Lucene search
K

17 matches found

Circl
Circl
added 2026/01/15 3:12 p.m.3 views

CVE-2026-22644

creationtimestamp| type| source ---|---|--- 2026-01-15 15:12:34+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115899757567671679...

7.5CVSS5.8AI score0.00478EPSS
Exploits0References1
Circl
Circl
added 2026/01/09 6:6 p.m.4 views

CVE-2025-22644

creationtimestamp| type| source ---|---|--- 2026-01-09 18:06:19+00:00| seen| Telegram/ggttxZlZstNJAeAGMjqlbTwrWMMy661VkhxBCQCCiwWZxQ...

6.5CVSS8.7AI score0.00231EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 12:41 a.m.8 views

CVE-2022-22644

A privacy issue existed in the handling of Contact cards. This was addressed with improved state management. This issue is fixed in macOS Monterey 12.3. A malicious application may be able to access information about a user's contacts...

5.5CVSS5.5AI score0.00634EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/27 3:11 p.m.5 views

CVE-2025-22644 WordPress Vayu Blocks – Gutenberg Blocks plugin <= 1.2.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeHunk Vayu Blocks – Gutenberg Blocks for WordPress & WooCommerce allows Stored XSS.This issue affects Vayu Blocks – Gutenberg Blocks for WordPress & WooCommerce: from n/a through 1.2.1...

6.5CVSS6.5AI score0.00231EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/11/06 12:0 a.m.53 views

openSUSE Security Advisory (SUSE-SU-2024:3911-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9CVSS7.6AI score0.97781EPSS
Exploits17References3
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.19 views

openSUSE: Security Advisory for SUSE Manager Server 4.2 (SUSE-SU-2023:2594-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.4CVSS7.3AI score0.01166EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/12/15 12:0 a.m.40 views

SUSE SLES15: apache2-mod_wsgi / billing-data-service / inter-server-sync / etc (SUSE-SU-2023:4737-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2023:4737-1 advisory. billing-data-service: - Version 4.3.2-1 Relax dependency to csp-billing-adapter-service inter-server-sync: - Version 0.3.1 Require at least Go 1.20 for...

9.4CVSS6.8AI score0.00452EPSS
Exploits0References34
Circl
Circl
added 2023/09/20 12:34 p.m.7 views

CVE-2023-22644

creationtimestamp| type| source ---|---|--- 2023-09-20 12:34:59+00:00| seen| https://t.me/cibsecurity/70789 2025-04-07 17:45:29+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10742...

9.4CVSS6.6AI score0.00452EPSS
Exploits0References2
NVD
NVD
added 2023/09/20 9:15 a.m.28 views

CVE-2023-22644

A user can reverse engineer the JWT token JSON Web Token used in authentication for Manager and API access, forging a valid NeuVector Token to perform malicious activity in NeuVector. This can lead to an RCE...

9.4CVSS4.5AI score0.00452EPSS
Exploits0References3
CVE
CVE
added 2023/09/20 8:12 a.m.98 views

CVE-2023-22644

CVE-2023-22644 describes a JWT authentication weakness in NeuVector where an attacker can reverse engineer the token used for Manager and API access to forge a valid NeuVector token, enabling malicious activity and potentially Remote Code Execution (RCE). Public details in the provided documents ...

9.4CVSS5.3AI score0.00452EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/20 8:12 a.m.22 views

CVE-2023-22644 JWT token compromise can allow malicious actions including Remote Code Execution (RCE)

A user can reverse engineer the JWT token JSON Web Token used in authentication for Manager and API access, forging a valid NeuVector Token to perform malicious activity in NeuVector. This can lead to an RCE...

9.4CVSS6.3AI score0.00452EPSS
Exploits0References2
OSV
OSV
added 2023/06/21 12:38 p.m.5 views

SUSE-RU-2023:2595-1 Security update for SUSE Manager Server 4.2

This update fixes the following issues: branch-network-formula: - Update to version 0.1.1680167239.23f2fec Remove unnecessary import of 'salt.ext.six' cpu-mitigations-formula: - Update to version 0.5.0: Mark all SUSE Linux Enterprise 15 SP4 and newer and openSUSE 15.4 and newer as supported...

9.4CVSS6.9AI score0.00452EPSS
Exploits0References38
SUSE CVE
SUSE CVE
added 2023/03/31 1:57 a.m.3 views

SUSE CVE-2023-22644

A user can reverse engineer the JWT token JSON Web Token used in authentication for Manager and API access, forging a valid NeuVector Token to perform malicious activity in NeuVector. This can lead to an RCE...

5.5CVSS9.4AI score0.00452EPSS
Exploits0References18
Circl
Circl
added 2022/07/28 6:12 p.m.8 views

CVE-2021-22644

creationtimestamp| type| source ---|---|--- 2022-07-28 18:12:25+00:00| seen| https://t.me/cibsecurity/47198 2025-04-17 15:57:52+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12266...

9.8CVSS8.8AI score0.00657EPSS
Exploits0References2
CVE
CVE
added 2022/07/28 2:19 p.m.70 views

CVE-2021-22644

CVE-2021-22644 is part of a set of vulnerabilities in Ovarro TBox/TWinSoft. The TWinSoft software uses a custom hardcoded user “TWinSoft” with a hardcoded key, enabling attackers to extract the hardcoded cryptographic key (CVE-2021-22644) and, with other flaws (CVE-2021-22646, CVE-2021-22648, CVE...

9.8CVSS8.7AI score0.00657EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2022/03/18 9:29 p.m.5 views

CVE-2022-22644

creationtimestamp| type| source ---|---|--- 2022-03-18 21:29:10+00:00| seen| https://t.me/cibsecurity/39255...

5.5CVSS6.2AI score0.00634EPSS
Exploits0References1
CVE
CVE
added 2022/03/18 5:59 p.m.97 views

CVE-2022-22644

CVE-2022-22644 describes a privacy issue in macOS Monterey related to how contact card data was handled. The connected documents confirm the vulnerability affects how information about a user’s contacts could be accessed by a malicious application, and Apple addressed it by implementing improved ...

5.5CVSS5.7AI score0.00634EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder