CVE List - 2023 / September
Showing 801 - 900 of 2148 CVEs for September 2023 (Page 9 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-35683 | 2023-09-11 | In bindSelection of DatabaseUtils.java, there is a possible way to... |
| CVE-2023-35684 | 2023-09-11 | In avdt_msg_asmbl of avdt_msg.cc, there is a possible out of... |
| CVE-2023-35687 | 2023-09-11 | In MtpPropertyValue of MtpProperty.h, there is a possible memory corruption... |
| CVE-2022-1415 | 2023-09-11 | Drools: unsafe data deserialization in streamutils |
| CVE-2023-41879 | 2023-09-11 | Magento LTS's guest order "protect code" can be brute-forced too easily |
| CVE-2023-4898 | 2023-09-11 | Authentication Bypass by Primary Weakness in mintplex-labs/anything-llm |
| CVE-2023-4899 | 2023-09-11 | SQL Injection in mintplex-labs/anything-llm |
| CVE-2023-40440 | 2023-09-11 | This issue was addressed with improved state management of S/MIME... |
| CVE-2023-41990 | 2023-09-11 | The issue was addressed with improved handling of caches. This... |
| CVE-2023-40442 | 2023-09-11 | A privacy issue was addressed with improved private data redaction... |
| CVE-2022-47637 | 2023-09-12 | The installer in XAMPP through 8.1.12 allows local users to... |
| CVE-2023-27169 | 2023-09-12 | Xpand IT Write-back manager v2.3.1 uses a hardcoded salt in... |
| CVE-2023-39073 | 2023-09-12 | An issue in SNMP Web Pro v.1.1 allows a remote... |
| CVE-2023-39150 | 2023-09-12 | ConEmu before commit 230724 does not sanitize title responses correctly... |
| CVE-2023-39637 | 2023-09-12 | D-Link DIR-816 A2 1.10 B05 was discovered to contain a... |
| CVE-2023-40218 | 2023-09-12 | An issue was discovered in the NPU kernel driver in... |
| CVE-2023-40784 | 2023-09-12 | DedeCMS 5.7.102 has a File Upload vulnerability via uploads/dede/module_make.php. |
| CVE-2023-40834 | 2023-09-12 | OpenCart CMS v4.0.2.2 was discovered to lack a protective mechanism... |
| CVE-2023-41013 | 2023-09-12 | Cross Site Scripting (XSS) in Webmail Calendar in IceWarp 10.3.1... |
| CVE-2023-41423 | 2023-09-12 | Cross Site Scripting vulnerability in WP Githuber MD plugin v.1.16.2... |
| CVE-2023-25519 | 2023-09-12 | NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit... |
| CVE-2023-37489 | 2023-09-12 | Information Disclosure vulnerability in SAP BusinessObjects Business Intelligence Platform (Version Management System) |
| CVE-2023-40308 | 2023-09-12 | Memory Corruption vulnerability in SAP CommonCryptoLib |
| CVE-2023-32005 | 2023-09-12 | A vulnerability has been identified in Node.js version 20, affecting... |
| CVE-2023-32558 | 2023-09-12 | The use of the deprecated API `process.binding()` can bypass the... |
| CVE-2023-4893 | 2023-09-12 | The Crayon Syntax Highlighter plugin for WordPress is vulnerable to... |
| CVE-2023-4890 | 2023-09-12 | The JQuery Accordion Menu Widget for WordPress plugin for WordPress... |
| CVE-2023-4840 | 2023-09-12 | The MapPress Maps for WordPress plugin for WordPress is vulnerable... |
| CVE-2023-4887 | 2023-09-12 | The Google Maps Plugin by Intergeo for WordPress plugin for... |
| CVE-2023-42472 | 2023-09-12 | Insufficient File type validation in SAP BusinessObjects Business Intelligence Platform (Web Intelligence HTML interface) |
| CVE-2023-41369 | 2023-09-12 | External Entity Loop vulnerability in SAP S/4HANA (Create Single Payment application) |
| CVE-2023-41368 | 2023-09-12 | Insecure Direct Object Reference (IDOR) vulnerability in S4 HANA (Manage checkbook apps) |
| CVE-2023-41367 | 2023-09-12 | Missing Authentication check in SAP NetWeaver (Guided Procedures) |
| CVE-2023-40625 | 2023-09-12 | Missing Authorization check in SAP Manage Purchase Contracts App |
| CVE-2023-40624 | 2023-09-12 | Code Injection vulnerability in SAP NetWeaver AS ABAP (applications based on Unified Rendering) |
| CVE-2023-40623 | 2023-09-12 | Arbitrary File Delete via Directory Junction in SAP BusinessObjects Suite(installer) |
| CVE-2023-40622 | 2023-09-12 | Information Disclosure vulnerability in SAP BusinessObjects Business Intelligence Platform (Promotion Management) |
| CVE-2023-40621 | 2023-09-12 | Code Injection vulnerability in SAP PowerDesigner Client |
| CVE-2023-40309 | 2023-09-12 | Missing Authorization check in SAP CommonCryptoLib |
| CVE-2023-26142 | 2023-09-12 | All versions of the package crow are vulnerable to HTTP... |
| CVE-2023-3039 | 2023-09-12 | SD ROM Utility, versions prior to 1.0.2.0 contain an Improper... |
| CVE-2022-4896 | 2023-09-12 | Cyber Control, in its 1.650 version, is affected by a... |
| CVE-2022-48474 | 2023-09-12 | Control de Ciber, in its 1.650 version, is affected by... |
| CVE-2022-48475 | 2023-09-12 | Buffer Overflow vulnerability in Control de Ciber version 1.650, in... |
| CVE-2022-24093 | 2023-09-12 | Adobe Commerce post-auth improper input validation leads to remote code execution |
| CVE-2023-37881 | 2023-09-12 | Weak Access Control between Domains in Wing FTP Server <= 7.2.0 |
| CVE-2023-37879 | 2023-09-12 | Exposed Session Variable in Wing FTP Server <= 7.2.0 |
| CVE-2023-37878 | 2023-09-12 | Insecure Default Permissions in Wing FTP Server <= 7.2.0 |
| CVE-2023-37875 | 2023-09-12 | Cross-Site Scripting Vulnerability in Wing FTP Server <= 7.2.0 |
| CVE-2023-4759 | 2023-09-12 | Improper handling of case insensitive filesystems in Eclipse JGit allows arbitrary file write |
| CVE-2023-28831 | 2023-09-12 | The OPC UA implementations (ANSI C and C++) in affected... |
| CVE-2023-38070 | 2023-09-12 | A vulnerability has been identified in JT2Go (All versions <... |
| CVE-2023-38071 | 2023-09-12 | A vulnerability has been identified in JT2Go (All versions <... |
| CVE-2023-38072 | 2023-09-12 | A vulnerability has been identified in JT2Go (All versions <... |
| CVE-2023-38073 | 2023-09-12 | A vulnerability has been identified in JT2Go (All versions <... |
| CVE-2023-38074 | 2023-09-12 | A vulnerability has been identified in JT2Go (All versions <... |
| CVE-2023-38075 | 2023-09-12 | A vulnerability has been identified in JT2Go (All versions <... |
| CVE-2023-38076 | 2023-09-12 | A vulnerability has been identified in JT2Go (All versions <... |
| CVE-2023-40724 | 2023-09-12 | A vulnerability has been identified in QMS Automotive (All versions... |
| CVE-2023-40725 | 2023-09-12 | A vulnerability has been identified in QMS Automotive (All versions... |
| CVE-2023-40726 | 2023-09-12 | A vulnerability has been identified in QMS Automotive (All versions... |
| CVE-2023-40727 | 2023-09-12 | A vulnerability has been identified in QMS Automotive (All versions... |
| CVE-2023-40728 | 2023-09-12 | A vulnerability has been identified in QMS Automotive (All versions... |
| CVE-2023-40729 | 2023-09-12 | A vulnerability has been identified in QMS Automotive (All versions... |
| CVE-2023-40730 | 2023-09-12 | A vulnerability has been identified in QMS Automotive (All versions... |
| CVE-2023-40731 | 2023-09-12 | A vulnerability has been identified in QMS Automotive (All versions... |
| CVE-2023-40732 | 2023-09-12 | A vulnerability has been identified in QMS Automotive (All versions... |
| CVE-2023-41032 | 2023-09-12 | A vulnerability has been identified in Parasolid V34.1 (All versions... |
| CVE-2023-41033 | 2023-09-12 | A vulnerability has been identified in Parasolid V35.0 (All versions... |
| CVE-2023-41846 | 2023-09-12 | A vulnerability has been identified in Tecnomatix Plant Simulation V2201... |
| CVE-2023-40611 | 2023-09-12 | Apache Airflow Dag Runs Broken Access Control Vulnerability |
| CVE-2023-40712 | 2023-09-12 | Apache Airflow: Secrets can be unmasked in the "Rendered Template" |
| CVE-2023-2071 | 2023-09-12 | FactoryTalk View Machine Edition Vulnerable to Remote Code Execution |
| CVE-2023-4913 | 2023-09-12 | Cross-site Scripting (XSS) - Reflected in cecilapp/cecil |
| CVE-2023-4914 | 2023-09-12 | Relative Path Traversal in cecilapp/cecil |
| CVE-2023-4863 | 2023-09-12 | Heap buffer overflow in libwebp in Google Chrome prior to... |
| CVE-2023-0119 | 2023-09-12 | Foreman: stored cross-site scripting in host tab |
| CVE-2023-34469 | 2023-09-12 | Cold Rest Vulnerabiltiy |
| CVE-2023-34470 | 2023-09-12 | Improper access control |
| CVE-2023-29463 | 2023-09-12 | Pavilion8 Security Misconfiguration Vulnerability |
| CVE-2023-35355 | 2023-09-12 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability |
| CVE-2023-38162 | 2023-09-12 | DHCP Server Service Denial of Service Vulnerability |
| CVE-2023-38161 | 2023-09-12 | Windows GDI Elevation of Privilege Vulnerability |
| CVE-2023-38156 | 2023-09-12 | Azure HDInsight Apache Ambari JDBC Injection Elevation of Privilege Vulnerability |
| CVE-2023-38152 | 2023-09-12 | DHCP Server Service Information Disclosure Vulnerability |
| CVE-2023-38150 | 2023-09-12 | Windows Kernel Elevation of Privilege Vulnerability |
| CVE-2023-38149 | 2023-09-12 | Windows TCP/IP Denial of Service Vulnerability |
| CVE-2023-38148 | 2023-09-12 | Internet Connection Sharing (ICS) Remote Code Execution Vulnerability |
| CVE-2023-38147 | 2023-09-12 | Windows Miracast Wireless Display Remote Code Execution Vulnerability |
| CVE-2023-38146 | 2023-09-12 | Windows Themes Remote Code Execution Vulnerability |
| CVE-2023-38144 | 2023-09-12 | Windows Common Log File System Driver Elevation of Privilege Vulnerability |
| CVE-2023-38143 | 2023-09-12 | Windows Common Log File System Driver Elevation of Privilege Vulnerability |
| CVE-2023-38142 | 2023-09-12 | Windows Kernel Elevation of Privilege Vulnerability |
| CVE-2023-38141 | 2023-09-12 | Windows Kernel Elevation of Privilege Vulnerability |
| CVE-2023-38140 | 2023-09-12 | Windows Kernel Information Disclosure Vulnerability |
| CVE-2023-38139 | 2023-09-12 | Windows Kernel Elevation of Privilege Vulnerability |
| CVE-2023-36805 | 2023-09-12 | Windows MSHTML Platform Security Feature Bypass Vulnerability |
| CVE-2023-36804 | 2023-09-12 | Windows GDI Elevation of Privilege Vulnerability |
| CVE-2023-36803 | 2023-09-12 | Windows Kernel Information Disclosure Vulnerability |
| CVE-2023-36802 | 2023-09-12 | Microsoft Streaming Service Proxy Elevation of Privilege Vulnerability |