| Page(s) : 1 ... 660 661 662 663 664 665 666 667 668 669 [670] 671 672 673 674 675 676 677 678 679 680 ... | Result(s) : 43486 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2022-01-17 | CVE-2022-23303 | cve | The implementations of SAE in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue ex... |
| 9.8 | 2022-01-17 | CVE-2022-0239 | cve | corenlp is vulnerable to Improper Restriction of XML External Entity Reference |
| 9.8 | 2022-01-17 | CVE-2021-4171 | cve | calibre-web is vulnerable to Business Logic Errors |
| 9.8 | 2022-01-15 | CVE-2021-24044 | cve | By passing invalid javascript code where await and yield were called upon non-async and non-generator getter/setter functions, Hermes would invoke generator functions and error ... |
| 9.8 | 2022-01-15 | CVE-2021-33963 | cve | China Mobile An Lianbao WF-1 v1.0.1 router web interface through /api/ZRMacClone/mac_addr_clone receives parameters by POST request, and the parameter macType has a command inje... |
| 9.8 | 2022-01-15 | CVE-2022-23178 | cve | An issue was discovered on Crestron HD-MD4X2-4K-E 1.0.0.2159 devices. When the administrative web interface of the HDMI switcher is accessed unauthenticated, user credentials ar... |
| 9.8 | 2022-01-14 | CVE-2021-39623 | cve | In doRead of SimpleDecodingSource.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege with no additi... |
| 9.8 | 2022-01-14 | CVE-2022-22055 | cve | The Le-yan dental management system contains an SQL-injection vulnerability. An unauthenticated remote attacker can inject SQL commands into the input field of the login page to... |
| 9.8 | 2022-01-14 | CVE-2021-44530 | cve | An injection vulnerability exists in a third-party library used in UniFi Network Version 6.5.53 and earlier (Log4J CVE-2021-44228) allows a malicious actor to control the applic... |
| 9.8 | 2022-01-14 | CVE-2021-38682 | cve | A stack buffer overflow vulnerability has been reported to affect QNAP device running QVR Elite, QVR Pro, QVR Guard. If exploited, this vulnerability allows attackers to execute... |
| 9.6 | 2022-01-14 | CVE-2022-20658 | cve | A vulnerability in the web-based management interface of Cisco Unified Contact Center Management Portal (Unified CCMP) and Cisco Unified Contact Center Domain Manager (Unified C... |
| 9.8 | 2022-01-14 | CVE-2021-38692 | cve | A stack buffer overflow vulnerability has been reported to affect QNAP device running QVR Elite, QVR Pro, QVR Guard. If exploited, this vulnerability allows attackers to execute... |
| 9.8 | 2022-01-14 | CVE-2021-38691 | cve | A stack buffer overflow vulnerability has been reported to affect QNAP device running QVR Elite, QVR Pro, QVR Guard. If exploited, this vulnerability allows attackers to execute... |
| 9.8 | 2022-01-14 | CVE-2021-38690 | cve | A stack buffer overflow vulnerability has been reported to affect QNAP device running QVR Elite, QVR Pro, QVR Guard. If exploited, this vulnerability allows attackers to execute... |
| 9.8 | 2022-01-14 | CVE-2021-38689 | cve | A stack buffer overflow vulnerability has been reported to affect QNAP device running QVR Elite, QVR Pro, QVR Guard. If exploited, this vulnerability allows attackers to execute... |
| 9.8 | 2022-01-14 | CVE-2021-33962 | cve | China Mobile An Lianbao WF-1 router v1.0.1 is affected by an OS command injection vulnerability in the web interface /api/ZRUsb/pop_usb_device component. |
| 9.8 | 2022-01-14 | CVE-2022-0224 | cve | dolibarr is vulnerable to Improper Neutralization of Special Elements used in an SQL Command |
| 9.8 | 2022-01-14 | CVE-2022-23227 | cve | NUUO NVRmini2 through 3.11 allows an unauthenticated attacker to upload an encrypted TAR archive, which can be abused to add arbitrary users because of the lack of handle_import... |
| 9.8 | 2022-01-14 | CVE-2021-45468 | cve | Imperva Web Application Firewall (WAF) before 2021-12-23 allows remote unauthenticated attackers to use "Content-Encoding: gzip" to evade WAF security controls and send maliciou... |
| 9.8 | 2022-01-14 | CVE-2022-23219 | cve | The deprecated compatibility function clnt_create in the sunrpc module of the GNU C Library (aka glibc) through 2.34 copies its hostname argument on the stack without validating... |
| Page(s) : 1 ... 660 661 662 663 664 665 666 667 668 669 [670] 671 672 673 674 675 676 677 678 679 680 ... | Result(s) : 43486 |
