CVE-2024-34722

In smpprocrand of smpact.cc, there is a possible authentication bypass during legacy BLE pairing due to incorrect implementation of a protocol. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

MAL-2025-34722 Malicious code in termacase (npm)

The package termacase was found to contain malicious code...

CVE-2024-34722

creationtimestamp| type| source ---|---|--- 2024-07-09 23:36:44+00:00| seen| https://t.me/cvedetector/468...

CVE-2024-34722

CVE-2024-34722 is an Android BLE legacy-pairing authentication bypass caused by an incorrect protocol implementation in smp_proc_rand of smp_act.cc. The issue enables remote elevation of privilege with no extra privileges or user interaction, as described across multiple sources (NVD, Red Hat CVE...

CVE-2022-34722

creationtimestamp| type| source ---|---|--- 2022-09-14 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=870 2023-09-21 09:16:46+00:00| seen| https://t.me/avleonovrus/102...

Wormable Flaw, 0days Lead Sept. 2022 Patch Tuesday

This months Patch Tuesday offers a little something for everyone, including security updates for a zero-day flaw in Microsoft Windows that is under active attack, and another Windows weakness experts say could be used to power a fast-spreading computer worm. Also, Apple has also quashed a pair of...

CVE-2022-34722

Windows Internet Key Exchange IKE Protocol Extensions Remote Code Execution Vulnerability...

CVE-2022-34722

Windows Internet Key Exchange IKE Protocol Extensions Remote Code Execution Vulnerability...

CVE-2022-34722 Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

...

CVE-2022-34722

CVE-2022-34722 is a Windows IKE Protocol Extensions RCE affecting systems with IPSec enabled and IKEv1 in use. An unauthenticated attacker could send a crafted IP packet to execute arbitrary code on vulnerable Windows hosts; Ikev2 is not affected. The vulnerability is classified as critical (CVSS...

Microsoft Patch Tuesday for September 2022 — Snort rules and prominent vulnerabilities

By Jon Munshaw and Asheer Malhotra. Microsoft released its monthly security update Tuesday, disclosing 64 vulnerabilities across the company’s hardware and software line, a sharp decline from the record number of issues Microsoft disclosed last month. September's security update features five...

CVE-2021-34722

CVE-2021-34722 = Cisco IOS XR Software Command Injection vulnerabilities in the CLI. An authenticated, local attacker could gain access to the device’s root shell and execute arbitrary commands with root privileges due to improper validation of CLI parameters. Multiple connected sources corrobora...

Pixel & Tonic Craft CMS Comments plugin cross-site scripting vulnerability (CNVD-2020-34722)

Pixel & Tonic Craft CMS is the U.S. Pixel & Tonic company's set of content management system CMS. Comments plugin is one of the code comment generation plugin. A cross-site scripting vulnerability exists in the Pixel & Tonic Craft CMS Comments plugin. The vulnerability stems from a lack of proper...

CVE-2025-34722

This CVE ID is rejected/not used and does not represent an active vulnerability entry.

CVE-2025-34722

...