CVE Vulnerabilities
CVE vulnerability database enriched with CISA KEV and NVD data
| CVE ID | CVSS | Severity | KEV | Sightings |
|---|---|---|---|---|
| CVE-2022-42182 Precisely Spectrum Spatial Analyst 20.01 is vulnerable to Directory Traversal. | 5.3 | MEDIUM | β | 0 |
| CVE-2022-42183 Precisely Spectrum Spatial Analyst 20.01 is vulnerable to Server-Side Request Forgery (SSRF). | 9.1 | CRITICAL | β | 0 |
| CVE-2023-21411 User provided input is not sanitized in the βSettings > Access Controlβ configuration interface allowing for arbitrary code execution. | 7.2 | HIGH | β | 0 |
| CVE-2023-3462 HashiCorp's Vault and Vault Enterprise are vulnerable to user enumeration when using the LDAP auth method. An attacker may submit requests of existent and non-existent LDAP users and observe the respo... | 5.3 | MEDIUM | β | 0 |
| CVE-2023-3825 PTCβs KEPServerEX Versions 6.0 to 6.14.263 are vulnerable to being made to read a recursively defined object that leads to uncontrolled resource consumption. KEPServerEX uses OPC UA, a protocol which... | 7.5 | HIGH | β | 0 |
| CVE-2023-37496 HCL Verse is susceptible to a Stored Cross Site Scripting (XSS) vulnerability. An attacker could execute script in a victim's web browser to perform operations as the victim and/or steal the victim's... | 8.3 | HIGH | β | 0 |
| CVE-2023-37772 Online Shopping Portal Project v3.1 was discovered to contain a SQL injection vulnerability via the Email parameter at /shopping/login.php. | 8.8 | HIGH | β | 0 |
| CVE-2023-4033 OS Command Injection in GitHub repository mlflow/mlflow prior to 2.6.0. | 7.8 | HIGH | β | 0 |
| CVE-2020-10962 In PowerShell App Deployment Toolkit (aka PSAppDeployToolkit) through 3.8.0, an incorrect access control vulnerability in the default configuration may allow an authenticated user to potentially enabl... | 7.8 | HIGH | β | 0 |
| CVE-2023-49383 JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/tag/save. | 8.8 | HIGH | β | 0 |
| CVE-2023-34960 A command injection vulnerability in the wsConvertPpt component of Chamilo v1.11.* up to v1.11.18 allows attackers to execute arbitrary commands via a SOAP API call with a crafted PowerPoint name. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-36983 LavaLite CMS v 9.0.0 is vulnerable to Sensitive Data Exposure. | 7.5 | HIGH | β | 0 |
| CVE-2023-36984 LavaLite CMS v 9.0.0 is vulnerable to Sensitive Data Exposure. | 7.5 | HIGH | β | 0 |
| CVE-2023-26139 Versions of the package underscore-keypath from 0.0.11 are vulnerable to Prototype Pollution via the name argument of the setProperty() function. Exploiting this vulnerability is possible due to impro... | 7.5 | HIGH | β | 0 |
| CVE-2023-23548 Reflected XSS in business intelligence in Checkmk <2.2.0p8, <2.1.0p32, <2.0.0p38, <=1.6.0p30. | 5.4 | MEDIUM | β | 0 |
| CVE-2023-37478 pnpm is a package manager. It is possible to construct a tarball that, when installed via npm or parsed by the registry is safe, but when installed via pnpm is malicious, due to how pnpm parses tar ar... | 7.5 | HIGH | β | 0 |
| CVE-2023-34869 PHPJabbers Catering System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /index.php?controller=pjAdmin&action=pjActionForgot. | 6.1 | MEDIUM | β | 0 |
| CVE-2022-39986 A Command injection vulnerability in RaspAP 2.8.0 thru 2.8.7 allows unauthenticated attackers to execute arbitrary commands via the cfg_id parameter in /ajax/openvpn/activate_ovpncfg.php and /ajax/ope... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-39987 A Command injection vulnerability in RaspAP 2.8.0 thru 2.9.2 allows an authenticated attacker to execute arbitrary OS commands as root via the "entity" POST parameters in /ajax/networking/get_wgkey.ph... | 8.8 | HIGH | β | 0 |
| CVE-2023-31710 TP-Link Archer AX21(US)_V3_1.1.4 Build 20230219 and AX21(US)_V3.6_1.1.4 Build 20230219 are vulnerable to Buffer Overflow. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-39108 rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery (SSRF) via the path_b parameter in the doDiff Function of /classes/compareClass.php. This vulnerability allows authenticated atta... | 8.8 | HIGH | β | 0 |
| CVE-2023-39109 rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery (SSRF) via the path_a parameter in the doDiff Function of /classes/compareClass.php. This vulnerability allows authenticated atta... | 8.8 | HIGH | β | 0 |
| CVE-2023-39110 rconfig v3.9.4 was discovered to contain a Server-Side Request Forgery (SSRF) via the path parameter at /ajaxGetFileByPath.php. This vulnerability allows authenticated attackers to make arbitrary requ... | 8.8 | HIGH | β | 0 |
| CVE-2023-38357 Session tokens in RWS WorldServer 11.7.3 and earlier have a low entropy and can be enumerated, leading to unauthorized access to user sessions. | 5.3 | MEDIUM | β | 0 |
| CVE-2023-4045 Offscreen Canvas did not properly track cross-origin tainting, which could have been used to access image data from another site in violation of same-origin policy. This vulnerability affects Firefox ... | 5.3 | MEDIUM | β | 0 |
| CVE-2023-4046 In some circumstances, a stale value could have been used for a global variable in WASM JIT analysis. This resulted in incorrect compilation and a potentially exploitable crash in the content process.... | 5.3 | MEDIUM | β | 0 |
| CVE-2023-4047 A bug in popup notifications delay calculation could have made it possible for an attacker to trick a user into granting permissions. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, an... | 8.8 | HIGH | β | 0 |
| CVE-2023-4048 An out-of-bounds read could have led to an exploitable crash when parsing HTML with DOMParser in low memory situations. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR ... | 7.5 | HIGH | β | 0 |
| CVE-2023-4049 Race conditions in reference counting code were found through code inspection. These could have resulted in potentially exploitable use-after-free vulnerabilities. This vulnerability affects Firefox <... | 5.9 | MEDIUM | β | 0 |
| CVE-2023-4050 In some cases, an untrusted input stream was copied to a stack buffer without checking its size. This resulted in a potentially exploitable crash which could have led to a sandbox escape. This vulnera... | 7.5 | HIGH | β | 0 |
| CVE-2023-4051 A website could have obscured the full screen notification by using the file open dialog. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 116,... | 7.5 | HIGH | β | 0 |
| CVE-2023-4052 The Firefox updater created a directory writable by non-privileged users. When uninstalling Firefox, any files in that directory would be recursively deleted with the permissions of the uninstalling u... | 6.5 | MEDIUM | β | 0 |
| CVE-2023-36351 An issue in Viatom Health ViHealth for Android v.2.74.58 and before allows a remote attacker to execute arbitrary code via the com.viatom.baselib.mvvm.webWebViewActivity component. | 7.8 | HIGH | β | 0 |
| CVE-2023-4053 A website could have obscured the full screen notification by using a URL with a scheme handled by an external program, such as a mailto URL. This could have led to user confusion and possible spoofin... | 6.5 | MEDIUM | β | 0 |
| CVE-2023-4054 When opening appref-ms files, Firefox did not warn the user that these files may contain malicious code. *This bug only affects Firefox on Windows. Other operating systems are unaffected.* This vulne... | 5.5 | MEDIUM | β | 0 |
| CVE-2023-4055 When the number of cookies per domain was exceeded in `document.cookie`, the actual cookie jar sent to the host was no longer consistent with expected cookie jar state. This could have caused requests... | 7.5 | HIGH | β | 0 |
| CVE-2023-4056 Memory safety bugs present in Firefox 115, Firefox ESR 115.0, Firefox ESR 102.13, Thunderbird 115.0, and Thunderbird 102.13. Some of these bugs showed evidence of memory corruption and we presume that... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-3732 Out of bounds memory access in Mojo in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML... | 8.8 | HIGH | β | 0 |
| CVE-2023-4057 Memory safety bugs present in Firefox 115, Firefox ESR 115.0, and Thunderbird 115.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could ... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-4058 Memory safety bugs present in Firefox 115. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-33493 An Unrestricted Upload of File with Dangerous Type vulnerability in the Ajaxmanager File and Database explorer (ajaxmanager) module for PrestaShop through 2.3.0, allows remote attackers to upload dang... | 9.8 | CRITICAL | β | 0 |
| CVE-2023-36210 MotoCMS Version 3.4.3 Store Category Template was discovered to contain a Server-Side Template Injection (SSTI) vulnerability via the keyword parameter. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-36211 The Barebones CMS v2.0.2 is vulnerable to Stored Cross-Site Scripting (XSS) when an authenticated user interacts with certain features on the admin panel. | 5.4 | MEDIUM | β | 0 |
| CVE-2023-38559 A buffer overflow flaw was found in base/gdevdevn.c:1973 in devn_pcx_write_rle() in ghostscript. This issue may allow a local attacker to cause a denial of service via outputting a crafted PDF file fo... | 5.5 | MEDIUM | β | 0 |
| CVE-2023-38560 An integer overflow flaw was found in pcl/pl/plfont.c:418 in pl_glyph_name in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF... | 5.5 | MEDIUM | β | 0 |
| CVE-2023-34551 In certain EZVIZ products, two stack buffer overflows in netClientSetWlanCfg function of the EZVIZ SDK command server can allow an authenticated attacker present on the same local network as the camer... | 8.0 | HIGH | β | 0 |
| CVE-2023-39147 An arbitrary file upload vulnerability in Uvdesk 1.1.3 allows attackers to execute arbitrary code via uploading a crafted image file. | 7.8 | HIGH | β | 0 |
| CVE-2023-20583 A potential power side-channel vulnerability in AMD processors may allow an authenticated attacker to monitor the CPU power consumption as the data in a cache line changes over time potentially result... | 4.7 | MEDIUM | β | 0 |
| CVE-2023-3718 An authenticated command injection vulnerability exists in the AOS-CX command line interface. Successful exploitation of this vulnerability results in the ability to execute arbitrary commands on the... | 8.8 | HIGH | β | 0 |
| CVE-2022-43711 Interactive Forms (IAF) in GX Software XperienCentral versions 10.29.1 until 10.33.0 was vulnerable to cross site scripting attacks (XSS) because the CSP header uses eval() in the script-src. | 6.1 | MEDIUM | β | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.