CVE List - 2023 / December
Showing 2201 - 2300 of 2673 CVEs for December 2023 (Page 23 of 27)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-7102 | 2023-12-24 | Remote Code Execution (RCE) Vulnerability |
| CVE-2023-7092 | 2023-12-24 | Uniway UW-302VP Admin Web Interface wlan_basic_set.cgi cross-site request forgery |
| CVE-2023-7093 | 2023-12-24 | KylinSoft kylin-system-updater com.kylin.systemupgrade Service UpgradeStrategiesDbus.py os command injection |
| CVE-2022-34267 | 2023-12-25 | An issue was discovered in RWS WorldServer before 11.7.3. Adding a token parameter with the value of 02 bypasses all authentication requirements. Arbitrary Java code can be uploaded and executed... |
| CVE-2022-34268 | 2023-12-25 | An issue was discovered in RWS WorldServer before 11.7.3. /clientLogin deserializes Java objects without authentication, leading to command execution on the host. |
| CVE-2022-34269 | 2023-12-25 | An issue was discovered in RWS WorldServer before 11.7.3. An authenticated, remote attacker can perform a ws-legacy/load_dtd?system_id= blind SSRF attack to deploy JSP code to the Apache Axis service running... |
| CVE-2022-34270 | 2023-12-25 | An issue was discovered in RWS WorldServer before 11.7.3. Regular users can create users with the Administrator role via UserWSUserManager. |
| CVE-2022-39818 | 2023-12-25 | In NOKIA NFM-T R19.9, an OS Command Injection vulnerability occurs in /cgi-bin/R19.9/log.pl of the VM Manager WebUI via the cmd HTTP GET parameter. This allows authenticated users to execute commands,... |
| CVE-2022-39820 | 2023-12-25 | In Network Element Manager in NOKIA NFM-T R19.9, an Unprotected Storage of Credentials vulnerability occurs under /root/RestUploadManager.xml.DRC and /DEPOT/KECustom_199/OTNE_DRC/RestUploadManager.xml. A remote user, authenticated to the operating system, with access privileges... |
| CVE-2022-39822 | 2023-12-25 | In NOKIA NFM-T R19.9, a SQL Injection vulnerability occurs in /cgi-bin/R19.9/easy1350.pl of the VM Manager WebUI via the id or host HTTP GET parameter. An authenticated attacker is required for... |
| CVE-2022-41760 | 2023-12-25 | An issue was discovered in NOKIA NFM-T R19.9. Relative Path Traversal can occur under /oms1350/data/cpb/log of the Network Element Manager via the filename parameter, allowing a remote authenticated attacker to... |
| CVE-2022-41761 | 2023-12-25 | An issue was discovered in NOKIA NFM-T R19.9. An Absolute Path Traversal vulnerability exists under /cgi-bin/R19.9/viewlog.pl of the VM Manager WebUI via the logfile parameter, allowing a remote authenticated attacker... |
| CVE-2022-41762 | 2023-12-25 | An issue was discovered in NOKIA NFM-T R19.9. Multiple Reflected XSS vulnerabilities exist in the Network Element Manager via any parameter to log.pl, the bench or pid parameter to top.pl,... |
| CVE-2022-43675 | 2023-12-25 | An issue was discovered in NOKIA NFM-T R19.9. Reflected XSS in the Network Element Manager exists via /oms1350/pages/otn/cpbLogDisplay via the filename parameter, under /oms1350/pages/otn/connection/E2ERoutingDisplayWithOverLay via the id parameter, and under... |
| CVE-2023-27151 | 2023-12-25 | openCRX 5.2.0 was discovered to contain an HTML injection vulnerability for Search Criteria-Activity Number (in the Saved Search Activity) via the Name, Description, or Activity Number field. |
| CVE-2023-28872 | 2023-12-25 | Support Assistant in NCP Secure Enterprise Client before 13.10 allows attackers to execute DLL files with SYSTEM privileges by creating a symbolic link from a %LOCALAPPDATA%\Temp\NcpSupport* location. |
| CVE-2023-30451 | 2023-12-25 | In TYPO3 11.5.24, the filelist component allows attackers (who have access to the administrator panel) to read arbitrary files via directory traversal in the baseuri field, as demonstrated by POST... |
| CVE-2023-31224 | 2023-12-25 | There is broken access control during authentication in Jamf Pro Server before 10.46.1. |
| CVE-2023-31289 | 2023-12-25 | Pexip Infinity before 31.2 has Improper Input Validation for signalling, allowing remote attackers to trigger an abort. |
| CVE-2023-31297 | 2023-12-25 | An issue was discovered in SESAMI planfocus CPTO (Cash Point & Transport Optimizer) 6.3.8.6 718. There is XSS via the Name field when modifying a client. |
| CVE-2023-31455 | 2023-12-25 | Pexip Infinity before 31.2 has Improper Input Validation for RTCP, allowing remote attackers to trigger an abort. |
| CVE-2023-34198 | 2023-12-25 | In Stormshield Network Security (SNS) 1.0.0 through 3.7.36 before 3.7.37, 3.8.0 through 3.11.24 before 3.11.25, 4.0.0 through 4.3.18 before 4.3.19, 4.4.0 through 4.6.5 before 4.6.6, and 4.7.0 before 4.7.1, the... |
| CVE-2023-36485 | 2023-12-25 | The workflow-engine of ILIAS before 7.23 and 8 before 8.3 allows remote authenticated users to run arbitrary system commands on the application server as the application user via a malicious... |
| CVE-2023-36486 | 2023-12-25 | The workflow-engine of ILIAS before 7.23 and 8 before 8.3 allows remote authenticated users to run arbitrary system commands on the application server as the application user by uploading a... |
| CVE-2023-37185 | 2023-12-25 | C-blosc2 before 2.9.3 was discovered to contain a NULL pointer dereference via the function zfp_prec_decompress at zfp/blosc2-zfp.c. |
| CVE-2023-37186 | 2023-12-25 | C-blosc2 before 2.9.3 was discovered to contain a NULL pointer dereference in ndlz/ndlz8x8.c via a NULL pointer to memset. |
| CVE-2023-37187 | 2023-12-25 | C-blosc2 before 2.9.3 was discovered to contain a NULL pointer dereference via the zfp/blosc2-zfp.c zfp_acc_decompress. function. |
| CVE-2023-37188 | 2023-12-25 | C-blosc2 before 2.9.3 was discovered to contain a NULL pointer dereference via the function zfp_rate_decompress at zfp/blosc2-zfp.c. |
| CVE-2023-37225 | 2023-12-25 | Pexip Infinity before 32 allows Webapp1 XSS via preconfigured links. |
| CVE-2023-38321 | 2023-12-25 | OpenNDS, as used in Sierra Wireless ALEOS before 4.17.0.12 and other products, allows remote attackers to cause a denial of service (NULL pointer dereference, daemon crash, and Captive Portal outage)... |
| CVE-2023-38826 | 2023-12-25 | A Cross Site Scripting (XSS) vulnerability exists in Follet Learning Solutions Destiny through 20.0_1U. via the handlewpesearchform.do. searchString. |
| CVE-2023-41165 | 2023-12-25 | An issue was discovered in Stormshield Network Security (SNS) 3.7.0 through 3.7.38 before 3.7.39, 3.10.0 through 3.11.26 before 3.11.27, 4.0 through 4.3.21 before 4.3.22, and 4.4.0 through 4.6.8 before 4.6.9.... |
| CVE-2023-47247 | 2023-12-25 | In SysAid On-Premise before 23.3.34, there is an edge case in which an end user is able to delete a Knowledge Base article, aka bug 15102. |
| CVE-2023-48650 | 2023-12-25 | Concrete CMS before 8.5.14 and 9 before 9.2.3 is vulnerable to an admin adding a stored XSS payload via the Layout Preset name. |
| CVE-2023-48651 | 2023-12-25 | Concrete CMS 9 before 9.2.3 is vulnerable to Cross Site Request Forgery (CSRF) at /ccm/system/dialogs/file/delete/1/submit. |
| CVE-2023-48652 | 2023-12-25 | Concrete CMS 9 before 9.2.3 is vulnerable to Cross Site Request Forgery (CSRF) via /ccm/system/dialogs/logs/delete_all/submit. An attacker can force an admin user to delete server report logs on a web... |
| CVE-2023-48653 | 2023-12-25 | Concrete CMS before 8.5.14 and 9 before 9.2.3 allows Cross Site Request Forgery (CSRF) via ccm/calendar/dialogs/event/delete/submit. An attacker can force an admin to delete events on the site because the... |
| CVE-2023-49226 | 2023-12-25 | An issue was discovered in Peplink Balance Two before 8.4.0. Command injection in the traceroute feature of the administration console allows users with admin privileges to execute arbitrary commands as... |
| CVE-2023-49328 | 2023-12-25 | On a Wolters Kluwer B.POINT 23.70.00 server running Linux on premises, during the authentication phase, a validated system user can achieve remote code execution via Argument Injection in the server-to-server... |
| CVE-2023-49337 | 2023-12-25 | Concrete CMS before 9.2.3 allows Stored XSS on the Admin Dashboard via /dashboard/system/basics/name. (8.5 and earlier are unaffected.) |
| CVE-2023-49944 | 2023-12-25 | The Challenge Response feature of BeyondTrust Privilege Management for Windows (PMfW) before 2023-07-14 allows local administrators to bypass this feature by decrypting the shared key, or by locating the decrypted... |
| CVE-2023-50658 | 2023-12-25 | The jose2go component before 1.6.0 for Go allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value. |
| CVE-2023-51772 | 2023-12-25 | One Identity Password Manager before 5.13.1 allows Kiosk Escape. This product enables users to reset their Active Directory passwords on the login screen of a Windows client. It launches a... |
| CVE-2023-51773 | 2023-12-25 | BACnet Stack before 1.3.2 has a decode function APDU buffer over-read in bacapp_decode_application_data in bacapp.c. |
| CVE-2023-51774 | 2023-12-25 | The json-jwt (aka JSON::JWT) gem 1.16.3 for Ruby sometimes allows bypass of identity checks via a sign/encryption confusion attack. For example, JWE can sometimes be used to bypass JSON::JWT.decode. |
| CVE-2023-51779 | 2023-12-25 | bt_sock_recvmsg in net/bluetooth/af_bluetooth.c in the Linux kernel through 6.6.8 has a use-after-free because of a bt_sock_ioctl race condition. |
| CVE-2023-51780 | 2023-12-25 | An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition. |
| CVE-2023-51781 | 2023-12-25 | An issue was discovered in the Linux kernel before 6.6.8. atalk_ioctl in net/appletalk/ddp.c has a use-after-free because of an atalk_recvmsg race condition. |
| CVE-2023-51782 | 2023-12-25 | An issue was discovered in the Linux kernel before 6.6.8. rose_ioctl in net/rose/af_rose.c has a use-after-free because of a rose_accept race condition. |
| CVE-2023-40236 | 2023-12-25 | In Pexip VMR self-service portal before 3, the same SSH host key is used across different customers' installations, which allows authentication bypass. |
| CVE-2023-47091 | 2023-12-25 | An issue was discovered in Stormshield Network Security (SNS) SNS 4.3.13 through 4.3.22 before 4.3.23, SNS 4.6.0 through 4.6.9 before 4.6.10, and SNS 4.7.0 through 4.7.1 before 4.7.2. An attacker... |
| CVE-2023-48654 | 2023-12-25 | One Identity Password Manager before 5.13.1 allows Kiosk Escape. This product enables users to reset their Active Directory passwords on the login screen of a Windows client. It launches a... |
| CVE-2023-49954 | 2023-12-25 | The CRM Integration in 3CX before 18.0.9.23 and 20 before 20.0.0.1494 allows SQL Injection via a first name, search string, or email address. |
| CVE-2023-51771 | 2023-12-25 | In MicroHttpServer (aka Micro HTTP Server) through a8ab029, _ParseHeader in lib/server.c allows a one-byte recv buffer overflow via a long URI. |
| CVE-2023-51775 | 2023-12-25 | The jose4j component before 0.9.4 for Java allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value. |
| CVE-2023-7094 | 2023-12-25 | Netentsec NS-ASG Application Security Gateway nsasg6.0.tgz information disclosure |
| CVE-2023-7095 | 2023-12-25 | Totolink A7100RU HTTP POST Request main buffer overflow |
| CVE-2023-7096 | 2023-12-25 | code-projects Faculty Management System crud.php sql injection |
| CVE-2023-7097 | 2023-12-25 | code-projects Water Billing System addbill.php sql injection |
| CVE-2023-7098 | 2023-12-25 | icret EasyImages hide.php path traversal |
| CVE-2023-43064 | 2023-12-25 | IBM i code execution |
| CVE-2021-38927 | 2023-12-25 | IBM Aspera Console cross-site scripting |
| CVE-2023-49880 | 2023-12-25 | IBM Financial Transaction Manager for SWIFT Services data manipulation |
| CVE-2023-7099 | 2023-12-25 | PHPGurukul Nipah Virus Testing Management System bwdates-report-result.php sql injection |
| CVE-2023-7100 | 2023-12-25 | PHPGurukul Restaurant Table Booking System bwdates-report-details.php sql injection |
| CVE-2023-7104 | 2023-12-25 | SQLite SQLite3 make alltest sqlite3session.c sessionReadRecord heap-based overflow |
| CVE-2023-7105 | 2023-12-25 | code-projects E-Commerce Website index_search.php sql injection |
| CVE-2023-7106 | 2023-12-25 | code-projects E-Commerce Website sql injection |
| CVE-2023-7107 | 2023-12-25 | code-projects E-Commerce Website user_signup.php sql injection |
| CVE-2023-27150 | 2023-12-26 | openCRX 5.2.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Name field after creation of a Tracker in Manage Activity. |
| CVE-2023-28616 | 2023-12-26 | An issue was discovered in Stormshield Network Security (SNS) before 4.3.17, 4.4.x through 4.6.x before 4.6.4, and 4.7.x before 4.7.1. It affects user accounts for which the password has an... |
| CVE-2023-48003 | 2023-12-26 | An open redirect through HTML injection in user messages in Asp.Net Zero before 12.3.0 allows remote attackers to redirect targeted victims to any URL via the '<meta http-equiv="refresh"' in the... |
| CVE-2023-49949 | 2023-12-26 | Passwork before 6.2.0 allows remote authenticated users to bypass 2FA by sending all one million of the possible 6-digit codes. |
| CVE-2023-51090 | 2023-12-26 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function formGetWeiXinConfig. |
| CVE-2023-51091 | 2023-12-26 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function R7WebsSecurityHandler. |
| CVE-2023-51092 | 2023-12-26 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function upgrade. |
| CVE-2023-51093 | 2023-12-26 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function fromSetLocalVlanInfo. |
| CVE-2023-51094 | 2023-12-26 | Tenda M3 V1.0.0.12(4856) was discovered to contain a Command Execution vulnerability via the function TendaTelnet. |
| CVE-2023-51095 | 2023-12-26 | Tenda M3 V1.0.0.12(4856) was discovered to contain a stack overflow via the function formDelWlRfPolicy. |
| CVE-2023-51097 | 2023-12-26 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formSetAutoPing. |
| CVE-2023-51098 | 2023-12-26 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formSetDiagnoseInfo . |
| CVE-2023-51099 | 2023-12-26 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formexeCommand . |
| CVE-2023-51100 | 2023-12-26 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a command injection vulnerability via the function formGetDiagnoseInfo . |
| CVE-2023-51102 | 2023-12-26 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formWifiMacFilterSet. |
| CVE-2023-51103 | 2023-12-26 | A floating point exception (divide-by-zero) vulnerability was discovered in Artifex MuPDF 1.23.4 in the function fz_new_pixmap_from_float_data() of pixmap.c. |
| CVE-2023-51105 | 2023-12-26 | A floating point exception (divide-by-zero) vulnerability was discovered in Artifex MuPDF 1.23.4 in function bmp_decompress_rle4() of load-bmp.c. |
| CVE-2023-51106 | 2023-12-26 | A floating point exception (divide-by-zero) vulnerability was discovered in mupdf 1.23.4 in function pnm_binary_read_image() of load-pnm.c when fz_colorspace_n returns zero. |
| CVE-2023-51107 | 2023-12-26 | A floating point exception (divide-by-zero) vulnerability was discovered in Artifex MuPDF 1.23.4 in functon compute_color() of jquant2.c. NOTE: this is disputed by the supplier because there was not reasonable evidence... |
| CVE-2023-52086 | 2023-12-26 | resumable.php (aka PHP backend for resumable.js) 0.1.4 before 3c6dbf5 allows arbitrary file upload anywhere in the filesystem via ../ in multipart/form-data content to upload.php. (File overwrite hasn't been possible with... |
| CVE-2023-52096 | 2023-12-26 | SteVe Community ocpp-jaxb before 0.0.8 generates invalid timestamps such as ones with month 00 in certain situations (such as when an application receives a StartTransaction Open Charge Point Protocol message... |
| CVE-2023-49438 | 2023-12-26 | An open redirect vulnerability in the python package Flask-Security-Too <=5.3.2 allows attackers to redirect unsuspecting users to malicious sites via a crafted URL by abusing the ?next parameter on the... |
| CVE-2023-51101 | 2023-12-26 | Tenda W9 V1.0.0.7(4456)_CN was discovered to contain a stack overflow via the function formSetUplinkInfo. |
| CVE-2023-51104 | 2023-12-26 | A floating point exception (divide-by-zero) vulnerability was discovered in Artifex MuPDF 1.23.4 in function pnm_binary_read_image() of load-pnm.c when span equals zero. |
| CVE-2023-7108 | 2023-12-26 | code-projects E-Commerce Website user_signup.php cross site scripting |
| CVE-2023-7109 | 2023-12-26 | code-projects Library Management System login.php sql injection |
| CVE-2023-7110 | 2023-12-26 | code-projects Library Management System login.php sql injection |
| CVE-2023-7111 | 2023-12-26 | code-projects Library Management System index.php sql injection |
| CVE-2023-51654 | 2023-12-26 | Improper link resolution before file access ('Link Following') issue exists in iPrint&Scan Desktop for Windows versions 11.0.0 and earlier. A symlink attack by a malicious user may cause a Denial-of-service... |
| CVE-2023-49117 | 2023-12-26 | PowerCMS (6 Series, 5 Series, and 4 Series) contains a stored cross-site scripting vulnerability. If this vulnerability is exploited, an arbitrary script may be executed on a logged-in user's web... |
| CVE-2023-50297 | 2023-12-26 | Open redirect vulnerability in PowerCMS (6 Series, 5 Series, and 4 Series) allows a remote unauthenticated attacker to redirect users to arbitrary web sites via a specially crafted URL. Note... |