Lucene search
K

20 matches found

Circl
Circl
added 2026/01/24 9:26 p.m.6 views

CVE-2026-22611

creationtimestamp| type| source ---|---|--- 2026-01-24 21:26:33+00:00| seen| https://gist.github.com/alon710/325f8e1b40ecea99be8151b391c88d88 2026-01-24 22:41:56+00:00| seen| https://gist.github.com/alon710/ae00337f1e0846f45fb2c7e9268320cf...

3.7CVSS5AI score0.00193EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 3:15 a.m.4 views

CVE-2023-22611

A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure when specific messages are sent to the server over the database server TCP port. Affected Products: EcoStruxure Geo SCADA Expert 2019 - 2021 formerly known as...

7.5CVSS6.3AI score0.00569EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:49 p.m.8 views

CVE-2022-22611

An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, iTunes 12.12.3 for Windows, watchOS 8.5, macOS Monterey 12.3. Processing a maliciously crafted image may lead to arbitrary code execution...

7.8CVSS6.6AI score0.01022EPSS
Exploits0References1
Circl
Circl
added 2025/04/03 11:36 p.m.4 views

CVE-2024-22611

creationtimestamp| type| source ---|---|--- 2025-04-03 23:36:36+00:00| seen| https://t.me/cvedetector/22034 2026-01-24 21:26:33+00:00| seen| https://gist.github.com/alon710/325f8e1b40ecea99be8151b391c88d88 2026-01-24 22:41:56+00:00| seen|...

9.8CVSS4.8AI score0.04993EPSS
Exploits1References3
NVD
NVD
added 2025/04/03 7:15 p.m.20 views

CVE-2024-22611

OpenEMR 7.0.2 is vulnerable to SQL Injection via \openemr\library\classes\Pharmacy.class.php, \controllers\CPharmacy.class.php and \openemr\controller.php...

9.8CVSS0.04993EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/04/03 12:0 a.m.22 views

CVE-2024-22611

OpenEMR 7.0.2 is vulnerable to SQL Injection via \openemr\library\classes\Pharmacy.class.php, \controllers\CPharmacy.class.php and \openemr\controller.php...

0.04993EPSS
Exploits1References1
Circl
Circl
added 2025/01/24 4:41 p.m.4 views

CVE-2025-22611

creationtimestamp| type| source ---|---|--- 2025-01-24 16:41:35+00:00| seen| https://infosec.exchange/users/cve/statuses/113884325151720224 2025-01-24 17:05:05+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/2949 2025-01-24 17:48:31+00:00| seen|...

9.9CVSS5.7AI score0.00473EPSS
Exploits1References8
Vulnrichment
Vulnrichment
added 2025/01/24 4:35 p.m.7 views

CVE-2025-22611 Coolify vulnerable to Privilege Escalation resulting in Remote Command Execution (RCE)

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to escalate his or any other team members privileges to any role, including the owner role. He's also able t...

9.9CVSS7.3AI score0.00473EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/01/24 4:35 p.m.19 views

CVE-2025-22611 Coolify vulnerable to Privilege Escalation resulting in Remote Command Execution (RCE)

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to escalate his or any other team members privileges to any role, including the owner role. He's also able t...

9.9CVSS0.00473EPSS
Exploits1References1
Circl
Circl
added 2023/01/31 8:38 p.m.7 views

CVE-2023-22611

creationtimestamp| type| source ---|---|--- 2023-01-31 20:38:29+00:00| seen| https://t.me/cibsecurity/57227 2024-09-28 11:45:58+00:00| seen| Telegram/hePxK5jCtMku5z87bY0ueLSMzLI3F8p5ErCdFhNT9bQw...

7.5CVSS7.3AI score0.00569EPSS
Exploits0References1
NVD
NVD
added 2023/01/31 5:15 p.m.16 views

CVE-2023-22611

A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure when specific messages are sent to the server over the database server TCP port. Affected Products: EcoStruxure Geo SCADA Expert 2019 - 2021 formerly known as...

7.5CVSS7.2AI score0.00569EPSS
Exploits0References1
CVE
CVE
added 2023/01/31 12:0 a.m.59 views

CVE-2023-22611

CVE-2023-22611 describes an information disclosure vulnerability (CWE-200) in EcoStruxure Geo SCADA Expert 2019–2021 (formerly ClearSCADA) where sensitive data could be exposed via specific messages sent to the database server TCP port. The CVSSv3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N) yi...

7.5CVSS7.2AI score0.00569EPSS
Exploits0References1Affected Software3
NVD
NVD
added 2022/03/18 6:15 p.m.24 views

CVE-2022-22611

An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, iTunes 12.12.3 for Windows, watchOS 8.5, macOS Monterey 12.3. Processing a maliciously crafted image may lead to arbitrary code execution...

7.8CVSS0.01022EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/03/18 5:59 p.m.22 views

CVE-2022-22611

An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, iTunes 12.12.3 for Windows, watchOS 8.5, macOS Monterey 12.3. Processing a maliciously crafted image may lead to arbitrary code execution...

8.3AI score0.01022EPSS
Exploits0References5
CVE
CVE
added 2022/03/18 5:59 p.m.160 views

CVE-2022-22611

CVE-2022-22611 is an Apple vulnerability in ImageIO where processing a maliciously crafted image triggers an out-of-bounds read, addressed by input validation improvements. Affected products include tvOS, iOS, iPadOS, watchOS, macOS Monterey, and iTunes for Windows; fixed in tvOS 15.4, iOS 15.4, ...

7.8CVSS7.8AI score0.01022EPSS
Exploits0References5Affected Software6
Circl
Circl
added 2022/03/15 3:50 p.m.5 views

CVE-2022-22611

creationtimestamp| type| source ---|---|--- 2022-03-15 15:50:00+00:00| seen| https://t.me/truesecator/2732 2022-03-18 21:22:44+00:00| seen| https://t.me/cibsecurity/39218 2026-01-24 21:26:33+00:00| seen| https://gist.github.com/alon710/325f8e1b40ecea99be8151b391c88d88 2026-01-24 22:41:56+00:00|...

7.8CVSS7.4AI score0.01022EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/03/15 12:0 a.m.61 views

Apple iTunes < 12.12.3 Multiple Vulnerabilities (uncredentialed check)

The version of Apple iTunes installed on the remote Windows host is prior to 12.12.3. It is, therefore, affected by multiple vulnerabilities as referenced in the HT213188 advisory. - Processing a maliciously crafted image may lead to arbitrary code execution CVE-2022-22611 - Processing a...

8.8CVSS7.7AI score0.03518EPSS
Exploits0References5
Apple
Apple
added 2022/03/14 12:0 a.m.77 views

About the security content of watchOS 8.5

About the security content of watchOS 8.5 This document describes the security content of watchOS 8.5. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

9.8CVSS9.3AI score0.03518EPSS
Exploits1References1Affected Software1
Kaspersky
Kaspersky
added 2022/03/08 12:0 a.m.68 views

KLA12486 Multiple vulnerabilities in Apple iTunes

Multiple vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A code execution vulnerability in ImageIO can be exploited via special crafted image to...

8.8CVSS8.8AI score0.03518EPSS
Exploits0References3
Openbugbounty
Openbugbounty
added 2015/10/21 8:48 a.m.11 views

boneprice.com XSS vulnerability

Vulnerable URL: http://www.boneprice.com/category.html?q=%22%3E%3Csvg/onload=alert%28/XSSPOSED/%29%3E=%22%3E%3Csvg/onload=alert%28/XSSPOSED/%29%3E=%22%3E%3Csvg/onload=alert%28/XSSPOSED/%29%3E=list Details: Description| Value ---|--- Patched:| Yes, at 30.01.2016 Latest check for patch:| 30.01.2016...

6.3AI score
Exploits0
Rows per page
Query Builder