CVE List - 2023 / August
Showing 1901 - 2000 of 2479 CVEs for August 2023 (Page 20 of 25)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-37439 | 2023-08-22 | Reflected Cross Site Scripting in EdgeConnect SD-WAN Orchestrator Web Management Interface |
| CVE-2023-37440 | 2023-08-22 | Authenticated Server-Side Request Forgery (SSRF) Leading to Information Disclosure |
| CVE-2023-33850 | 2023-08-22 | IBM GSKit-Crypto information disclosure |
| CVE-2023-38734 | 2023-08-22 | IBM Robotic Process Automation privilege escalation |
| CVE-2023-38733 | 2023-08-22 | IBM Robotic Process Automation information disclosure |
| CVE-2023-40370 | 2023-08-22 | IBM Robotic Process Automation information disclosure |
| CVE-2023-4427 | 2023-08-22 | Out of bounds memory access in V8 in Google Chrome... |
| CVE-2023-4428 | 2023-08-22 | Out of bounds memory access in CSS in Google Chrome... |
| CVE-2023-4429 | 2023-08-22 | Use after free in Loader in Google Chrome prior to... |
| CVE-2023-4430 | 2023-08-22 | Use after free in Vulkan in Google Chrome prior to... |
| CVE-2023-4431 | 2023-08-22 | Out of bounds memory access in Fonts in Google Chrome... |
| CVE-2023-36317 | 2023-08-23 | Cross Site Scripting (XSS) vulnerability in sourcecodester Student Study Center... |
| CVE-2023-38831 | 2023-08-23 | RARLAB WinRAR before 6.23 allows attackers to execute arbitrary code... |
| CVE-2023-41098 | 2023-08-23 | An issue was discovered in MISP 2.4.174. In app/Controller/DashboardsController.php, a... |
| CVE-2023-41100 | 2023-08-23 | An issue was discovered in the hcaptcha (aka hCaptcha for... |
| CVE-2023-41104 | 2023-08-23 | libvmod-digest before 1.0.3, as used in Varnish Enterprise 6.0.x before... |
| CVE-2023-41105 | 2023-08-23 | An issue was discovered in Python 3.11 through 3.11.4. If... |
| CVE-2023-3495 | 2023-08-23 | Out-of-bounds Write Vulnerability in Hitachi EH-VIEW (KeypadDesigner) |
| CVE-2023-39984 | 2023-08-23 | Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability in Hitachi EH-VIEW (KeypadDesigner) |
| CVE-2023-39985 | 2023-08-23 | Out-of-bounds Write Vulnerability in Hitachi EH-VIEW (Designer) |
| CVE-2023-39986 | 2023-08-23 | Out-of-bounds Read Vulnerability in Hitachi EH-VIEW (Designer) |
| CVE-2023-4404 | 2023-08-23 | The Donation Forms by Charitable plugin for WordPress is vulnerable... |
| CVE-2023-38585 | 2023-08-23 | Improper authentication vulnerability in the CBC products allows a remote... |
| CVE-2023-40158 | 2023-08-23 | Hidden functionality vulnerability in the CBC products allows a remote... |
| CVE-2023-40144 | 2023-08-23 | OS command injection vulnerability in the CBC products allows a... |
| CVE-2023-40282 | 2023-08-23 | Improper authentication vulnerability in Rakuten WiFi Pocket all versions allows... |
| CVE-2023-4041 | 2023-08-23 | Second Stage Gecko Bootloader GBL Parser Buffer Overrun Vulnerability |
| CVE-2023-3899 | 2023-08-23 | Subscription-manager: inadequate authorization of com.redhat.rhsm1 d-bus interface allows local users to modify configuration |
| CVE-2023-4042 | 2023-08-23 | Ghostscript: incomplete fix for cve-2020-16305 |
| CVE-2023-32119 | 2023-08-23 | WordPress WPO365 | Mail Integration for Office 365 / Outlook Plugin <= 1.9.0 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-32236 | 2023-08-23 | WordPress Booking Ultra Pro Plugin <= 1.1.8 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-32496 | 2023-08-23 | WordPress StopBadBots Plugin <= 7.31 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-32497 | 2023-08-23 | WordPress Block Referer Spam Plugin <= 1.1.9.4 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-32498 | 2023-08-23 | WordPress Easy Form by AYS Plugin <= 1.2.0 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-32499 | 2023-08-23 | WordPress Radio Station Plugin <= 2.4.0.9 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-28994 | 2023-08-23 | WordPress Flatsome Theme <= 3.16.8 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-32300 | 2023-08-23 | WordPress Yoast SEO: Local Plugin <= 14.8 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-32505 | 2023-08-23 | WordPress Easy Hide Login Plugin <= 1.0.7 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-32509 | 2023-08-23 | WordPress Order Your Posts Manually Plugin <= 2.2.5 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-1409 | 2023-08-23 | Certificate validation issue in MongoDB Server running on Windows or macOS |
| CVE-2023-40273 | 2023-08-23 | Session fixation in Apache Airflow web interface |
| CVE-2023-37379 | 2023-08-23 | Apache Airflow: Exposure of sensitive connection information, DOS and SSRF on "test connection" feature |
| CVE-2023-39441 | 2023-08-23 | Apache Airflow SMTP Provider, Apache Airflow IMAP Provider, Apache Airflow: SMTP/IMAP client components allowed MITM due to missing Certificate Validation |
| CVE-2023-20168 | 2023-08-23 | A vulnerability in TACACS+ and RADIUS remote authentication for Cisco... |
| CVE-2023-20169 | 2023-08-23 | A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of... |
| CVE-2023-20200 | 2023-08-23 | A vulnerability in the Simple Network Management Protocol (SNMP) service... |
| CVE-2023-20115 | 2023-08-23 | A vulnerability in the SFTP server implementation for Cisco Nexus... |
| CVE-2023-20234 | 2023-08-23 | A vulnerability in the CLI of Cisco FXOS Software could... |
| CVE-2023-20230 | 2023-08-23 | A vulnerability in the restricted security domain implementation of Cisco... |
| CVE-2023-40612 | 2023-08-23 | Authenticated XXE Injection Via The File Editor |
| CVE-2023-40025 | 2023-08-23 | Argo CD web terminal session doesn't expire |
| CVE-2023-40176 | 2023-08-23 | SXSS in the user profile via the timezone displayer |
| CVE-2022-3742 | 2023-08-23 | A potential vulnerability was discovered in LCFC BIOS for some... |
| CVE-2022-3743 | 2023-08-23 | A potential vulnerability was discovered in LCFC BIOS for some... |
| CVE-2022-3744 | 2023-08-23 | A potential vulnerability was discovered in LCFC BIOS for some... |
| CVE-2022-3745 | 2023-08-23 | A potential vulnerability was discovered in LCFC BIOS for some... |
| CVE-2022-3746 | 2023-08-23 | A potential vulnerability was discovered in LCFC BIOS for some... |
| CVE-2023-40035 | 2023-08-23 | Craft CMS vulnerable to Remote Code Execution via validatePath bypass |
| CVE-2023-40177 | 2023-08-23 | XWiki Platform privilege escalation (PR) from account through AWM content fields |
| CVE-2023-40178 | 2023-08-23 | @node-saml/node-saml's validatePostRequestAsync does not include checkTimestampsValidityError |
| CVE-2023-40185 | 2023-08-23 | Shescape on Windows escaping may be bypassed in threaded context |
| CVE-2023-3453 | 2023-08-23 | ETIC Telecom Insecure Default Initialization of Resource |
| CVE-2023-32202 | 2023-08-23 | Walchem Intuition Improper Authentication |
| CVE-2023-38422 | 2023-08-23 | Walchem Intuition Missing Authentication for Critical Function |
| CVE-2023-41028 | 2023-08-23 | Juplink RX4-1500 Stack-based Buffer Overflow Vulnerability |
| CVE-2023-39699 | 2023-08-24 | IceWarp Mail Server v10.4.5 was discovered to contain a local... |
| CVE-2023-39700 | 2023-08-24 | IceWarp Mail Server v10.4.5 was discovered to contain a reflected... |
| CVE-2023-39801 | 2023-08-24 | A lack of exception handling in the Renault Easy Link... |
| CVE-2023-39834 | 2023-08-24 | PbootCMS below v3.2.0 was discovered to contain a command injection... |
| CVE-2023-40874 | 2023-08-24 | DedeCMS up to and including 5.7.110 was discovered to contain... |
| CVE-2023-40875 | 2023-08-24 | DedeCMS up to and including 5.7.110 was discovered to contain... |
| CVE-2023-40876 | 2023-08-24 | DedeCMS up to and including 5.7.110 was discovered to contain... |
| CVE-2023-40877 | 2023-08-24 | DedeCMS up to and including 5.7.110 was discovered to contain... |
| CVE-2023-40891 | 2023-08-24 | Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack... |
| CVE-2023-40892 | 2023-08-24 | Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack... |
| CVE-2023-40893 | 2023-08-24 | Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack... |
| CVE-2023-40894 | 2023-08-24 | Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack... |
| CVE-2023-40895 | 2023-08-24 | Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack... |
| CVE-2023-40896 | 2023-08-24 | Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack... |
| CVE-2023-40897 | 2023-08-24 | Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack... |
| CVE-2023-40898 | 2023-08-24 | Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack... |
| CVE-2023-40899 | 2023-08-24 | Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack... |
| CVE-2023-40900 | 2023-08-24 | Tenda AC8 v4 US_AC8V4.0si_V16.03.34.06_cn was discovered to contain a stack... |
| CVE-2023-40901 | 2023-08-24 | Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack... |
| CVE-2023-40902 | 2023-08-24 | Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack... |
| CVE-2023-40904 | 2023-08-24 | Tenda AC10 v4 US_AC10V4.0si_V16.03.10.13_cn was discovered to contain a stack... |
| CVE-2023-40572 | 2023-08-24 | XWiki Platform vulnerable to CSRF privilege escalation/RCE via the create action |
| CVE-2023-32559 | 2023-08-24 | A privilege escalation vulnerability exists in the experimental policy mechanism... |
| CVE-2023-40573 | 2023-08-24 | XWiki Platform's Groovy jobs check the wrong author, allowing remote code execution |
| CVE-2023-4227 | 2023-08-24 | ioLogik 4000 Series: Existence of an Unauthorized Service |
| CVE-2023-4228 | 2023-08-24 | ioLogik 4000 Series: Session Cookies Attribute Not Set Properly |
| CVE-2023-4511 | 2023-08-24 | Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark |
| CVE-2023-4512 | 2023-08-24 | Uncontrolled Recursion in Wireshark |
| CVE-2023-4513 | 2023-08-24 | Missing Release of Memory after Effective Lifetime in Wireshark |
| CVE-2023-4229 | 2023-08-24 | ioLogik 4000 Series: Session Headers Not Implemented |
| CVE-2023-3704 | 2023-08-24 | Timestamp Modification Vulnerability in CP-Plus Digital Video Recorder |
| CVE-2023-4230 | 2023-08-24 | ioLogik 4000 Series: Server Banner Information Disclosure |
| CVE-2023-3705 | 2023-08-24 | Information Disclosure Vulnerability in CP-Plus Network Video Recorder |
| CVE-2023-32510 | 2023-08-24 | WordPress Order Your Posts Manually Plugin <= 2.2.5 is vulnerable to Cross Site Scripting (XSS) |
| CVE-2023-32511 | 2023-08-24 | WordPress Booking Ultra Pro Plugin <= 1.1.8 is vulnerable to Cross Site Scripting (XSS) |