CVE List - 2022 / September
Showing 1 - 100 of 2148 CVEs for September 2022 (Page 1 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-35525 | 2022-09-01 | In SQlite 3.31.1, a potential null pointer derreference was found... |
| CVE-2020-35527 | 2022-09-01 | In SQLite 3.31.1, there is an out of bounds access... |
| CVE-2021-3826 | 2022-09-01 | Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in... |
| CVE-2022-1615 | 2022-09-01 | In Samba, GnuTLS gnutls_rnd() can fail and give predictable random... |
| CVE-2022-1632 | 2022-09-01 | An Improper Certificate Validation attack was found in Openshift. A... |
| CVE-2022-1729 | 2022-09-01 | A race condition was found the Linux kernel in perf_event_open()... |
| CVE-2022-2319 | 2022-09-01 | A flaw was found in the Xorg-x11-server. An out-of-bounds access... |
| CVE-2022-2320 | 2022-09-01 | A flaw was found in the Xorg-x11-server. The specific flaw... |
| CVE-2022-2663 | 2022-09-01 | An issue was found in the Linux kernel in nf_conntrack_irc... |
| CVE-2022-2764 | 2022-09-01 | A flaw was found in Undertow. Denial of service can... |
| CVE-2022-2996 | 2022-09-01 | A flaw was found in the python-scciclient when making an... |
| CVE-2022-3061 | 2022-09-01 | Found Linux Kernel flaw in the i740 driver. The Userspace... |
| CVE-2022-32743 | 2022-09-01 | Samba does not validate the Validated-DNS-Host-Name right for the dNSHostName... |
| CVE-2022-36130 | 2022-09-01 | HashiCorp Boundary up to 0.10.1 did not properly perform data... |
| CVE-2022-36671 | 2022-09-01 | Novel-Plus v3.6.2 was discovered to contain an arbitrary file download... |
| CVE-2022-36672 | 2022-09-01 | Novel-Plus v3.6.2 was discovered to contain a hard-coded JWT key... |
| CVE-2022-36674 | 2022-09-01 | Simple Task Scheduling System v1.0 was discovered to contain a... |
| CVE-2022-36675 | 2022-09-01 | Simple Task Scheduling System v1.0 was discovered to contain a... |
| CVE-2022-36676 | 2022-09-01 | Simple Task Scheduling System v1.0 was discovered to contain a... |
| CVE-2022-36449 | 2022-09-01 | An issue was discovered in the Arm Mali GPU Kernel... |
| CVE-2022-3072 | 2022-09-01 | Cross-site Scripting (XSS) - Stored in francoisjacquet/rosariosis |
| CVE-2022-36053 | 2022-09-01 | Out-of-bounds read in the uIP buffer module |
| CVE-2022-36052 | 2022-09-01 | Out-of-bounds read when decompressing UDP header |
| CVE-2022-36054 | 2022-09-01 | Out-of-bounds write when decompressing 6LoWPAN payload in Contiki-NG |
| CVE-2022-36055 | 2022-09-01 | Denial of service in Helm |
| CVE-2022-38790 | 2022-09-01 | Weave GitOps Enterprise before 0.9.0-rc.5 has a cross-site scripting (XSS)... |
| CVE-2022-37435 | 2022-09-01 | Apache ShenYu Admin Improper Privilege Management |
| CVE-2022-28199 | 2022-09-01 | NVIDIA’s distribution of the Data Plane Development Kit (MLNX_DPDK) contains... |
| CVE-2022-36355 | 2022-09-01 | WordPress Easy Org Chart plugin <= 3.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability |
| CVE-2022-36373 | 2022-09-01 | WordPress MP3 jPlayer plugin <= 2.7.3 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities |
| CVE-2022-36796 | 2022-09-01 | WordPress CallRail Phone Call Tracking plugin <= 0.4.9 - Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) |
| CVE-2021-45027 | 2022-09-01 | An arbitrary file download vulnerability in Oliver v5 Library Server... |
| CVE-2022-36583 | 2022-09-01 | DedeCMS V5.7.97 was discovered to contain multiple cross-site scripting (XSS)... |
| CVE-2020-35532 | 2022-09-01 | In LibRaw, an out-of-bounds read vulnerability exists within the "simple_decode_row()"... |
| CVE-2020-35531 | 2022-09-01 | In LibRaw, an out-of-bounds read vulnerability exists within the get_huffman_diff()... |
| CVE-2020-35530 | 2022-09-01 | In LibRaw, there is an out-of-bounds write vulnerability within the... |
| CVE-2020-35535 | 2022-09-01 | In LibRaw, there is an out-of-bounds read vulnerability within the... |
| CVE-2020-35534 | 2022-09-01 | In LibRaw, there is a memory corruption vulnerability within the... |
| CVE-2020-35533 | 2022-09-01 | In LibRaw, an out-of-bounds read vulnerability exists within the "LibRaw::adobe_copy_pixel()"... |
| CVE-2020-27784 | 2022-09-01 | A vulnerability was found in the Linux kernel, where accessing... |
| CVE-2022-34372 | 2022-09-01 | Dell PowerProtect Cyber Recovery versions before 19.11.0.2 contain an authentication... |
| CVE-2022-34379 | 2022-09-01 | Dell EMC CloudLink 7.1.2 and all prior versions contain an... |
| CVE-2022-34380 | 2022-09-01 | Dell CloudLink 7.1.3 and all earlier versions contain an Authentication... |
| CVE-2020-4301 | 2022-09-01 | IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to... |
| CVE-2021-20468 | 2022-09-01 | IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to... |
| CVE-2021-29823 | 2022-09-01 | IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to... |
| CVE-2021-39009 | 2022-09-01 | IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 stores user credentials... |
| CVE-2021-39045 | 2022-09-01 | IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could allow a... |
| CVE-2022-30614 | 2022-09-01 | IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to... |
| CVE-2022-36773 | 2022-09-01 | IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to... |
| CVE-2022-36601 | 2022-09-01 | The Eclipse TCF debug interface in JasMiner-X4-Server-20220621-090907 and below is... |
| CVE-2022-36602 | 2022-09-01 | InnoSilicon A10 a10_20200924_120556 was discovered to contain a remote code... |
| CVE-2022-36603 | 2022-09-01 | InnoSilicon T3T+ t2t+_soc_20190911_151433.swu was discovered to contain a remote code... |
| CVE-2022-36604 | 2022-09-01 | An access control issue in Canaan Avalon ASIC Miner 2020.3.30... |
| CVE-2022-1677 | 2022-09-01 | In OpenShift Container Platform, a user with permissions to create... |
| CVE-2022-1902 | 2022-09-01 | A flaw was found in the Red Hat Advanced Cluster... |
| CVE-2022-2238 | 2022-09-01 | A vulnerability was found in the search-api container in Red... |
| CVE-2022-2256 | 2022-09-01 | A Stored Cross-site scripting (XSS) vulnerability was found in keycloak... |
| CVE-2022-2806 | 2022-09-01 | It was found that the ovirt-log-collector/sosreport collects the RHV admin... |
| CVE-2022-2308 | 2022-09-01 | A flaw was found in vDPA with VDUSE backend. There... |
| CVE-2022-36621 | 2022-09-01 | Samsung Electronics mTower v0.3.0 and earlier was discovered to contain... |
| CVE-2022-36622 | 2022-09-01 | Samsung Electronics mTower v0.3.0 and earlier was discovered to contain... |
| CVE-2022-2403 | 2022-09-01 | A credentials leak was found in the OpenShift Container Platform.... |
| CVE-2022-2447 | 2022-09-01 | A flaw was found in Keystone. There is a time... |
| CVE-2022-2639 | 2022-09-01 | An integer coercion error was found in the openvswitch kernel... |
| CVE-2022-2738 | 2022-09-01 | The version of podman as released for Red Hat Enterprise... |
| CVE-2022-2739 | 2022-09-01 | The version of podman as released for Red Hat Enterprise... |
| CVE-2022-3078 | 2022-09-01 | An issue was discovered in the Linux kernel through 5.16-rc6.... |
| CVE-2022-23452 | 2022-09-01 | An authorization flaw was found in openstack-barbican, where anyone with... |
| CVE-2020-22669 | 2022-09-02 | Modsecurity owasp-modsecurity-crs 3.2.0 (Paranoia level at PL1) has a SQL... |
| CVE-2022-39176 | 2022-09-02 | BlueZ before 5.59 allows physically proximate attackers to obtain sensitive... |
| CVE-2022-39177 | 2022-09-02 | BlueZ before 5.59 allows physically proximate attackers to cause a... |
| CVE-2022-39188 | 2022-09-02 | An issue was discovered in include/asm-generic/tlb.h in the Linux kernel... |
| CVE-2022-39190 | 2022-09-02 | An issue was discovered in net/netfilter/nf_tables_api.c in the Linux kernel... |
| CVE-2022-31176 | 2022-09-02 | Grafana Image Renderer leaking files |
| CVE-2022-39189 | 2022-09-02 | An issue was discovered the x86 KVM subsystem in the... |
| CVE-2021-25657 | 2022-09-02 | Avaya IP Office Privilege Escalation Vulnerability |
| CVE-2022-39170 | 2022-09-02 | libdwarf 0.4.1 has a double free in _dwarf_exec_frame_instr in dwarf_frame.c. |
| CVE-2022-36759 | 2022-09-02 | Online Food Ordering System v1.0 was discovered to contain a... |
| CVE-2022-36593 | 2022-09-02 | kkFileView v4.0.0 was discovered to contain an arbitrary file deletion... |
| CVE-2022-36594 | 2022-09-02 | Mapper v4.0.0 to v4.2.0 was discovered to contain a SQL... |
| CVE-2022-36600 | 2022-09-02 | BlogEngine v3.3.8.0 was discovered to contain a cross-site scripting (XSS)... |
| CVE-2022-37679 | 2022-09-02 | Miniblog.Core v1.0 was discovered to contain a cross-site scripting (XSS)... |
| CVE-2022-36609 | 2022-09-02 | Clinic's Patient Management System v1.0 was discovered to contain a... |
| CVE-2022-36636 | 2022-09-02 | Garage Management System v1.0 was discovered to contain a SQL... |
| CVE-2022-36637 | 2022-09-02 | Garage Management System v1.0 was discovered to contain a persistent... |
| CVE-2022-39194 | 2022-09-02 | An issue was discovered in the MediaWiki through 1.38.2. The... |
| CVE-2022-25370 | 2022-09-02 | Unauth Stored XSS vulnerability in the Birt plugin of Apache OFBiz |
| CVE-2022-25371 | 2022-09-02 | Unauth Path Traversal with file corruption affecting the Birt plugin of Apache OFBiz |
| CVE-2022-25813 | 2022-09-02 | Server-Side Template Injection affecting the ecommerce plugin of Apache OFBiz |
| CVE-2022-29063 | 2022-09-02 | Java Deserialization via RMI Connection from the Solr plugin of Apache OFBiz |
| CVE-2022-29158 | 2022-09-02 | Regular Expression Denial of Service (ReDoS) vulnerability in Apache OFBiz |
| CVE-2022-38054 | 2022-09-02 | Session Fixation |
| CVE-2022-38170 | 2022-09-02 | Overly permissive umask for daemons |
| CVE-2021-44718 | 2022-09-02 | wolfSSL through 5.0.0 allows an attacker to cause a denial... |
| CVE-2022-37458 | 2022-09-02 | Discourse through 2.8.7 allows admins to send invitations to arbitrary... |
| CVE-2021-35097 | 2022-09-02 | Possible authentication bypass due to improper order of signature verification... |
| CVE-2021-35108 | 2022-09-02 | Improper checking of AP-S lock bit while verifying the secure... |
| CVE-2021-35109 | 2022-09-02 | Possible address manipulation from APP-NS while APP-S is configuring an... |
| CVE-2021-35113 | 2022-09-02 | Possible authentication bypass due to improper order of signature verification... |