CVE List - 2022 / September
Showing 801 - 900 of 2148 CVEs for September 2022 (Page 9 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-20390 | 2022-09-13 | Summary:Product: AndroidVersions: Android SoCAndroid ID: A-238257002 |
| CVE-2022-20391 | 2022-09-13 | Summary:Product: AndroidVersions: Android SoCAndroid ID: A-238257000 |
| CVE-2022-20392 | 2022-09-13 | In declareDuplicatePermission of ParsedPermissionUtils.java, there is a possible way to obtain a dangerous permission without user consent due to improper input validation. This could lead to local escalation of privilege... |
| CVE-2022-20393 | 2022-09-13 | In extract3GPPGlobalDescriptions of TextDescriptions.cpp, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure from the media server with no... |
| CVE-2022-20395 | 2022-09-13 | In checkAccess of MediaProvider.java, there is a possible file deletion due to a path traversal error. This could lead to local escalation of privilege with no additional execution privileges needed.... |
| CVE-2022-20396 | 2022-09-13 | In SettingsActivity.java, there is a possible way to make a device discoverable over Bluetooth, without permission or user interaction, due to a permissions bypass. This could lead to local escalation... |
| CVE-2022-20398 | 2022-09-13 | In addOrUpdateNetwork of WifiServiceImpl.java, there is a possible way for a guest user to configure Wi-Fi due to a permissions bypass. This could lead to local escalation of privilege with... |
| CVE-2022-20399 | 2022-09-13 | In the SEPolicy configuration of system apps, there is a possible access to the 'ip' utility due to an insecure default value. This could lead to local information disclosure of... |
| CVE-2022-2962 | 2022-09-13 | A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or writes to the rx/tx descriptor or copies the rx/tx frame, it doesn't check... |
| CVE-2022-3205 | 2022-09-13 | Controller: cross site scripting in automation controller ui |
| CVE-2022-32244 | 2022-09-13 | Under certain conditions an attacker authenticated as a CMS administrator access the BOE Commentary database and retrieve (non-personal) system data, modify system data but can't make the system unavailable. This... |
| CVE-2022-3182 | 2022-09-13 | Improper Access Control vulnerability in the Duo SMS two-factor of Devolutions Remote Desktop Manager 2022.2.14 and earlier allows attackers to bypass the application lock. This issue affects: Devolutions Remote Desktop... |
| CVE-2022-32555 | 2022-09-13 | Unisys Data Exchange Management Studio before 6.0.IC2 and 7.x before 7.0.IC1 doesn't have an Anti-CSRF token to authenticate the POST request. Thus, a cross-site request forgery attack could occur. |
| CVE-2022-38306 | 2022-09-13 | LIEF commit 5d1d643 was discovered to contain a heap-buffer overflow in the component /core/CorePrPsInfo.tcc. |
| CVE-2022-38307 | 2022-09-13 | LIEF commit 5d1d643 was discovered to contain a segmentation violation via the function LIEF::MachO::SegmentCommand::file_offset() at /MachO/SegmentCommand.cpp. |
| CVE-2022-38495 | 2022-09-13 | LIEF commit 365a16a was discovered to contain a heap-buffer overflow via the function print_binary at /c/macho_reader.c. |
| CVE-2022-38496 | 2022-09-13 | LIEF commit 365a16a was discovered to contain a reachable assertion abort via the component BinaryStream.hpp. |
| CVE-2022-38497 | 2022-09-13 | LIEF commit 365a16a was discovered to contain a segmentation violation via the component CoreFile.tcc:69. |
| CVE-2022-40621 | 2022-09-13 | WAVLINK Quantum D4G (WN531G3) Pass-The-Hash |
| CVE-2022-40622 | 2022-09-13 | WAVLINK Quantum D4G (WN531G3) Session Management by IP Address |
| CVE-2022-40623 | 2022-09-13 | WAVLINK Quantum D4G (WN531G3) CSRF |
| CVE-2022-39821 | 2022-09-13 | In NOKIA 1350 OMS R14.2, an Insertion of Sensitive Information into an Application Log File vulnerability occurs. The web application stores critical information, such as cleartext user credentials, in world-readable... |
| CVE-2022-38637 | 2022-09-13 | Hospital Management System v1.0 was discovered to contain multiple SQL injection vulnerabilities via the Username and Password parameters on the Login page. |
| CVE-2022-39819 | 2022-09-13 | In NOKIA 1350 OMS R14.2, multiple OS Command Injection vulnerabilities occurs. This allows authenticated users to execute commands on the operating system. |
| CVE-2022-39817 | 2022-09-13 | In NOKIA 1350 OMS R14.2, multiple SQL Injection vulnerabilities occurs. Exploitation requires an authenticated attacker. Through the injection of arbitrary SQL statements, a potential authenticated attacker can modify query syntax... |
| CVE-2022-39816 | 2022-09-13 | In NOKIA 1350 OMS R14.2, Insufficiently Protected Credentials (cleartext administrator password) occur in the edit configuration page. Exploitation requires an authenticated attacker. |
| CVE-2022-39815 | 2022-09-13 | In NOKIA 1350 OMS R14.2, multiple OS Command Injection vulnerabilities occurs. This vulnerability allow unauthenticated users to execute commands on the operating system. |
| CVE-2022-39814 | 2022-09-13 | In NOKIA 1350 OMS R14.2, an Open Redirect vulnerability occurs is the login page via next HTTP GET parameter. |
| CVE-2022-22329 | 2022-09-13 | IBM Control Desk 7.6.1 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link... |
| CVE-2022-22330 | 2022-09-13 | IBM Control Desk 7.6.1 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to... |
| CVE-2022-22483 | 2022-09-13 | IBM Db2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to an information disclosure in some scenarios due to unauthorized access caused by improper privilege... |
| CVE-2022-34336 | 2022-09-13 | IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the... |
| CVE-2022-34356 | 2022-09-13 | IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to obtain root privileges. IBM X-Force ID: 230502. |
| CVE-2022-35637 | 2022-09-13 | IBM Db2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to a denial of service after entering a malformed SQL statement into the Db2expln tool.... |
| CVE-2022-36768 | 2022-09-13 | IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to obtain root privileges. IBM X-Force ID: 232014. |
| CVE-2021-36568 | 2022-09-13 | In certain Moodle products after creating a course, it is possible to add in a arbitrary "Topic" a resource, in this case a "Database" with the type "Text" where its... |
| CVE-2022-38633 | 2022-09-13 | Genymotion Desktop v3.2.1 was discovered to contain a DLL hijacking vulnerability which allows attackers to escalate privileges and execute arbitrary code via a crafted binary. |
| CVE-2022-34102 | 2022-09-13 | Insufficient access control vulnerability was discovered in the Crestron AirMedia Windows Application, version 4.3.1.39, in which a user can pause the uninstallation of an executable to gain a SYSTEM level... |
| CVE-2022-34101 | 2022-09-13 | A vulnerability was discovered in the Crestron AirMedia Windows Application, version 4.3.1.39, in which a user can place a malicious DLL in a certain path to execute code and preform... |
| CVE-2022-31861 | 2022-09-13 | Cross site Scripting (XSS) in ThingsBoard IoT Platform through 3.3.4.1 via a crafted value being sent to the audit logs. |
| CVE-2022-35582 | 2022-09-13 | Penta Security Systems Inc WAPPLES 4.0.*, 5.0.0.*, 5.0.12.* are vulnerable to Incorrect Access Control. The operating system that WAPPLES runs on has a built-in non-privileged user penta with a predefined... |
| CVE-2022-35413 | 2022-09-13 | WAPPLES through 6.0 has a hardcoded systemi account. A threat actor could use this account to access the system configuration and confidential information (such as SSL keys) via an HTTPS... |
| CVE-2022-31324 | 2022-09-13 | An arbitrary file download vulnerability in the downloadAction() function of Penta Security Systems Inc WAPPLES v6.0 r3 4.10-hotfix1 allows attackers to download arbitrary files via a crafted POST request. |
| CVE-2022-31322 | 2022-09-13 | Penta Security Systems Inc WAPPLES v6.0 r3 4.10-hotfix1 allows attackers to escalate privileges via overwriting files using SUID flagged executables. |
| CVE-2022-37190 | 2022-09-13 | CuppaCMS 1.0 is vulnerable to Remote Code Execution (RCE). An authenticated user can control both parameters (action and function) from "/api/index.php. |
| CVE-2022-37191 | 2022-09-13 | The component "cuppa/api/index.php" of CuppaCMS v1.0 is Vulnerable to LFI. An authenticated user can read system files via crafted POST request using [function] parameter value as LFI payload. |
| CVE-2022-38768 | 2022-09-13 | The mobile application in Transtek Mojodat FAM (Fixed Asset Management) 2.4.6 allows remote attackers to bypass authorization. |
| CVE-2022-38769 | 2022-09-13 | The mobile application in Transtek Mojodat FAM (Fixed Asset Management) 2.4.6 allows remote attackers to fetch cleartext passwords upon a successful login request. |
| CVE-2022-38770 | 2022-09-13 | The mobile application in Transtek Mojodat FAM (Fixed Asset Management) 2.4.6 allows remote attackers to fetch other users' data upon a successful login request. |
| CVE-2022-38771 | 2022-09-13 | The mobile application in Transtek Mojodat FAM (Fixed Asset Management) 2.4.6 allows remote attackers to send SCRIPT tags as injected input to the API request. |
| CVE-2022-38305 | 2022-09-13 | AeroCMS v0.0.1 was discovered to contain an arbitrary file upload vulnerability via the component /admin/profile.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. |
| CVE-2022-20231 | 2022-09-14 | In smc_intc_request_fiq of arm_gic.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.... |
| CVE-2022-20364 | 2022-09-14 | In sysmmu_unmap of TBD, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution... |
| CVE-2022-2977 | 2022-09-14 | A flaw was found in the Linux kernel implementation of proxied virtualized TPM devices. On a system where virtualized TPM devices are configured (this is not the default) a local... |
| CVE-2022-3202 | 2022-09-14 | A NULL pointer dereference flaw in diFree in fs/jfs/inode.c in Journaled File System (JFS)in the Linux kernel. This could allow a local attacker to crash the system or leak kernel... |
| CVE-2022-37661 | 2022-09-14 | SmartRG SR506n 2.5.15 and SR510n 2.6.13 routers are vulnerable to Remote Code Execution (RCE) via the ping host feature. |
| CVE-2022-40734 | 2022-09-14 | UniSharp laravel-filemanager (aka Laravel Filemanager) before 2.6.4 allows download?working_dir=%2F.. directory traversal to read arbitrary files, as exploited in the wild in June 2022. This is related to league/flysystem before 2.0.0. |
| CVE-2018-25047 | 2022-09-14 | In Smarty before 3.1.47 and 4.x before 4.2.1, libs/plugins/function.mailto.php allows XSS. A web page that uses smarty_function_mailto, and that could be parameterized using GET or POST input parameters, could allow... |
| CVE-2022-36113 | 2022-09-14 | Extracting malicious crates can corrupt arbitrary files |
| CVE-2022-36114 | 2022-09-14 | Extracting malicious crates can fill the file system |
| CVE-2022-40674 | 2022-09-14 | libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c. |
| CVE-2020-19586 | 2022-09-14 | Incorrect Access Control issue in Yellowfin Business Intelligence 7.3 allows remote attackers to escalate privilege via MIAdminStyles.i4 Admin UI. |
| CVE-2020-19587 | 2022-09-14 | Cross Site Scripting (XSS) vulnerability in configMap parameters in Yellowfin Business Intelligence 7.3 allows remote attackers to run arbitrary code via MIAdminStyles.i4 Admin UI. |
| CVE-2022-34831 | 2022-09-14 | An issue was discovered in Keyfactor PrimeKey EJBCA before 7.9.0, related to possible inconsistencies in DNS identifiers submitted in an ACME order and the corresponding CSR submitted during finalization. During... |
| CVE-2022-36436 | 2022-09-14 | OSU Open Source Lab VNCAuthProxy through 1.1.1 is affected by an vncap/vnc/protocol.py VNCServerAuthenticator authentication-bypass vulnerability that could allow a malicious actor to gain unauthorized access to a VNC session or... |
| CVE-2022-36669 | 2022-09-14 | Hospital Information System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. |
| CVE-2022-36667 | 2022-09-14 | Garage Management System 1.0 is vulnerable to the Remote Code Execution (RCE) due to the lack of filtering from the file upload function. The vulnerability exist during adding parts and... |
| CVE-2022-36668 | 2022-09-14 | Garage Management System 1.0 is vulnerable to Stored Cross Site Scripting (XSS) on several parameters. The vulnerabilities exist during creating or editing the parts under parameters. Using the XSS payload,... |
| CVE-2022-37137 | 2022-09-14 | PayMoney 3.3 is vulnerable to Stored Cross-Site Scripting (XSS) during replying the ticket. The XSS can be obtain from injecting under "Message" field with "description" parameter with the specially crafted... |
| CVE-2022-37139 | 2022-09-14 | Loan Management System version 1.0 suffers from a persistent cross site scripting vulnerability. |
| CVE-2022-37138 | 2022-09-14 | Loan Management System 1.0 is vulnerable to SQL Injection at the login page, which allows unauthorized users to login as Administrator after injecting username form. |
| CVE-2022-37140 | 2022-09-14 | PayMoney 3.3 is vulnerable to Client Side Remote Code Execution (RCE). The vulnerability exists on the reply ticket function and upload the malicious file. A calculator will open when the... |
| CVE-2022-40673 | 2022-09-14 | KDiskMark before 3.1.0 lacks authorization checking for D-Bus methods such as Helper::flushPageCache. |
| CVE-2022-40626 | 2022-09-14 | Reflected XSS in the backurl parameter of Zabbix Frontend |
| CVE-2022-2900 | 2022-09-14 | Server-Side Request Forgery (SSRF) in ionicabizau/parse-url |
| CVE-2022-22520 | 2022-09-14 | User enumeration vulnerability in MB connect line and Helmholz products |
| CVE-2022-38796 | 2022-09-14 | A Host Header Injection vulnerability in Feehi CMS 2.1.1 may allow an attacker to spoof a particular header. This can be exploited by abusing password reset emails. |
| CVE-2022-3212 | 2022-09-14 | DoS in axum-core due to missing request size limit |
| CVE-2021-38924 | 2022-09-14 | IBM Maximo Asset Management 7.6.1.1 and 7.6.1.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could... |
| CVE-2022-0029 | 2022-09-14 | Cortex XDR Agent: Improper Link Resolution Vulnerability When Generating a Tech Support File |
| CVE-2022-2277 | 2022-09-14 | A vulnerability exists in the ICCP stack of the affected SYS600 versions due to validation flaw in the process that establishes the ICCP communication. The validation flaw will cause a denial-of-service when ICCP of SYS600 is request to forward any da ... |
| CVE-2022-29922 | 2022-09-14 | A vulnerability exists in the handling of a specially crafted IEC 61850 packet with a valid data item but with incorrect data type in the IEC 61850 OPC Server. The vulnerability may cause a denial-of-service on the IEC 61850 OPC Server part of the SYS ... |
| CVE-2022-1778 | 2022-09-14 | A vulnerability exists during the start of the affected SYS600, where an input validation flaw causes a buffer-overflow while reading a specific configuration file. Subsequently SYS600 will fail to start. The configuration file can only be accessed by ... |
| CVE-2022-29492 | 2022-09-14 | A vulnerability exists in the handling of a malformed IEC 104 TCP packet. Upon receiving a malformed IEC 104 TCP packet, the malformed packet is dropped, however the TCP connection is left open. This may cause a denial-of-service if the affected conne ... |
| CVE-2022-31143 | 2022-09-14 | Leak of sensitive information through login page error in GLPI |
| CVE-2022-35945 | 2022-09-14 | Cross site scripting (XSS) via registration API in GLPI |
| CVE-2022-36112 | 2022-09-14 | Blind Server-Side Request Forgery (SSRF) in GLPI |
| CVE-2022-35947 | 2022-09-14 | SQL injection in GLPI |
| CVE-2022-35946 | 2022-09-14 | SQL injection through plugin controller in GLPI |
| CVE-2022-31187 | 2022-09-14 | Stored Cross Site Scripting (XSS) through global search in GLPI |
| CVE-2022-36056 | 2022-09-14 | Vulnerabilities with blob verification in sigstore cosign |
| CVE-2022-40476 | 2022-09-14 | A null pointer dereference issue was discovered in fs/io_uring.c in the Linux kernel before 5.15.62. A local user could use this flaw to crash the system or potentially cause a... |
| CVE-2022-40439 | 2022-09-14 | An memory leak issue was discovered in AP4_StdcFileByteStream::Create in mp42ts in Bento4 v1.6.0-639, allows attackers to cause a denial of service via a crafted file. |
| CVE-2022-40438 | 2022-09-14 | Buffer overflow vulnerability in function AP4_MemoryByteStream::WritePartial in mp42aac in Bento4 v1.6.0-639, allows attackers to cause a denial of service via a crafted file. |
| CVE-2022-40365 | 2022-09-14 | Cross site scripting (XSS) vulnerability in ouqiang gocron through 1.5.3, allows attackers to execute arbitrary code via scope.row.hostname in web/vue/src/pages/taskLog/list.vue. |
| CVE-2022-3216 | 2022-09-14 | Nintendo Game Boy Color Mobile Adapter GB Tetsuji memory corruption |
| CVE-2022-38301 | 2022-09-14 | Onedev v7.4.14 contains a path traversal vulnerability which allows attackers to access restricted files and directories via uploading a crafted JAR file into the directory /opt/onedev/lib. |
| CVE-2022-37724 | 2022-09-14 | Project Wonder WebObjects 1.0 through 5.4.3 is vulnerable to Arbitrary HTTP Header injection and URL- or Header-based XSS reflection in all web-server adaptor interfaces. |
| CVE-2022-38308 | 2022-09-14 | TOTOLink A700RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the lang parameter in the function cstesystem. This vulnerability allows attackers to execute arbitrary commands via a crafted... |
| CVE-2020-36603 | 2022-09-14 | The HoYoVerse (formerly miHoYo) Genshin Impact mhyprot2.sys 1.0.0.0 anti-cheat driver does not adequately restrict unprivileged function calls, allowing local, unprivileged users to execute arbitrary code with SYSTEM privileges on Microsoft... |