CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

RedhatCVE•added 2025/05/22 11:21 p.m.•4 views

CVE-2022-37861

There is a remote code execution RCE vulnerability in Tenhot TWS-100 V4.0-201809201424 router device. It is necessary to know that the device account password is allowed to escape the execution system command through the network tools in the network diagnostic component...

9.8CVSS7.8AI score0.03573EPSS

Exploits1References1

NVD•added 2022/02/24 3:15 p.m.•15 views

CVE-2022-24407

In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement...

8.8CVSS0.00431EPSS

Exploits0References10

ATTACKERKB•added 2022/02/24 3:15 p.m.•3 views

CVE-2022-24407

In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement...

8.8CVSS7AI score0.00431EPSS

Exploits0References14

UbuntuCve•added 2022/02/22 6:0 p.m.•36 views

CVE-2022-24407

In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement...

8.8CVSS7.2AI score0.00431EPSS

Exploits0References3

NVD•added 2019/03/15 8:29 p.m.•20 views

CVE-2018-20106

In yast2-printer up to and including version 4.0.2 the SMB printer settings don't escape characters in passwords properly. If a password with backticks or simliar characters is supplied this allows for executing code as root. This requires tricking root to enter such a password in yast...

9.3CVSS7.1AI score0.00135EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by