CVE List - 2023 / February
Showing 1 - 100 of 2164 CVEs for February 2023 (Page 1 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-47002 | 2023-02-01 | A vulnerability in the Remember Me function of Masa CMS... |
| CVE-2022-47872 | 2023-02-01 | A Server-Side Request Forgery (SSRF) in maccms10 v2021.1000.2000 allows attackers... |
| CVE-2023-23126 | 2023-02-01 | Connectwise Automate 2022.11 is vulnerable to Clickjacking. The login screen... |
| CVE-2023-23127 | 2023-02-01 | In Connectwise Control 22.8.10013.8329, the login page does not implement... |
| CVE-2023-23130 | 2023-02-01 | Connectwise Automate 2022.11 is vulnerable to Cleartext authentication. Authentication is... |
| CVE-2021-22786 | 2023-02-01 | A CWE-200: Information Exposure vulnerability exists that could cause the... |
| CVE-2022-2329 | 2023-02-01 | A CWE-190: Integer Overflow or Wraparound vulnerability exists that could... |
| CVE-2022-24324 | 2023-02-01 | A CWE-120: Buffer Copy without Checking Size of Input vulnerability... |
| CVE-2022-30904 | 2023-02-01 | In Bestechnic Bluetooth Mesh SDK (BES2300) V1.0, a buffer overflow... |
| CVE-2022-31363 | 2023-02-01 | Cypress : https://www.infineon.com/ Cypress Bluetooth Mesh SDK BSA0107_05.01.00-BX8-AMESH-08 is affected... |
| CVE-2022-31364 | 2023-02-01 | Cypress : https://www.infineon.com/ Cypress Bluetooth Mesh SDK BSA0107_05.01.00-BX8-AMESH-08 is affected... |
| CVE-2022-31902 | 2023-02-01 | Notepad++ v8.4.1 was discovered to contain a stack overflow via... |
| CVE-2022-37033 | 2023-02-01 | In dotCMS 5.x-22.06, TempFileAPI allows a user to create a... |
| CVE-2022-37034 | 2023-02-01 | In dotCMS 5.x-22.06, it is possible to call the TempResource... |
| CVE-2022-4062 | 2023-02-01 | A CWE-285: Improper Authorization vulnerability exists that could cause unauthorized... |
| CVE-2022-4206 | 2023-02-01 | A sensitive information leak issue has been discovered in all... |
| CVE-2022-4254 | 2023-02-01 | sssd: libsss_certmap fails to sanitise certificate data used in LDAP... |
| CVE-2022-42970 | 2023-02-01 | A CWE-306: Missing Authentication for Critical Function The software does... |
| CVE-2022-42971 | 2023-02-01 | A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability... |
| CVE-2022-42972 | 2023-02-01 | A CWE-732: Incorrect Permission Assignment for Critical Resource vulnerability exists... |
| CVE-2022-42973 | 2023-02-01 | A CWE-798: Use of Hard-coded Credentials vulnerability exists that could... |
| CVE-2022-45782 | 2023-02-01 | An issue was discovered in dotCMS core 5.3.8.5 through 5.3.8.15... |
| CVE-2022-45783 | 2023-02-01 | An issue was discovered in dotCMS core 4.x through 22.10.2.... |
| CVE-2022-46934 | 2023-02-01 | kkFileView v4.1.0 was discovered to contain a cross-site scripting (XSS)... |
| CVE-2022-47003 | 2023-02-01 | A vulnerability in the Remember Me function of Mura CMS... |
| CVE-2022-47714 | 2023-02-01 | Last Yard 22.09.8-1 does not enforce HSTS headers |
| CVE-2022-47715 | 2023-02-01 | In Last Yard 22.09.8-1, the cookie can be stolen via... |
| CVE-2022-47717 | 2023-02-01 | Last Yard 22.09.8-1 is vulnerable to Cross-origin resource sharing (CORS). |
| CVE-2022-47768 | 2023-02-01 | Serenissima Informatica Fast Checkin 1.0 is vulnerable to Directory Traversal. |
| CVE-2022-47769 | 2023-02-01 | An arbitrary file write vulnerability in Serenissima Informatica Fast Checkin... |
| CVE-2022-47770 | 2023-02-01 | Serenissima Informatica Fast Checkin version v1.0 is vulnerable to Unauthenticated... |
| CVE-2022-48093 | 2023-02-01 | Seacms v12.7 was discovered to contain a remote code execution... |
| CVE-2022-48094 | 2023-02-01 | lmxcms v1.41 was discovered to contain an arbitrary file read... |
| CVE-2023-0454 | 2023-02-01 | OrangeScrum version 2.0.11 allows an authenticated external attacker to delete... |
| CVE-2023-0524 | 2023-02-01 | As part of our Security Development Lifecycle, a potential privilege... |
| CVE-2023-0587 | 2023-02-01 | A file upload vulnerability in exists in Trend Micro Apex... |
| CVE-2023-0606 | 2023-02-01 | Cross-site Scripting (XSS) - Reflected in ampache/ampache |
| CVE-2023-0607 | 2023-02-01 | Cross-site Scripting (XSS) - Stored in projectsend/projectsend |
| CVE-2023-0608 | 2023-02-01 | Cross-site Scripting (XSS) - DOM in microweber/microweber |
| CVE-2023-0609 | 2023-02-01 | Improper Authorization in wallabag/wallabag |
| CVE-2023-0610 | 2023-02-01 | Improper Authorization in wallabag/wallabag |
| CVE-2023-20856 | 2023-02-01 | VMware vRealize Operations (vROps) contains a CSRF bypass vulnerability. A... |
| CVE-2023-23073 | 2023-02-01 | Cross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus... |
| CVE-2023-23074 | 2023-02-01 | Cross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus... |
| CVE-2023-23075 | 2023-02-01 | Cross Site Scripting (XSS) vulnerability in Zoho Asset Explorer 6.9... |
| CVE-2023-23076 | 2023-02-01 | OS Command injection vulnerability in Support Center Plus 11 via... |
| CVE-2023-23077 | 2023-02-01 | Cross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus... |
| CVE-2023-23078 | 2023-02-01 | Cross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus... |
| CVE-2023-23128 | 2023-02-01 | Connectwise Control 22.8.10013.8329 is vulnerable to Cross Origin Resource Sharing... |
| CVE-2023-23131 | 2023-02-01 | Selfwealth iOS mobile App 3.3.1 is vulnerable to Insecure App... |
| CVE-2023-23132 | 2023-02-01 | Selfwealth iOS mobile App 3.3.1 is vulnerable to Sensitive key... |
| CVE-2023-23135 | 2023-02-01 | An arbitrary file upload vulnerability in Ftdms v3.1.6 allows attackers... |
| CVE-2023-23136 | 2023-02-01 | lmxcms v1.41 was discovered to contain an arbitrary file deletion... |
| CVE-2023-23846 | 2023-02-01 | Due to insufficient length validation in the Open5GS GTP library... |
| CVE-2023-23969 | 2023-02-01 | In Django 3.2 before 3.2.17, 4.0 before 4.0.9, and 4.1... |
| CVE-2023-24610 | 2023-02-01 | NOSH 4a5cfdb allows remote authenticated users to execute PHP arbitrary... |
| CVE-2023-25012 | 2023-02-01 | The Linux kernel through 6.1.9 has a Use-After-Free in bigben_remove... |
| CVE-2023-23630 | 2023-02-01 | Cross-site (XSS) vulnerability with Express API in Eta |
| CVE-2023-23928 | 2023-02-01 | reason-jose ignores signature checks |
| CVE-2022-34443 | 2023-02-01 | Dell Rugged Control Center, versions prior to 4.5, contain an... |
| CVE-2022-34400 | 2023-02-01 | Dell BIOS contains a heap buffer overflow vulnerability. A local... |
| CVE-2022-34459 | 2023-02-01 | Dell Command | Update, Dell Update, and Alienware Update versions... |
| CVE-2022-34458 | 2023-02-01 | Dell Command | Update, Dell Update, and Alienware Update versions... |
| CVE-2022-45101 | 2023-02-01 | Dell PowerScale OneFS 9.0.0.x - 9.4.0.x, contains an Improper Handling... |
| CVE-2022-45095 | 2023-02-01 | Dell PowerScale OneFS, 8.2.x-9.4.x, contain a command injection vulnerability. An... |
| CVE-2022-45097 | 2023-02-01 | Dell PowerScale OneFS 9.0.0.x-9.4.0.x contains an Incorrect User Management vulnerability.... |
| CVE-2022-45096 | 2023-02-01 | Dell PowerScale OneFS, 8.2.0 through 9.3.0, contain an User Interface... |
| CVE-2022-25916 | 2023-02-01 | Versions of the package mt7688-wiscan before 0.8.3 are vulnerable to... |
| CVE-2022-25906 | 2023-02-01 | All versions of the package is-http2 are vulnerable to Command... |
| CVE-2022-45098 | 2023-02-01 | Dell PowerScale OneFS, 9.0.0.x-9.4.0.x, contain a cleartext storage of sensitive... |
| CVE-2022-45099 | 2023-02-01 | Dell PowerScale OneFS, versions 8.2.x-9.4.x, contain a weak encoding for... |
| CVE-2022-45100 | 2023-02-01 | Dell PowerScale OneFS, versions 8.2.x-9.3.x, contains an Improper Certificate Validation... |
| CVE-2022-45102 | 2023-02-01 | Dell EMC Data Protection Central, versions 19.1 through 19.7, contains... |
| CVE-2022-32482 | 2023-02-01 | Dell BIOS contains an improper input validation vulnerability. A local... |
| CVE-2022-34403 | 2023-02-01 | Dell BIOS contains a Stack based buffer overflow vulnerability. A... |
| CVE-2022-34396 | 2023-02-01 | Dell OpenManage Server Administrator (OMSA) version 10.3.0.0 and earlier contains... |
| CVE-2022-34398 | 2023-02-01 | Dell BIOS contains a Time-of-check Time-of-use vulnerability. A local authenticated... |
| CVE-2022-46679 | 2023-02-01 | Dell PowerScale OneFS 8.2.x, 9.0.0.x - 9.4.0.x, contain an insufficient... |
| CVE-2022-46756 | 2023-02-01 | Dell VxRail, versions prior to 7.0.410, contain a Container Escape... |
| CVE-2023-24977 | 2023-02-01 | Apache InLong: Jdbc Connection causes arbitrary file reading in InLong |
| CVE-2023-23692 | 2023-02-01 | Dell EMC prior to version DDOS 7.9 contain(s) an OS... |
| CVE-2023-22572 | 2023-02-01 | Dell PowerScale OneFS 9.1.0.x-9.4.0.x contain an insertion of sensitive information... |
| CVE-2023-22574 | 2023-02-01 | Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of... |
| CVE-2023-22573 | 2023-02-01 | Dell PowerScale OneFS 9.0.0.x-9.4.0.x contain an insertion of sensitive information... |
| CVE-2023-22575 | 2023-02-01 | Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of... |
| CVE-2023-0611 | 2023-02-01 | TRENDnet TEW-652BRP Web Management Interface get_set.ccp command injection |
| CVE-2023-0612 | 2023-02-01 | TRENDnet TEW-811DRU httpd basic.asp buffer overflow |
| CVE-2023-0613 | 2023-02-01 | TRENDnet TEW-811DRU httpd security.asp memory corruption |
| CVE-2023-24997 | 2023-02-01 | Apache InLong: Jdbc Connection Security Bypass |
| CVE-2023-0400 | 2023-02-01 | The protection bypass vulnerability in DLP for Windows 11.9.x is... |
| CVE-2023-0617 | 2023-02-01 | TRENDNet TEW-811DRU httpd guestnetwork.asp buffer overflow |
| CVE-2023-0618 | 2023-02-01 | TRENDnet TEW-652BRP Web Service cfg_op.ccp memory corruption |
| CVE-2022-43922 | 2023-02-01 | IBM App Connect Enterprise Certified Container information disclosure |
| CVE-2022-47983 | 2023-02-01 | IBM InfoSphere Information Server cross-site scripting |
| CVE-2023-22281 | 2023-02-01 | BIG-IP AFM vulnerability |
| CVE-2023-22283 | 2023-02-01 | BIG-IP Edge Client for Windows vulnerability |
| CVE-2023-22302 | 2023-02-01 | BIG-IP HTTP profile vulnerability |
| CVE-2023-22323 | 2023-02-01 | BIG-IP SSL OCSP Authentication profile vulnerability |
| CVE-2023-22326 | 2023-02-01 | iControl REST and tmsh vulnerability |
| CVE-2023-22340 | 2023-02-01 | BIG-IP SIP profile vulnerability |