Vulnerabilidades CVE
Base de datos de vulnerabilidades CVE enriquecida con datos de CISA KEV y NVD
| CVE ID | CVSS | Severidad | KEV | Avistamientos |
|---|---|---|---|---|
| CVE-2022-25237 Bonita Web 2021.2 is affected by a authentication/authorization bypass vulnerability due to an overly broad exclude pattern used in the RestAPIAuthorizationFilter. By appending ;i18ntranslation or /..... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-20173 Product: AndroidVersions: Android kernelAndroid ID: A-207116951References: N/A | 9.8 | CRITICAL | β | 0 |
| CVE-2022-20167 Product: AndroidVersions: Android kernelAndroid ID: A-204956204References: N/A | 9.8 | CRITICAL | β | 0 |
| CVE-2022-20164 Product: AndroidVersions: Android kernelAndroid ID: A-204891956References: N/A | 9.8 | CRITICAL | β | 0 |
| CVE-2022-20160 Product: AndroidVersions: Android kernelAndroid ID: A-210083655References: N/A | 9.8 | CRITICAL | β | 0 |
| CVE-2022-20145 In startLegacyVpnPrivileged of Vpn.java, there is a possible way to retrieve VPN credentials due to a protocol downgrade attack. This could lead to remote escalation of privilege if a malicious Wi-Fi ... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-20140 In read_multi_rsp of gatt_sr.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege with no additional execution privileges nee... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-20130 In transportDec_OutOfBandConfig of tpdec_lib.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privilege... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-20127 In ce_t4t_data_cback of ce_t4t.cc, there is a possible out of bounds write due to a double free. This could lead to remote code execution with no additional execution privileges needed. User interacti... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-40212 An exploitable out-of-bounds write vulnerability in PotPlayer 1.7.21523 build 210729 may lead to code execution, information disclosure, and denial of service. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-32337 Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/patients/manage_patient.php?id=. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-28605 Hardcoded admin token in SoundBar apps in Linkplay SDK 1.00 allows remote attackers to gain admin privilege access in linkplay antifactory | 9.8 | CRITICAL | β | 0 |
| CVE-2022-34066 The Texercise package in PyPI v0.0.1 to v0.0.12 was discovered to contain a code execution backdoor. This vulnerability allows attackers to access sensitive user information and digital currency keys,... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-20171 Product: AndroidVersions: Android kernelAndroid ID: A-215565667References: N/A | 9.8 | CRITICAL | β | 0 |
| CVE-2022-27668 Depending on the configuration of the route permission table in file 'saprouttab', it is possible for an unauthenticated attacker to execute SAProuter administration commands in SAP NetWeaver and ABAP... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-28945 An issue in Webbank WeCube v3.2.2 allows attackers to execute a directory traversal via a crafted ZIP file. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-34065 The Rondolu-YT-Concate package in PyPI v0.1.0 was discovered to contain a code execution backdoor. This vulnerability allows attackers to access sensitive user information and digital currency keys, a... | 9.8 | CRITICAL | β | 0 |
| CVE-2021-42863 A buffer overflow in ecma_builtin_typedarray_prototype_filter() in JerryScript version fe3a5c0 allows an attacker to construct a fake object or a fake arraybuffer with unlimited size. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-42675 Kreado Kreasfero 1.5 does not properly sanitize uploaded files to the media directory. One can upload a malicious PHP file and obtain remote code execution. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-32352 Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_patient_admission. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-20170 Product: AndroidVersions: Android kernelAndroid ID: A-209421931References: N/A | 9.8 | CRITICAL | β | 0 |
| CVE-2022-32336 Fast Food Ordering System v1.0 is vulnerable to SQL Injection via /ffos/admin/menus/view_menu.php?id=. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-31311 An issue in adm.cgi of WAVLINK AERIAL X 1200M M79X3.V5030.180719 allows attackers to execute arbitrary commands via a crafted POST request. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-29659 Responsive Online Blog v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at single.php. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-34064 The Zibal package in PyPI v1.0.0 was discovered to contain a code execution backdoor. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as esc... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-31273 An issue in TopIDP3000 Topsec Operating System tos_3.3.005.665b.15_smpidp allows attackers to perform a brute-force attack via a crafted session_id cookie. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-29712 LibreNMS v22.3.0 was discovered to contain multiple command injection vulnerabilities via the service_ip, hostname, and service_param parameters. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-25651 Memory corruption in bluetooth host due to integer overflow while processing BT HFP-UNIT profile in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon V... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-29730 USR IOT 4G LTE Industrial Cellular VPN Router v1.0.36 was discovered to contain hard-coded credentials for its highest privileged account. The credentials cannot be altered through normal operation of... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-29776 Onlyoffice Document Server v6.0.0 and below and Core 6.1.0.26 and below were discovered to contain a stack overflow via the component DesktopEditor/common/File.cpp. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-29777 Onlyoffice Document Server v6.0.0 and below and Core 6.1.0.26 and below were discovered to contain a heap overflow via the component DesktopEditor/fontengine/fontconverter/FontFileBase.h. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30324 HashiCorp Nomad and Nomad Enterprise version 0.2.0 up to 1.3.0 were impacted by go-getter vulnerabilities enabling privilege escalation through the artifact stanza in submitted jobs onto the client ag... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30352 phpABook 0.9i is vulnerable to SQL Injection due to insufficient sanitization of user-supplied data in the "auth_user" parameter in index.php script. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30423 Merchandise Online Store v1.0 by oretnom23 has an arbitrary code execution (RCE) vulnerability in the user profile upload point in the system information. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30470 In Afian Filerun 20220202 Changing the "search_tika_path" variable to a custom (and previously uploaded) jar file results in remote code execution in the context of the webserver user. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30478 Ecommerce-project-with-php-and-mysqli-Fruits-Bazar 1.0 is vulnerable to SQL Injection in \search_product.php via the keyword parameters. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30481 Food-order-and-table-reservation-system- 1.0 is vulnerable to SQL Injection in categorywise-menu.php via the catid parameters. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-35104 Possible buffer overflow due to improper parsing of headers while playing the FLAC audio clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Indus... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30490 Badminton Center Management System V1.0 is vulnerable to SQL Injection via parameter 'id' in /bcms/admin/court_rentals/update_status.php. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30510 School Dormitory Management System 1.0 is vulnerable to SQL Injection via reports/daily_collection_report.php:59. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30511 School Dormitory Management System 1.0 is vulnerable to SQL Injection via accounts/view_details.php:4. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30512 School Dormitory Management System 1.0 is vulnerable to SQL Injection via accounts/payment_history.php:31. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30521 The LAN-side Web-Configuration Interface has Stack-based Buffer Overflow vulnerability in the D-Link Wi-Fi router firmware DIR-890L DIR890LA1_FW107b09.bin and previous versions. The function created a... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-29539 resi-calltrace in RESI Gemini-Net 4.2 is affected by OS Command Injection. It does not properly check the parameters sent as input before they are processed on the server. Due to the lack of validatio... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30797 Online Ordering System 1.0 by oretnom23 is vulnerable to SQL Injection via admin/vieworders.php. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-35081 Possible buffer overflow due to improper validation of SSID length received from beacon or probe response during an IBSS session in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdr... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30808 elitecms 1.0.1 is vulnerable to Arbitrary code execution via admin/manage_uploads.php. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30817 Simple Bus Ticket Booking System 1.0 is vulnerable to SQL Injection via /SimpleBusTicket/index.php. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-30341 Improper buffer size validation of DSM packet received can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snap... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-25167 Apache Flume versions 1.4.0 through 1.9.0 are vulnerable to a remote code execution (RCE) attack when a configuration uses a JMS Source with a JNDI LDAP data source URI when an attacker has control of... | 9.8 | CRITICAL | β | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.