CVE Vulnerabilities
CVE vulnerability database enriched with CISA KEV and NVD data
| CVE ID | CVSS | Severity | KEV | Sightings |
|---|---|---|---|---|
| CVE-2021-44018 A vulnerability has been identified in JT2Go (All versions < V13.2.0.7), Solid Edge SE2021 (All versions < SE2021MP9), Solid Edge SE2022 (All versions < SE2022MP1), Teamcenter Visualization V13.1 (All... | 7.8 | HIGH | — | 0 |
| CVE-2021-44911 XE before 1.11.6 is vulnerable to Unrestricted file upload via modules/menu/menu.admin.controller.php. When uploading the Mouse over button and When selected button, there is no restriction on the fil... | 5.4 | MEDIUM | — | 0 |
| CVE-2022-23317 CobaltStrike <=4.5 HTTP(S) listener does not determine whether the request URL begins with "/", and attackers can obtain relevant information by specifying the URL. | 7.5 | HIGH | — | 0 |
| CVE-2021-44912 In XE 1.116, when uploading the Normal button, there is no restriction on the file suffix, which leads to any file uploading to the files directory. Since .htaccess only restricts the PHP type, upload... | 5.4 | MEDIUM | — | 0 |
| CVE-2021-45106 A vulnerability has been identified in SICAM TOOLBOX II (All versions). Affected applications use a circumventable access control within a database service. This could allow an attacker to access the ... | 6.5 | MEDIUM | — | 0 |
| CVE-2021-46151 A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains an out of bounds write past the end of an allocated... | 7.8 | HIGH | — | 0 |
| CVE-2021-46152 A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains a type confusion vulnerability while parsing NEU fi... | 7.8 | HIGH | — | 0 |
| CVE-2021-46153 A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains a memory corruption vulnerability while parsing NEU... | 7.8 | HIGH | — | 0 |
| CVE-2022-21988 Microsoft Office Visio Remote Code Execution Vulnerability | 7.8 | HIGH | — | 0 |
| CVE-2021-46154 A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains a stack based buffer overflow vulnerability while p... | 7.8 | HIGH | — | 0 |
| CVE-2021-46155 A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains a stack based buffer overflow vulnerability while p... | 7.8 | HIGH | — | 0 |
| CVE-2021-46156 A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains an out of bounds write past the end of an allocated... | 7.8 | HIGH | — | 0 |
| CVE-2021-46157 A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains a memory corruption vulnerability while parsing NEU... | 7.8 | HIGH | — | 0 |
| CVE-2021-46158 A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains a stack based buffer overflow vulnerability while p... | 7.8 | HIGH | — | 0 |
| CVE-2022-21989 Windows Kernel Elevation of Privilege Vulnerability | 7.8 | HIGH | — | 0 |
| CVE-2021-46159 A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains an out of bounds write past the end of an allocated... | 7.8 | HIGH | — | 0 |
| CVE-2021-46160 A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains an out of bounds write past the end of an allocated... | 7.8 | HIGH | — | 0 |
| CVE-2021-46161 A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains an out of bounds write past the end of an allocated... | 7.8 | HIGH | — | 0 |
| CVE-2022-23102 A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0). Affected products contain an open redirect vulnerability. An attacker could trick a valid authenticated user ... | 6.1 | MEDIUM | — | 0 |
| CVE-2022-23312 A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP9 Security Patch 1). The integrated web application "Online Help" in affected product contains a Cross-Site Scripting (X... | 6.1 | MEDIUM | — | 0 |
| CVE-2021-41441 A DoS attack in the web application of D-Link DIR-X1860 before v1.10WWB09_Beta allows a remote unauthenticated attacker to reboot the router via sending a specially crafted URL to an authenticated vic... | 7.4 | HIGH | — | 0 |
| CVE-2022-21844 HEVC Video Extensions Remote Code Execution Vulnerability | 7.8 | HIGH | — | 0 |
| CVE-2022-21926 HEVC Video Extensions Remote Code Execution Vulnerability | 7.8 | HIGH | — | 0 |
| CVE-2022-21927 HEVC Video Extensions Remote Code Execution Vulnerability | 7.8 | HIGH | — | 0 |
| CVE-2022-21957 Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability | 7.2 | HIGH | — | 0 |
| CVE-2022-21968 Microsoft SharePoint Server Security Feature Bypass Vulnerability | 4.3 | MEDIUM | — | 0 |
| CVE-2022-21991 Visual Studio Code Remote Development Extension Remote Code Execution Vulnerability | 8.1 | HIGH | — | 0 |
| CVE-2022-23384 YzmCMS v6.3 is affected by Cross Site Request Forgery (CSRF) in /admin.add | 8.8 | HIGH | — | 0 |
| CVE-2022-21974 Roaming Security Rights Management Services Remote Code Execution Vulnerability | 7.8 | HIGH | — | 0 |
| CVE-2022-21981 Windows Common Log File System Driver Elevation of Privilege Vulnerability | 7.8 | HIGH | — | 0 |
| CVE-2022-21984 Windows DNS Server Remote Code Execution Vulnerability | 8.8 | HIGH | — | 0 |
| CVE-2022-21985 Windows Remote Access Connection Manager Information Disclosure Vulnerability | 5.5 | MEDIUM | — | 0 |
| CVE-2022-21986 .NET Denial of Service Vulnerability | 7.5 | HIGH | — | 0 |
| CVE-2022-21987 Microsoft SharePoint Server Spoofing Vulnerability | 8.0 | HIGH | — | 0 |
| CVE-2022-21992 Windows Mobile Device Management Remote Code Execution Vulnerability | 7.8 | HIGH | — | 0 |
| CVE-2022-21993 Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability | 7.5 | HIGH | — | 0 |
| CVE-2022-21994 Windows DWM Core Library Elevation of Privilege Vulnerability | 7.8 | HIGH | — | 0 |
| CVE-2022-21995 Windows Hyper-V Remote Code Execution Vulnerability | 7.9 | HIGH | — | 0 |
| CVE-2022-21996 Win32k Elevation of Privilege Vulnerability | 7.8 | HIGH | — | 0 |
| CVE-2022-21997 Windows Print Spooler Elevation of Privilege Vulnerability | 7.1 | HIGH | — | 0 |
| CVE-2022-21998 Windows Common Log File System Driver Information Disclosure Vulnerability | 5.5 | MEDIUM | — | 0 |
| CVE-2022-22003 Microsoft Office Graphics Remote Code Execution Vulnerability | 7.8 | HIGH | — | 0 |
| CVE-2022-22004 Microsoft Office ClickToRun Remote Code Execution Vulnerability | 7.8 | HIGH | — | 0 |
| CVE-2022-22005 Microsoft SharePoint Server Remote Code Execution Vulnerability | 8.8 | HIGH | — | 0 |
| CVE-2022-22709 VP9 Video Extensions Remote Code Execution Vulnerability | 7.8 | HIGH | — | 0 |
| CVE-2022-22710 Windows Common Log File System Driver Denial of Service Vulnerability | 5.5 | MEDIUM | — | 0 |
| CVE-2022-22712 Windows Hyper-V Denial of Service Vulnerability | 5.6 | MEDIUM | — | 0 |
| CVE-2021-45331 An Authentication Bypass vulnerability exists in Gitea before 1.5.0, which could let a malicious user gain privileges. If captured, the TOTP code for the 2FA can be submitted correctly more than once. | 9.8 | CRITICAL | — | 0 |
| CVE-2022-22715 Named Pipe File System Elevation of Privilege Vulnerability | 7.8 | HIGH | — | 0 |
| CVE-2022-22716 Microsoft Excel Information Disclosure Vulnerability | 5.5 | MEDIUM | — | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.