CVE List - 2023 / April
Showing 1001 - 1100 of 2302 CVEs for April 2023 (Page 11 of 24)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-26425 | 2023-04-12 | ZDI-CAN-19854: Adobe Acrobat Reader DC Annotation Out-Of-Bounds Read Remote Code Execution Vulnerability |
| CVE-2023-26852 | 2023-04-12 | An arbitrary file upload vulnerability in the upload plugin of... |
| CVE-2023-27032 | 2023-04-12 | Prestashop advancedpopupcreator v1.1.21 to v1.1.24 was discovered to contain a... |
| CVE-2023-27216 | 2023-04-12 | An issue found in D-Link DSL-3782 v.1.03 allows remote authenticated... |
| CVE-2023-27703 | 2023-04-12 | The Android version of pikpak v1.29.2 was discovered to contain... |
| CVE-2023-27704 | 2023-04-12 | Void Tools Everything lower than v1.4.1.1022 was discovered to contain... |
| CVE-2023-27775 | 2023-04-12 | A stored HTML injection vulnerability in LiveAction LiveSP v21.1.2 allows... |
| CVE-2023-27826 | 2023-04-12 | SeowonIntech SWC 5100W WIMAX Bootloader 1.18.19.0, HW 0.0.7.0, and FW... |
| CVE-2023-27830 | 2023-04-12 | TightVNC before v2.8.75 allows attackers to escalate privileges on the... |
| CVE-2023-28488 | 2023-04-12 | client.c in gdhcp in ConnMan through 1.41 could be used... |
| CVE-2023-29571 | 2023-04-12 | Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability... |
| CVE-2023-29574 | 2023-04-12 | Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in... |
| CVE-2023-29580 | 2023-04-12 | yasm 1.3.0.55.g101bc was discovered to contain a segmentation violation via... |
| CVE-2023-30512 | 2023-04-12 | CubeFS through 3.2.1 allows Kubernetes cluster-level privilege escalation. This occurs... |
| CVE-2023-1829 | 2023-04-12 | Use-after-free in tcindex (traffic control index filter) in the Linux Kernel |
| CVE-2023-1874 | 2023-04-12 | The WP Data Access plugin for WordPress is vulnerable to... |
| CVE-2022-47605 | 2023-04-12 | WordPress Custom 404 Pro Plugin <= 3.7.0 is vulnerable to SQL Injection (SQLi) |
| CVE-2023-1872 | 2023-04-12 | Use-after-free in Linux kernel's io_uring subsystem |
| CVE-2023-0004 | 2023-04-12 | PAN-OS: Local File Deletion Vulnerability |
| CVE-2023-0005 | 2023-04-12 | PAN-OS: Exposure of Sensitive Information Vulnerability |
| CVE-2023-0006 | 2023-04-12 | GlobalProtect App: Local File Deletion Vulnerability |
| CVE-2023-30513 | 2023-04-12 | Jenkins Kubernetes Plugin 3909.v1f2c633e8590 and earlier does not properly mask... |
| CVE-2023-30514 | 2023-04-12 | Jenkins Azure Key Vault Plugin 187.va_cd5fecd198a_ and earlier does not... |
| CVE-2023-30515 | 2023-04-12 | Jenkins Thycotic DevOps Secrets Vault Plugin 1.0.0 and earlier does... |
| CVE-2023-30516 | 2023-04-12 | Jenkins Image Tag Parameter Plugin 2.0 improperly introduces an option... |
| CVE-2023-30517 | 2023-04-12 | Jenkins NeuVector Vulnerability Scanner Plugin 1.22 and earlier unconditionally disables... |
| CVE-2023-30518 | 2023-04-12 | A missing permission check in Jenkins Thycotic Secret Server Plugin... |
| CVE-2023-30519 | 2023-04-12 | A missing permission check in Jenkins Quay.io trigger Plugin 0.1... |
| CVE-2023-30520 | 2023-04-12 | Jenkins Quay.io trigger Plugin 0.1 and earlier does not limit... |
| CVE-2023-30521 | 2023-04-12 | A missing permission check in Jenkins Assembla merge request builder... |
| CVE-2023-30522 | 2023-04-12 | A missing permission check in Jenkins Fogbugz Plugin 2.2.17 and... |
| CVE-2023-30523 | 2023-04-12 | Jenkins Report Portal Plugin 0.5 and earlier stores ReportPortal access... |
| CVE-2023-30524 | 2023-04-12 | Jenkins Report Portal Plugin 0.5 and earlier does not mask... |
| CVE-2023-30525 | 2023-04-12 | A cross-site request forgery (CSRF) vulnerability in Jenkins Report Portal... |
| CVE-2023-30526 | 2023-04-12 | A missing permission check in Jenkins Report Portal Plugin 0.5... |
| CVE-2023-30527 | 2023-04-12 | Jenkins WSO2 Oauth Plugin 1.0 and earlier stores the WSO2... |
| CVE-2023-30528 | 2023-04-12 | Jenkins WSO2 Oauth Plugin 1.0 and earlier does not mask... |
| CVE-2023-30529 | 2023-04-12 | Jenkins Lucene-Search Plugin 387.v938a_ecb_f7fe9 and earlier does not require POST... |
| CVE-2023-30530 | 2023-04-12 | Jenkins Consul KV Builder Plugin 2.0.13 and earlier stores the... |
| CVE-2023-30531 | 2023-04-12 | Jenkins Consul KV Builder Plugin 2.0.13 and earlier does not... |
| CVE-2023-30532 | 2023-04-12 | A missing permission check in Jenkins TurboScript Plugin 1.3 and... |
| CVE-2023-27812 | 2023-04-13 | bloofox v0.5.2 was discovered to contain an arbitrary file deletion... |
| CVE-2023-29597 | 2023-04-13 | bloofox v0.5.2 was discovered to contain a SQL injection vulnerability... |
| CVE-2022-48468 | 2023-04-13 | protobuf-c before 1.4.1 has an unsigned integer overflow in parse_required_member. |
| CVE-2023-2014 | 2023-04-13 | Cross-site Scripting (XSS) - Generic in microweber/microweber |
| CVE-2023-2021 | 2023-04-13 | Cross-site Scripting (XSS) - Stored in nilsteampassnet/teampass |
| CVE-2023-20863 | 2023-04-13 | In spring framework versions prior to 5.2.24 release+ ,5.3.27+ and... |
| CVE-2023-20866 | 2023-04-13 | In Spring Session version 3.0.0, the session id can be... |
| CVE-2023-22948 | 2023-04-13 | An issue was discovered in TigerGraph Enterprise Free Edition 3.x.... |
| CVE-2023-22950 | 2023-04-13 | An issue was discovered in TigerGraph Enterprise Free Edition 3.x.... |
| CVE-2023-22951 | 2023-04-13 | An issue was discovered in TigerGraph Enterprise Free Edition 3.x.... |
| CVE-2023-24509 | 2023-04-13 | On affected modular platforms running Arista EOS equipped with both redundant supervisor modules and having the redundancy protocol configured with RPR or SSO, an existing unprivileged user can login to the standby supervisor as a root user, leading t ... |
| CVE-2023-25954 | 2023-04-13 | KYOCERA Mobile Print' v3.2.0.230119 and earlier, 'UTAX/TA MobilePrint' v3.2.0.230119 and... |
| CVE-2023-26263 | 2023-04-13 | All versions of Talend Data Catalog before 8.0-20230110 are potentially... |
| CVE-2023-26264 | 2023-04-13 | All versions of Talend Data Catalog before 8.0-20220907 are potentially... |
| CVE-2023-26398 | 2023-04-13 | ZDI-CAN-20310: Adobe Substance 3D Designer USDC File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| CVE-2023-26409 | 2023-04-13 | ZDI-CAN-20313: Adobe Substance 3D Designer USD File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| CVE-2023-26410 | 2023-04-13 | ZDI-CAN-20309: Adobe Substance 3D Designer USD File Parsing Use-After-Free Remote Code Execution Vulnerability |
| CVE-2023-26411 | 2023-04-13 | ZDI-CAN-20312: Adobe Substance 3D Designer USDC File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| CVE-2023-26412 | 2023-04-13 | ZDI-CAN-20314: Adobe Substance 3D Designer USDA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-26413 | 2023-04-13 | ZDI-CAN-20315: Adobe Substance 3D Designer USD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-26414 | 2023-04-13 | ZDI-CAN-20316: Adobe Substance 3D Designer USD File Parsing Use-After-Free Remote Code Execution Vulnerability |
| CVE-2023-26415 | 2023-04-13 | ZDI-CAN-20317: Adobe Substance 3D Designer DAE File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| CVE-2023-26416 | 2023-04-13 | ZDI-CAN-20318: Adobe Substance 3D Designer DAE File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| CVE-2023-26918 | 2023-04-13 | Diasoft File Replication Pro 7.5.0 allows attackers to escalate privileges... |
| CVE-2023-27667 | 2023-04-13 | Auto Dealer Management System v1.0 was discovered to contain a... |
| CVE-2023-27746 | 2023-04-13 | BlackVue DR750-2CH LTE v.1.012_2022.10.26 was discovered to contain a weak... |
| CVE-2023-27747 | 2023-04-13 | BlackVue DR750-2CH LTE v.1.012_2022.10.26 does not employ authentication in its... |
| CVE-2023-27748 | 2023-04-13 | BlackVue DR750-2CH LTE v.1.012_2022.10.26 does not employ authenticity check for... |
| CVE-2023-27772 | 2023-04-13 | libiec61850 v1.5.1 was discovered to contain a segmentation violation via... |
| CVE-2023-27779 | 2023-04-13 | AM Presencia v3.7.3 was discovered to contain a SQL injection... |
| CVE-2023-29084 | 2023-04-13 | Zoho ManageEngine ADManager Plus before 7181 allows for authenticated users... |
| CVE-2023-29573 | 2023-04-13 | Bento4 v1.6.0-639 was discovered to contain an out-of-memory bug in... |
| CVE-2023-29598 | 2023-04-13 | lmxcms v1.4.1 was discovered to contain a SQL injection vulnerability... |
| CVE-2023-30630 | 2023-04-13 | Dmidecode before 3.5 allows -dump-bin to overwrite a local file.... |
| CVE-2023-30635 | 2023-04-13 | TiKV 6.1.2 allows remote attackers to cause a denial of... |
| CVE-2023-30636 | 2023-04-13 | TiKV 6.1.2 allows remote attackers to cause a denial of... |
| CVE-2023-30637 | 2023-04-13 | Baidu braft 1.1.2 has a memory leak related to use... |
| CVE-2023-30638 | 2023-04-13 | Atos Unify OpenScape SBC 10 before 10R3.1.3, OpenScape Branch 10... |
| CVE-2022-45064 | 2023-04-13 | Apache Sling Engine: Include-based XSS |
| CVE-2022-44625 | 2023-04-13 | WordPress Cyklodev WP Notify Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2022-45358 | 2023-04-13 | WordPress Activello Theme <= 1.4.4 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-1326 | 2023-04-13 | local privilege escalation in apport-cli |
| CVE-2023-26756 | 2023-04-14 | The login page of Revive Adserver v5.4.1 is vulnerable to... |
| CVE-2023-26980 | 2023-04-14 | PAX Technology PAX A920 Pro PayDroid 8.1suffers from a Race... |
| CVE-2023-27890 | 2023-04-14 | The Export User plugin through 2.0 for MyBB allows XSS... |
| CVE-2023-29491 | 2023-04-14 | ncurses before 6.4 20230408, when used by a setuid application,... |
| CVE-2021-46880 | 2023-04-14 | x509/x509_verify.c in LibreSSL before 3.4.2, and OpenBSD before 7.0 errata... |
| CVE-2022-45170 | 2023-04-14 | An issue was discovered in LIVEBOX Collaboration vDesk through v018.... |
| CVE-2022-45173 | 2023-04-14 | An issue was discovered in LIVEBOX Collaboration vDesk through v018.... |
| CVE-2022-45174 | 2023-04-14 | An issue was discovered in LIVEBOX Collaboration vDesk through v018.... |
| CVE-2022-45175 | 2023-04-14 | An issue was discovered in LIVEBOX Collaboration vDesk through v018.... |
| CVE-2022-45178 | 2023-04-14 | An issue was discovered in LIVEBOX Collaboration vDesk through v018.... |
| CVE-2022-45180 | 2023-04-14 | An issue was discovered in LIVEBOX Collaboration vDesk through v018.... |
| CVE-2022-46886 | 2023-04-14 | There exists an open redirect within the response list update... |
| CVE-2022-47027 | 2023-04-14 | Timmystudios Fast Typing Keyboard v1.275.1.162 allows unauthorized apps to overwrite... |
| CVE-2023-2008 | 2023-04-14 | A flaw was found in the Linux kernel's udmabuf device... |
| CVE-2023-2034 | 2023-04-14 | Unrestricted Upload of File with Dangerous Type in froxlor/froxlor |
| CVE-2023-22949 | 2023-04-14 | An issue was discovered in TigerGraph Enterprise Free Edition 3.x.... |
| CVE-2023-25597 | 2023-04-14 | A vulnerability in the web conferencing component of Mitel MiCollab... |