CVE List - 2023 / August
Showing 101 - 200 of 2479 CVEs for August 2023 (Page 2 of 25)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2022-2416 | 2023-08-02 | In affected versions of Octopus Deploy it is possible for... |
| CVE-2023-4011 | 2023-08-02 | Allocation of Resources Without Limits or Throttling in GitLab |
| CVE-2023-38556 | 2023-08-02 | Improper input validation vulnerability in SEIKO EPSON printer Web Config... |
| CVE-2023-3401 | 2023-08-02 | Improper Control of Generation of Code ('Code Injection') in GitLab |
| CVE-2023-2022 | 2023-08-02 | Missing Authorization in GitLab |
| CVE-2023-4067 | 2023-08-02 | The Bus Ticket Booking with Seat Reservation plugin for WordPress... |
| CVE-2023-3426 | 2023-08-02 | The organization selector in Liferay Portal 7.4.3.81 through 7.4.3.85, and... |
| CVE-2023-26430 | 2023-08-02 | Attackers with access to user accounts can inject arbitrary control... |
| CVE-2023-26438 | 2023-08-02 | External service lookups for a number of protocols were vulnerable... |
| CVE-2023-26439 | 2023-08-02 | The cacheservice API could be abused to inject parameters with... |
| CVE-2023-26440 | 2023-08-02 | The cacheservice API could be abused to indirectly inject parameters... |
| CVE-2023-26441 | 2023-08-02 | Cacheservice did not correctly check if relative cache object were... |
| CVE-2023-26442 | 2023-08-02 | In case Cacheservice was configured to use a sproxyd object-storage... |
| CVE-2023-26443 | 2023-08-02 | Full-text autocomplete search allows user-provided SQL syntax to be injected... |
| CVE-2023-26445 | 2023-08-02 | Frontend themes are defined by user-controllable jslob settings and could... |
| CVE-2023-26446 | 2023-08-02 | The users clientID at "application passwords" was not sanitized or... |
| CVE-2023-26447 | 2023-08-02 | The "upsell" widget for the portal allows to specify a... |
| CVE-2023-26448 | 2023-08-02 | Custom log-in and log-out locations are used-defined as jslob but... |
| CVE-2023-26449 | 2023-08-02 | The "OX Chat" web service did not specify a media-type... |
| CVE-2023-26450 | 2023-08-02 | The "OX Count" web service did not specify a media-type... |
| CVE-2023-26451 | 2023-08-02 | Functions with insufficient randomness were used to generate authorization tokens... |
| CVE-2022-40609 | 2023-08-02 | IBM SDK, Java Technology Edition code execution |
| CVE-2023-23476 | 2023-08-02 | IBM Robotic Process Automation information disclosure |
| CVE-2023-3470 | 2023-08-02 | BIG-IP FIPS HSM password vulnerability CVE-2023-3470 |
| CVE-2023-36494 | 2023-08-02 | F5OS-A vulnerability |
| CVE-2023-36858 | 2023-08-02 | BIG-IP Edge Client for Windows and macOS vulnerability |
| CVE-2023-38138 | 2023-08-02 | BIG-IP Configuration utility vulnerability |
| CVE-2023-38418 | 2023-08-02 | BIG-IP Edge Client for macOS vulnerability |
| CVE-2023-38419 | 2023-08-02 | BIG-IP and BIG-IQ iControl SOAP vulnerability |
| CVE-2023-38423 | 2023-08-02 | BIG-IP Configuration utility vulnerability |
| CVE-2023-29409 | 2023-08-02 | Large RSA keys can cause high CPU usage in crypto/tls |
| CVE-2023-3978 | 2023-08-02 | Improper rendering of text nodes in golang.org/x/net/html |
| CVE-2023-29408 | 2023-08-02 | Excessive resource consumption in golang.org/x/image/tiff |
| CVE-2023-29407 | 2023-08-02 | Excessive CPU consumption when decoding 0-height images in golang.org/x/image/tiff |
| CVE-2023-3329 | 2023-08-02 | CVE-2023-3329 |
| CVE-2023-1437 | 2023-08-02 | CVE-2023-1437 |
| CVE-2023-1935 | 2023-08-02 | CVE-2023-1935 |
| CVE-2020-20808 | 2023-08-03 | Cross Site Scripting vulnerability in Qibosoft qibosoft v.7 and before... |
| CVE-2023-25600 | 2023-08-03 | An issue was discovered in InsydeH2O. A malicious operating system... |
| CVE-2023-26979 | 2023-08-03 | Bluetens Electrostimulation Device BluetensQ device app version 4.3.15 is vulnerable... |
| CVE-2023-28468 | 2023-08-03 | An issue was discovered in FvbServicesRuntimeDxe in Insyde InsydeH2O with... |
| CVE-2023-30297 | 2023-08-03 | An issue found in N-able Technologies N-central Server before 2023.4... |
| CVE-2023-32764 | 2023-08-03 | Fabasoft Cloud Enterprise Client 23.3.0.130 allows a user to escalate... |
| CVE-2023-33363 | 2023-08-03 | An authentication bypass vulnerability exists in Suprema BioStar 2 before... |
| CVE-2023-33364 | 2023-08-03 | An OS Command injection vulnerability exists in Suprema BioStar 2... |
| CVE-2023-33365 | 2023-08-03 | A path traversal vulnerability exists in Suprema BioStar 2 before... |
| CVE-2023-33366 | 2023-08-03 | A SQL injection vulnerability exists in Suprema BioStar 2 before... |
| CVE-2023-33368 | 2023-08-03 | Some API routes exists in Control ID IDSecure 4.7.26.0 and... |
| CVE-2023-33369 | 2023-08-03 | A path traversal vulnerability exists in Control ID IDSecure 4.7.26.0... |
| CVE-2023-33370 | 2023-08-03 | An uncaught exception vulnerability exists in Control ID IDSecure 4.7.26.0... |
| CVE-2023-33371 | 2023-08-03 | Control ID IDSecure 4.7.26.0 and prior uses a hardcoded cryptographic... |
| CVE-2023-33665 | 2023-08-03 | ai-dev aitable before v0.2.2 was discovered to contain a SQL... |
| CVE-2023-33666 | 2023-08-03 | ai-dev aioptimizedcombinations before v0.1.3 was discovered to contain a SQL... |
| CVE-2023-34196 | 2023-08-03 | In the Keyfactor EJBCA before 8.0.0, the RA web certificate... |
| CVE-2023-36082 | 2023-08-03 | An isssue in GatesAIr Flexiva FM Transmitter/Exiter Fax 150W allows... |
| CVE-2023-36131 | 2023-08-03 | PHPJabbers Availability Booking Calendar 5.0 is vulnerable to Incorrect Access... |
| CVE-2023-36132 | 2023-08-03 | PHP Jabbers Availability Booking Calendar 5.0 is vulnerable to Incorrect... |
| CVE-2023-36133 | 2023-08-03 | PHPJabbers Availability Booking Calendar 5.0 is vulnerable to User Account... |
| CVE-2023-36134 | 2023-08-03 | In PHP Jabbers Class Scheduling System 1.0, lack of verification... |
| CVE-2023-36135 | 2023-08-03 | User enumeration is found in in PHPJabbers Class Scheduling System... |
| CVE-2023-36137 | 2023-08-03 | There is a Cross Site Scripting (XSS) vulnerability in the... |
| CVE-2023-36138 | 2023-08-03 | PHPJabbers Cleaning Business Software 1.0 is vulnerable to Cross Site... |
| CVE-2023-36139 | 2023-08-03 | In PHPJabbers Cleaning Business Software 1.0, lack of verification when... |
| CVE-2023-36141 | 2023-08-03 | User enumeration is found in in PHPJabbers Cleaning Business Software... |
| CVE-2023-36158 | 2023-08-03 | Cross Site Scripting (XSS) vulnerability in sourcecodester Toll Tax Management... |
| CVE-2023-36159 | 2023-08-03 | Cross Site Scripting (XSS) vulnerability in sourcecodester Lost and Found... |
| CVE-2023-36212 | 2023-08-03 | File Upload vulnerability in Total CMS v.1.7.4 allows a remote... |
| CVE-2023-36213 | 2023-08-03 | SQL injection vulnerability in MotoCMS v.3.4.3 allows a remote attacker... |
| CVE-2023-36217 | 2023-08-03 | Cross Site Scripting vulnerability in Xoops CMS v.2.5.10 allows a... |
| CVE-2023-36255 | 2023-08-03 | An issue in Eramba Limited Eramba Enterprise and Community edition... |
| CVE-2023-36298 | 2023-08-03 | DedeCMS v5.7.109 has a File Upload vulnerability, leading to remote... |
| CVE-2023-36299 | 2023-08-03 | A File Upload vulnerability in typecho v.1.2.1 allows a remote... |
| CVE-2023-37364 | 2023-08-03 | In WS-Inc J WBEM Server 4.7.4 before 4.7.5, the CIM-XML... |
| CVE-2023-37679 | 2023-08-03 | A remote command execution (RCE) vulnerability in NextGen Mirth Connect... |
| CVE-2023-38941 | 2023-08-03 | django-sspanel v2022.2.2 was discovered to contain a remote command execution... |
| CVE-2023-38942 | 2023-08-03 | Dango-Translator v4.5.5 was discovered to contain a remote command execution... |
| CVE-2023-38947 | 2023-08-03 | An arbitrary file upload vulnerability in the /languages/install.php component of... |
| CVE-2023-38948 | 2023-08-03 | An arbitrary file download vulnerability in the /c/PluginsController.php component of... |
| CVE-2023-38949 | 2023-08-03 | An issue in a hidden API in ZKTeco BioTime v8.5.5... |
| CVE-2023-38954 | 2023-08-03 | ZKTeco BioAccess IVS v3.3.1 was discovered to contain a SQL... |
| CVE-2023-38955 | 2023-08-03 | ZKTeco BioAccess IVS v3.3.1 allows unauthenticated attackers to obtain sensitive... |
| CVE-2023-38956 | 2023-08-03 | A path traversal vulnerability in ZKTeco BioAccess IVS v3.3.1 allows... |
| CVE-2023-38958 | 2023-08-03 | An access control issue in ZKTeco BioAccess IVS v3.3.1 allows... |
| CVE-2023-38991 | 2023-08-03 | An issue in the delete function in the ActModelController class... |
| CVE-2023-39075 | 2023-08-03 | Renault Zoe EV 2021 automotive infotainment system versions 283C35202R to... |
| CVE-2023-39096 | 2023-08-03 | WebBoss.io CMS v3.7.0.1 contains a stored Cross-Site Scripting (XSS) vulnerability... |
| CVE-2023-39097 | 2023-08-03 | WebBoss.io CMS v3.7.0.1 contains a stored cross-site scripting (XSS) vulnerability. |
| CVE-2023-39121 | 2023-08-03 | emlog v2.1.9 was discovered to contain a SQL injection vulnerability... |
| CVE-2023-39144 | 2023-08-03 | Element55 KnowMore appliances version 21 and older was discovered to... |
| CVE-2023-38950 | 2023-08-03 | A path traversal vulnerability in the iclock API of ZKTeco... |
| CVE-2023-38951 | 2023-08-03 | ZKTeco BioTime 8.5.5 through 9.x before 9.0.1 (20240617.19506) allows authenticated... |
| CVE-2023-38952 | 2023-08-03 | Insecure access control in ZKTeco BioTime through 9.0.1 allows authenticated... |
| CVE-2023-4068 | 2023-08-03 | Type Confusion in V8 in Google Chrome prior to 115.0.5790.170... |
| CVE-2023-4069 | 2023-08-03 | Type Confusion in V8 in Google Chrome prior to 115.0.5790.170... |
| CVE-2023-4070 | 2023-08-03 | Type Confusion in V8 in Google Chrome prior to 115.0.5790.170... |
| CVE-2023-4071 | 2023-08-03 | Heap buffer overflow in Visuals in Google Chrome prior to... |
| CVE-2023-4072 | 2023-08-03 | Out of bounds read and write in WebGL in Google... |
| CVE-2023-4073 | 2023-08-03 | Out of bounds memory access in ANGLE in Google Chrome... |
| CVE-2023-4074 | 2023-08-03 | Use after free in Blink Task Scheduling in Google Chrome... |
| CVE-2023-4075 | 2023-08-03 | Use after free in Cast in Google Chrome prior to... |