CVE List - 2023 / October
Showing 301 - 400 of 2690 CVEs for October 2023 (Page 4 of 27)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-36277 | 2023-10-04 | SQL injection vulnerability in TCMAN GIM |
| CVE-2023-5371 | 2023-10-04 | Memory Allocation with Excessive Size Value in Wireshark |
| CVE-2023-43804 | 2023-10-04 | `Cookie` HTTP header isn't stripped on cross-origin redirects |
| CVE-2023-20101 | 2023-10-04 | A vulnerability in Cisco Emergency Responder could allow an unauthenticated,... |
| CVE-2023-20259 | 2023-10-04 | A vulnerability in an API endpoint of multiple Cisco Unified... |
| CVE-2023-20235 | 2023-10-04 | A vulnerability in the on-device application development workflow feature for... |
| CVE-2023-5402 | 2023-10-04 | A CWE-269: Improper Privilege Management vulnerability exists that could cause... |
| CVE-2023-42824 | 2023-10-04 | The issue was addressed with improved checks. This issue is... |
| CVE-2023-3428 | 2023-10-04 | Imagemagick: heap-buffer-overflow in coders/tiff.c |
| CVE-2023-3576 | 2023-10-04 | Libtiff: memory leak in tiffcrop.c |
| CVE-2023-39191 | 2023-10-04 | Kernel: ebpf: insufficient stack type checks in dynptr |
| CVE-2023-5399 | 2023-10-04 | A CWE-22: Improper Limitation of a Pathname to a Restricted... |
| CVE-2023-5391 | 2023-10-04 | A CWE-502: Deserialization of untrusted data vulnerability exists that could... |
| CVE-2023-38701 | 2023-10-04 | Hydra's committed UTxOs at Commit validator and UTxOs at Initial validator can be spent arbitrarily by anyone |
| CVE-2023-42448 | 2023-10-04 | Hydra's contestation period in head datum can be modified during Close transaction, allowing malicious participant to freely modify the contestation deadline |
| CVE-2023-42449 | 2023-10-04 | Malicious head initialiser can extract PTs from control of Hydra scripts, leading to locked participant commits or spoofed commits |
| CVE-2023-38537 | 2023-10-04 | A race condition in a network transport subsystem led to... |
| CVE-2023-38538 | 2023-10-04 | A race condition in an event subsystem led to a... |
| CVE-2023-42808 | 2023-10-04 | Common Voice Cross-site Scripting vulnerability |
| CVE-2023-42809 | 2023-10-04 | Redisson unsafe deserialization vulnerability |
| CVE-2023-44209 | 2023-10-04 | Local privilege escalation due to improper soft link handling. The... |
| CVE-2023-44210 | 2023-10-04 | Sensitive information disclosure and manipulation due to missing authorization. The... |
| CVE-2023-41094 | 2023-10-04 | Touchlink authentication bypass due to packets processed after timeout or out of range in Ember ZNet |
| CVE-2023-44389 | 2023-10-04 | Zope management interface vulnerable to stored cross site scripting via the title property |
| CVE-2023-43793 | 2023-10-04 | Misskey allows users to bypass authentication of Bull dashboard |
| CVE-2023-43805 | 2023-10-04 | Nexkey allows users to bypass authentication of Bull dashboard |
| CVE-2023-43799 | 2023-10-04 | The Altair Desktop Client Does Not Sanitize External URLs before passing them to the underlying system |
| CVE-2023-43809 | 2023-10-04 | Soft Serve Public Key Authentication Bypass Vulnerability when Keyboard-Interactive SSH Authentication is Enabled |
| CVE-2023-26236 | 2023-10-05 | An issue was discovered in WatchGuard EPDR 8.0.21.0002. Due to... |
| CVE-2023-26237 | 2023-10-05 | An issue was discovered in WatchGuard EPDR 8.0.21.0002. It is... |
| CVE-2023-26238 | 2023-10-05 | An issue was discovered in WatchGuard EPDR 8.0.21.0002. It is... |
| CVE-2023-26239 | 2023-10-05 | An issue was discovered in WatchGuard EPDR 8.0.21.0002. Due to... |
| CVE-2023-40920 | 2023-10-05 | Prixan prixanconnect up to v1.62 was discovered to contain a... |
| CVE-2023-43260 | 2023-10-05 | Milesight UR5X, UR32L, UR32, UR35, UR41 before v35.3.0.7 was discovered... |
| CVE-2023-43269 | 2023-10-05 | pigcms up to 7.0 was discovered to contain an arbitrary... |
| CVE-2023-43284 | 2023-10-05 | D-Link Wireless MU-MIMO Gigabit AC1200 Router DIR-846 100A53DBR-Retail devices allow... |
| CVE-2023-43343 | 2023-10-05 | Cross-site scripting (XSS) vulnerability in opensolution Quick CMS v.6.7 allows... |
| CVE-2023-43981 | 2023-10-05 | Presto Changeo testsitecreator up to 1.1.1 was discovered to contain... |
| CVE-2023-43983 | 2023-10-05 | Presto Changeo attributegrid up to 2.0.3 was discovered to contain... |
| CVE-2023-44024 | 2023-10-05 | SQL injection vulnerability in KnowBand Module One Page Checkout, Social... |
| CVE-2023-44828 | 2023-10-05 | D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow... |
| CVE-2023-44829 | 2023-10-05 | D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow... |
| CVE-2023-44830 | 2023-10-05 | D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow... |
| CVE-2023-44831 | 2023-10-05 | D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow... |
| CVE-2023-44832 | 2023-10-05 | D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow... |
| CVE-2023-44833 | 2023-10-05 | D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow... |
| CVE-2023-44834 | 2023-10-05 | D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow... |
| CVE-2023-44835 | 2023-10-05 | D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow... |
| CVE-2023-44836 | 2023-10-05 | D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow... |
| CVE-2023-44837 | 2023-10-05 | D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow... |
| CVE-2023-44838 | 2023-10-05 | D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow... |
| CVE-2023-44839 | 2023-10-05 | D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow... |
| CVE-2023-45198 | 2023-10-05 | ftpd before "NetBSD-ftpd 20230930" can leak information about the host... |
| CVE-2023-45159 | 2023-10-05 | 1E Client installer can perform arbitrary file deletion on protected files |
| CVE-2022-4145 | 2023-10-05 | Content spoofing |
| CVE-2022-3248 | 2023-10-05 | Openshift api admission checks does not enforce "custom-host" permissions |
| CVE-2023-44390 | 2023-10-05 | HtmlSanitizer vulnerable to Cross-site Scripting in Foreign Content |
| CVE-2023-45160 | 2023-10-05 | Elevated Temp Directory Execution in 1E Client |
| CVE-2023-4570 | 2023-10-05 | Improper Restriction in NI MeasurementLink Python Services |
| CVE-2023-2306 | 2023-10-05 | Qognify NiceVision Use of Hard-coded Credentials |
| CVE-2023-5423 | 2023-10-05 | SourceCodester Online Pizza Ordering System sql injection |
| CVE-2023-4401 | 2023-10-05 | Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS... |
| CVE-2023-5346 | 2023-10-05 | Type confusion in V8 in Google Chrome prior to 117.0.5938.149... |
| CVE-2023-43068 | 2023-10-05 | Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS... |
| CVE-2023-43069 | 2023-10-05 | Dell SmartFabric Storage Software v1.4 (and earlier) contain(s) an OS... |
| CVE-2023-43070 | 2023-10-05 | Dell SmartFabric Storage Software v1.4 (and earlier) contains a Path... |
| CVE-2023-44386 | 2023-10-05 | Incorrect request error handling triggers server crash in Vapor |
| CVE-2023-43071 | 2023-10-05 | Dell SmartFabric Storage Software v1.4 (and earlier) contains possible vulnerabilities... |
| CVE-2023-43072 | 2023-10-05 | Dell SmartFabric Storage Software v1.4 (and earlier) contains an improper... |
| CVE-2023-44387 | 2023-10-05 | Gradle has incorrect permission assignment for symlinked files used in copy or archiving operations |
| CVE-2023-43073 | 2023-10-05 | Dell SmartFabric Storage Software v1.4 (and earlier) contains an Improper... |
| CVE-2023-32485 | 2023-10-05 | Dell SmartFabric Storage Software version 1.3 and lower contain an... |
| CVE-2023-42754 | 2023-10-05 | Kernel: ipv4: null pointer dereference in ipv4_send_dest_unreach() |
| CVE-2023-42755 | 2023-10-05 | Kernel: rsvp: out-of-bounds read in rsvp_classify() |
| CVE-2023-40745 | 2023-10-05 | Libtiff: integer overflow in tiffcp.c |
| CVE-2023-41175 | 2023-10-05 | Libtiff: potential integer overflow in raw2tiff.c |
| CVE-2023-5441 | 2023-10-05 | NULL Pointer Dereference in vim/vim |
| CVE-2023-39323 | 2023-10-05 | Arbitrary code execution during build via line directives in cmd/go |
| CVE-2023-44212 | 2023-10-05 | Sensitive information disclosure and manipulation due to missing authorization. The... |
| CVE-2023-44211 | 2023-10-05 | Sensitive information disclosure and manipulation due to missing authorization. The... |
| CVE-2023-44213 | 2023-10-05 | Sensitive information disclosure due to excessive collection of system information.... |
| CVE-2023-44214 | 2023-10-05 | Sensitive information disclosure due to missing authorization. The following products... |
| CVE-2023-45240 | 2023-10-05 | Sensitive information disclosure due to missing authorization. The following products... |
| CVE-2023-45241 | 2023-10-05 | Sensitive information leak through log files. The following products are... |
| CVE-2023-45242 | 2023-10-05 | Sensitive information disclosure due to missing authorization. The following products... |
| CVE-2023-45243 | 2023-10-05 | Sensitive information disclosure due to missing authorization. The following products... |
| CVE-2015-10125 | 2023-10-05 | WP Ultimate CSV Importer Plugin cross-site request forgery |
| CVE-2023-36123 | 2023-10-06 | Directory Traversal vulnerability in Hex-Dragon Plain Craft Launcher 2 version... |
| CVE-2023-44061 | 2023-10-06 | File Upload vulnerability in Simple and Nice Shopping Cart Script... |
| CVE-2023-44758 | 2023-10-06 | GDidees CMS 3.0 is affected by a Cross-Site Scripting (XSS)... |
| CVE-2023-44761 | 2023-10-06 | Multiple Cross Site Scripting (XSS) vulnerabilities in Concrete CMS versions... |
| CVE-2023-44762 | 2023-10-06 | A Cross Site Scripting (XSS) vulnerability in Concrete CMS from... |
| CVE-2023-44764 | 2023-10-06 | A Cross Site Scripting (XSS) vulnerability in Concrete CMS before... |
| CVE-2023-44765 | 2023-10-06 | A Cross Site Scripting (XSS) vulnerability in Concrete CMS versions... |
| CVE-2023-44766 | 2023-10-06 | A Cross Site Scripting (XSS) vulnerability in Concrete CMS v.9.2.1... |
| CVE-2023-44770 | 2023-10-06 | A Cross-Site Scripting (XSS) vulnerability in Zenario CMS v.9.4.59197 allows... |
| CVE-2023-44771 | 2023-10-06 | A Cross-Site Scripting (XSS) vulnerability in Zenario CMS v.9.4.59197 allows... |
| CVE-2023-44807 | 2023-10-06 | D-Link DIR-820L 1.05B03 has a stack overflow vulnerability in the... |
| CVE-2023-44860 | 2023-10-06 | An issue in NETIS SYSTEMS N3Mv2 v.1.0.1.865 allows a remote... |
| CVE-2023-45282 | 2023-10-06 | In NASA Open MCT (aka openmct) before 3.1.0, prototype pollution... |