owasp-modsecurity-crs 3.2.0 (Paranoia level at PL1) has a SQL injection bypass vulnerability. Attackers can use the comment characters and variable assignments in the SQL syntax to bypass Modsecurity WAF... |
| CVE-2022-31176 | 2022-09-02 | Grafana Image Renderer leaking files |
| CVE-2022-39176 | 2022-09-02 | BlueZ before 5.59 allows physically proximate attackers to obtain sensitive information because profiles/audio/avrcp.c does not validate params_len. |
| CVE-2022-39177 | 2022-09-02 | BlueZ before 5.59 allows physically proximate attackers to cause a denial of service because malformed and invalid capabilities can be processed in profiles/audio/avdtp.c. |
| CVE-2022-39189 | 2022-09-02 | An issue was discovered the x86 KVM subsystem in the Linux kernel before 5.18.17. Unprivileged guest users can compromise the guest kernel because TLB flush operations are mishandled in certain... |
| CVE-2021-25657 | 2022-09-02 | Avaya IP Office Privilege Escalation Vulnerability |
| CVE-2022-39170 | 2022-09-02 | libdwarf 0.4.1 has a double free in _dwarf_exec_frame_instr in dwarf_frame.c. |
| CVE-2022-36759 | 2022-09-02 | Online Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the component /dishes.php?res_id=. |
| CVE-2022-36593 | 2022-09-02 | kkFileView v4.0.0 was discovered to contain an arbitrary file deletion vulnerability via the fileName parameter at /controller/FileController.java. |
| CVE-2022-36594 | 2022-09-02 | Mapper v4.0.0 to v4.2.0 was discovered to contain a SQL injection vulnerability via the ids parameter at the selectByIds function. |
| CVE-2022-36600 | 2022-09-02 | BlogEngine v3.3.8.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the component /blogengine/api/posts. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload... |
| CVE-2022-37679 | 2022-09-02 | Miniblog.Core v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the component /blog/edit. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload... |
| CVE-2022-36609 | 2022-09-02 | Clinic's Patient Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /pms/update_patient.php. |
| CVE-2022-36636 | 2022-09-02 | Garage Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /print.php. |
| CVE-2022-36637 | 2022-09-02 | Garage Management System v1.0 was discovered to contain a persistent cross-site scripting (XSS) vulnerability via the brand_name parameter at /brand.php. |
| CVE-2022-39194 | 2022-09-02 | An issue was discovered in the MediaWiki through 1.38.2. The community configuration pages for the GrowthExperiments extension could cause a site to become unavailable due to insufficient validation when certain... |
| CVE-2022-25370 | 2022-09-02 | Unauth Stored XSS vulnerability in the Birt plugin of Apache OFBiz |
| CVE-2022-25371 | 2022-09-02 | Unauth Path Traversal with file corruption affecting the Birt plugin of Apache OFBiz |
| CVE-2022-25813 | 2022-09-02 | Server-Side Template Injection affecting the ecommerce plugin of Apache OFBiz |
| CVE-2022-29063 | 2022-09-02 | Java Deserialization via RMI Connection from the Solr plugin of Apache OFBiz |
| CVE-2022-29158 | 2022-09-02 | Regular Expression Denial of Service (ReDoS) vulnerability in Apache OFBiz |
| CVE-2022-38054 | 2022-09-02 | Session Fixation |
| CVE-2022-38170 | 2022-09-02 | Overly permissive umask for daemons |
| CVE-2021-44718 | 2022-09-02 | wolfSSL through 5.0.0 allows an attacker to cause a denial of service and infinite loop in the client component by sending crafted traffic from a Machine-in-the-Middle (MITM) position. The root... |
| CVE-2022-37458 | 2022-09-02 | Discourse through 2.8.7 allows admins to send invitations to arbitrary email addresses at an unlimited rate. |
| CVE-2021-35097 | 2022-09-02 | Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,... |
| CVE-2021-35108 | 2022-09-02 | Improper checking of AP-S lock bit while verifying the secure resource group permissions can lead to non secure read and write access in Snapdragon Connectivity, Snapdragon Mobile |
| CVE-2021-35109 | 2022-09-02 | Possible address manipulation from APP-NS while APP-S is configuring an RG where it tries to merge the address ranges in Snapdragon Connectivity, Snapdragon Mobile |
| CVE-2021-35113 | 2022-09-02 | Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,... |
| CVE-2021-35122 | 2022-09-02 | Non-secure region can try modifying RG permissions of IO space xPUs due to improper input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon... |