Lucene search
K
NvdMost viewed

364113 matches found

NVD
NVD
added 2022/08/16 9:15 p.m.47 views

CVE-2020-10728

A flaw was found in automationbroker/apb container in versions up to and including 2.0.4-1. This container grants all users sudoer permissions allowing an unauthorized user with access to the running container the ability to escalate their own privileges. The highest threat from this vulnerabilit...

7.8CVSS0.00209EPSS
Exploits0References1
NVD
NVD
added 2022/08/12 9:15 p.m.47 views

CVE-2022-35943

Shield is an authentication and authorization framework for CodeIgniter 4. This vulnerability may allow SameSite Attackers to bypass the CodeIgniter4 CSRF protection mechanism with CodeIgniter Shield. For this attack to succeed, the attacker must have direct or indirect, e.g., XSS control over a...

8.8CVSS0.00474EPSS
Exploits1References4
NVD
NVD
added 2022/08/10 8:15 p.m.47 views

CVE-2022-31675

VMware vRealize Operations contains an authentication bypass vulnerability. An unauthenticated malicious actor with network access may be able to create a user with administrative privileges...

7.5CVSS0.00718EPSS
Exploits1References1
NVD
NVD
added 2022/08/09 8:15 p.m.47 views

CVE-2022-33640

System Center Operations Manager: Open Management Infrastructure OMI Elevation of Privilege Vulnerability...

7.8CVSS0.00551EPSS
Exploits0References1
NVD
NVD
added 2022/08/05 4:15 p.m.47 views

CVE-2021-46681

A XSS vulnerability exist in Pandora FMS version 756 and below, that allows an attacker to perform javascript code executions via module massive operation name field...

6.1CVSS0.00334EPSS
Exploits0References2
NVD
NVD
added 2022/08/01 10:15 p.m.47 views

CVE-2022-35922

Rust-WebSocket is a WebSocket RFC6455 library written in Rust. In versions prior to 0.26.5 untrusted websocket connections can cause an out-of-memory OOM process abort in a client or a server. The root cause of the issue is during dataframe parsing. Affected versions would allocate a buffer based...

7.5CVSS0.01483EPSS
Exploits0References4
NVD
NVD
added 2022/08/01 9:15 p.m.47 views

CVE-2022-31192

DSpace open source software is a repository application which provides durable access to digital resources. dspace-jspui is a UI component for DSpace. The JSPUI "Request a Copy" feature does not properly escape values submitted and stored from the "Request a Copy" form. This means that item...

7.1CVSS0.00611EPSS
Exploits0References3
NVD
NVD
added 2022/08/01 5:15 p.m.47 views

CVE-2022-31109

laminas-diactoros is a PHP package containing implementations of the PSR-7 HTTP message interfaces and PSR-17 HTTP message factory interfaces. Applications that use Diactoros, and are either not behind a proxy, or can be accessed via untrusted proxies, can potentially have the host, protocol,...

7.2CVSS0.00615EPSS
Exploits0References3
NVD
NVD
added 2022/07/26 10:15 p.m.47 views

CVE-2022-30273

The Motorola MDLC protocol through 2022-05-02 mishandles message integrity. It supports three security modes: Plain, Legacy Encryption, and New Encryption. In Legacy Encryption mode, traffic is encrypted via the Tiny Encryption Algorithm TEA block-cipher in ECB mode. This mode of operation does n...

9.8CVSS0.00325EPSS
Exploits0References3
NVD
NVD
added 2022/07/22 4:15 a.m.47 views

CVE-2022-31172

OpenZeppelin Contracts is a library for smart contract development. Versions 4.1.0 until 4.7.1 are vulnerable to the SignatureChecker reverting. SignatureChecker.isValidSignatureNow is not expected to revert. However, an incorrect assumption about Solidity 0.8's abi.decode allows some cases to...

7.5CVSS0.00413EPSS
Exploits0References2
NVD
NVD
added 2022/07/22 4:15 a.m.47 views

CVE-2022-31162

Slack Morphism is an async client library for Rust. Prior to 0.41.0, it was possible for Slack OAuth client information to leak in application debug logs. Stricter and more secure debug formatting was introduced in v0.41.0 for OAuth secret types to reduce the possibility of printing sensitive...

7.5CVSS0.00739EPSS
Exploits0References2
NVD
NVD
added 2022/06/30 10:15 p.m.47 views

CVE-2022-31115

opensearch-ruby is a community-driven, open source fork of elasticsearch-ruby. In versions prior to 2.0.1 the ruby YAML.load function was used instead of YAML.safeload. As a result opensearch-ruby 2.0.0 and prior can lead to unsafe deserialization using YAML.load if the response is of type YAML. ...

8.8CVSS0.01501EPSS
Exploits1References3
NVD
NVD
added 2022/06/24 3:15 p.m.47 views

CVE-2022-1746

The authentication mechanism used by poll workers to administer voting using the tested version of Dominion Voting Systems ImageCast X can expose cryptographic secrets used to protect election information. An attacker could leverage this vulnerability to gain access to sensitive information and...

7.6CVSS0.00287EPSS
Exploits0References1
NVD
NVD
added 2022/06/23 5:15 p.m.47 views

CVE-2022-34298

The NT auth module in OpenAM before 14.6.6 allows a "replace Samba username attack."...

5.3CVSS0.03074EPSS
Exploits1References3
NVD
NVD
added 2022/06/21 1:15 p.m.47 views

CVE-2022-33139

A vulnerability has been identified in Cerberus DMS All versions, Desigo CC All versions, Desigo CC Compact All versions, SIMATIC WinCC OA V3.16 All versions in default configuration, SIMATIC WinCC OA V3.17 All versions in non-default configuration, SIMATIC WinCC OA V3.18 All versions in...

9.8CVSS0.01174EPSS
Exploits0References2
NVD
NVD
added 2022/06/14 10:15 a.m.47 views

CVE-2022-22057

Use after free in graphics fence due to a race condition while closing fence file descriptor and destroy graphics timeline simultaneously in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...

8.4CVSS0.00401EPSS
Exploits1References2
NVD
NVD
added 2022/06/12 12:15 p.m.47 views

CVE-2021-41750

A cross-site scripting XSS vulnerability in the SEOmatic plugin 3.4.10 for Craft CMS 3 allows remote attackers to inject arbitrary web script via a GET to /index.php?action=seomatic/file/seo-file-link with url parameter containing the base64 encoded URL of a malicious web page / file and fileName...

6.1CVSS0.01029EPSS
Exploits0References3
NVD
NVD
added 2022/04/26 4:15 p.m.47 views

CVE-2022-24881

Ballcat Codegen provides the function of online editing code to generate templates. In versions prior to 1.0.0.beta.2, attackers can implement remote code execution through malicious code injection of the template engine. This happens because Velocity and freemarker templates are introduced but...

9.8CVSS0.02909EPSS
Exploits1References3
NVD
NVD
added 2022/04/25 4:16 p.m.47 views

CVE-2022-0363

The myCred WordPress plugin before 2.4.3.1 does not have any authorisation and CSRF checks in the mycred-tools-import-export AJAX action, allowing any authenticated users, such as subscribers, to call it and import mycred setup, thus creating badges, managing points or creating arbitrary posts...

4.3CVSS0.00333EPSS
Exploits1References1
NVD
NVD
added 2022/04/04 4:15 p.m.47 views

CVE-2022-0901

The Ad Inserter Free and Pro WordPress plugins before 2.7.12 do not sanitise and escape the REQUESTURI before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting in browsers which do not encode characters...

6.1CVSS0.03541EPSS
Exploits4References2
NVD
NVD
added 2022/03/22 9:15 p.m.47 views

CVE-2022-26187

TOTOLINK N600R V4.3.0cu.7570B20200620 was discovered to contain a command injection vulnerability via the pingCheck function...

9.8CVSS0.19579EPSS
Exploits1References1
NVD
NVD
added 2022/03/17 12:15 p.m.47 views

CVE-2022-25760

All versions of package accesslog are vulnerable to Arbitrary Code Injection due to the usage of the Function constructor without input sanitization. If attacker-controlled user input is given to the format option of the package's exported constructor function, it is possible for an attacker to...

10CVSS0.01614EPSS
Exploits1References2
NVD
NVD
added 2022/03/16 3:15 p.m.47 views

CVE-2021-39734

In sendMessage of OneToOneChatImpl.java ? TBD, there is a possible way to send an RCS message without permissions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS0.00098EPSS
Exploits0References1
NVD
NVD
added 2022/03/16 3:15 p.m.47 views

CVE-2021-0957

In NotificationStackScrollLayout of NotificationStackScrollLayout.java, there is a possible way to bypass Factory Reset Protections. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS0.00126EPSS
Exploits0References1
NVD
NVD
added 2022/03/10 5:47 p.m.47 views

CVE-2022-26521

Abantecart through 1.3.2 allows remote authenticated administrators to execute arbitrary code by uploading an executable file, because the CatalogMedia ManagerImages settings can be changed by an administrator e.g., by configuring .php to be a valid image file type...

7.2CVSS0.09615EPSS
Exploits4References2
NVD
NVD
added 2022/03/01 11:15 p.m.47 views

CVE-2022-24720

imageprocessing is an image processing wrapper for libvips and ImageMagick/GraphicsMagick. Prior to version 1.12.2, using the apply method from imageprocessing to apply a series of operations that are coming from unsanitized user input allows the attacker to execute shell commands. This method is...

10CVSS0.02595EPSS
Exploits1References3
NVD
NVD
added 2022/02/24 3:15 p.m.47 views

CVE-2022-25080

TOTOLink A830R V5.9c.4729B20191112 was discovered to contain a command injection vulnerability in the "Main" function. This vulnerability allows attackers to execute arbitrary commands via the QUERYSTRING parameter...

9.8CVSS0.0322EPSS
Exploits1References1
NVD
NVD
added 2022/02/23 9:15 a.m.47 views

CVE-2022-0736

Insecure Temporary File in GitHub repository mlflow/mlflow prior to 1.23.1...

8.2CVSS0.01551EPSS
Exploits1References2
NVD
NVD
added 2022/02/20 7:15 p.m.47 views

CVE-2022-23054

Openmct versions 1.3.0 to 1.7.7 are vulnerable against stored XSS via the “Summary Widget” element, that allows the injection of malicious JavaScript into the ‘URL’ field. This issue affects: nasa openmct 1.7.7 version and prior versions; 1.3.0 version and later versions...

6.1CVSS0.00606EPSS
Exploits0References1
NVD
NVD
added 2022/02/08 11:15 p.m.47 views

CVE-2021-45329

Cross Site Scripting XSS vulnerability exists in Gitea before 1.5.1 via the repository settings inside the external wiki/issue tracker URL field...

6.1CVSS0.00777EPSS
Exploits0References2
NVD
NVD
added 2022/02/04 11:15 p.m.47 views

CVE-2022-23589

Tensorflow is an Open Source Machine Learning Framework. Under certain scenarios, Grappler component of TensorFlow can trigger a null pointer dereference. There are 2 places where this can occur, for the same malicious alteration of a SavedModel file fixing the first one would trigger the same...

6.5CVSS0.01097EPSS
Exploits1References5
NVD
NVD
added 2022/01/03 10:15 p.m.47 views

CVE-2021-39975

Hilinksvc has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause denial of service attacks...

7.5CVSS0.00655EPSS
Exploits0References1
NVD
NVD
added 2021/11/30 7:15 p.m.47 views

CVE-2021-22095

In Spring AMQP versions 2.2.0 - 2.2.19 and 2.3.0 - 2.3.11, the Spring AMQP Message object, in its toString method, will create a new String object from the message body, regardless of its size. This can cause an OOM Error with a large message...

6.5CVSS0.01019EPSS
Exploits0References1
NVD
NVD
added 2021/11/23 12:15 a.m.47 views

CVE-2021-40828

Connections initialized by the AWS IoT Device SDK v2 for Java versions prior to 1.3.3, Python versions prior to 1.5.18, C++ versions prior to 1.12.7 and Node.js versions prior to 1.5.1 did not verify server certificate hostname during TLS handshake when overriding Certificate Authorities CA in...

8.8CVSS0.00398EPSS
Exploits0References5
NVD
NVD
added 2021/11/19 7:15 p.m.47 views

CVE-2021-22969

Concrete CMS formerly concrete5 versions below 8.5.7 has a SSRF mitigation bypass using DNS Rebind attack giving an attacker the ability to fetch cloud IAAS ex AWS IAM keys.To fix this Concrete CMS no longer allows downloads from the local network and specifies the validated IP when downloading...

5.3CVSS0.00831EPSS
Exploits0References2
NVD
NVD
added 2021/11/08 4:15 a.m.47 views

CVE-2021-31602

An issue was discovered in Hitachi Vantara Pentaho through 9.1 and Pentaho Business Intelligence Server through 7.x. The Security Model has different layers of Access Control. One of these layers is the applicationContext security, which is defined in the applicationContext-spring-security.xml...

7.5CVSS0.51653EPSS
Exploits5References2
NVD
NVD
added 2021/11/05 11:15 p.m.47 views

CVE-2021-41216

TensorFlow is an open source platform for machine learning. In affected versions the shape inference function for Transpose is vulnerable to a heap buffer overflow. This occurs whenever perm contains negative elements. The shape inference function does not validate that the indices in perm are al...

7.8CVSS0.00156EPSS
Exploits0References2
NVD
NVD
added 2021/11/05 1:15 p.m.47 views

CVE-2021-42664

A Stored Cross Site Scripting XSS Vulneraibiilty exists in Sourcecodester Engineers Online Portal in PHP via the 1 Quiz title and 2 quiz description parameters to addquiz.php. An attacker can leverage this vulnerability in order to run javascript commands on the web server surfers behalf, which c...

5.4CVSS0.01647EPSS
Exploits6References4
NVD
NVD
added 2021/11/04 8:15 p.m.47 views

CVE-2021-41249

GraphQL Playground is a GraphQL IDE for development of graphQL focused applications. All versions of graphql-playground-react older than [email protected] are vulnerable to compromised HTTP schema introspection responses or schema prop values with malicious GraphQL type names,...

7.1CVSS0.01182EPSS
Exploits0References3
NVD
NVD
added 2021/08/12 6:15 p.m.47 views

CVE-2021-36949

Microsoft Azure Active Directory Connect Authentication Bypass Vulnerability...

7.1CVSS0.01204EPSS
Exploits1References1
NVD
NVD
added 2021/08/02 5:15 p.m.47 views

CVE-2021-22388

There is an Integer Overflow Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed...

9.8CVSS0.00787EPSS
Exploits0References1
NVD
NVD
added 2021/07/21 3:15 p.m.47 views

CVE-2021-22707

A CWE-798: Use of Hard-coded Credentials vulnerability exists in EVlink City EVC1S22P4 / EVC1S7P4 all versions prior to R8 V3.4.0.1, EVlink Parking EVW2 / EVF2 / EV.2 all versions prior to R8 V3.4.0.1, and EVlink Smart Wallbox EVB1A all versions prior to R8 V3.4.0.1 that could allow an attacker t...

10CVSS0.64612EPSS
Exploits2References1
NVD
NVD
added 2021/07/02 7:15 p.m.47 views

CVE-2021-32738

js-stellar-sdk is a Javascript library for communicating with a Stellar Horizon server. The Utils.readChallengeTx function used in SEP-10 Stellar Web Authentication states in its function documentation that it reads and validates the challenge transaction including verifying that the...

6.5CVSS0.00514EPSS
Exploits0References2
NVD
NVD
added 2021/06/29 3:15 p.m.47 views

CVE-2021-31513

This vulnerability allows remote attackers to execute arbitrary code on affected installations of OpenText Brava! Desktop Build 16.6.4.55. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS0.01811EPSS
Exploits0References3
NVD
NVD
added 2021/06/12 4:15 a.m.47 views

CVE-2021-32551

It was discovered that readfile in apport/hookutils.py would follow symbolic links or open FIFOs. When this function is used by the openjdk-15 package apport hooks, it could expose private data to other local users...

7.3CVSS0.00289EPSS
Exploits0References1
NVD
NVD
added 2021/06/09 12:15 p.m.47 views

CVE-2021-34369

portlets/contact/ref/refContactDetail.do in Accela Civic Platform through 20.1 allows remote attackers to obtain sensitive information via a modified contactSeqNumber value. NOTE: the vendor states "the information that is being queried is authorized for an authenticated user of that application,...

6.5CVSS0.08236EPSS
Exploits4References2
NVD
NVD
added 2021/06/09 12:15 p.m.47 views

CVE-2021-34370

Accela Civic Platform through 20.1 allows ssoAdapter/logoutAction.do successURL XSS. NOTE: the vendor states "there are configurable security flags and we are unable to reproduce them with the available information...

6.1CVSS0.09996EPSS
Exploits4References2
NVD
NVD
added 2021/06/08 6:15 p.m.47 views

CVE-2020-26138

In SilverStripe through 4.6.0-rc1, a FormField with square brackets in the field name skips validation...

5.3CVSS0.01341EPSS
Exploits1References4
NVD
NVD
added 2021/05/28 9:15 p.m.47 views

CVE-2021-29492

Envoy is a cloud-native edge/middle/service proxy. Envoy does not decode escaped slash sequences %2F and %5C in HTTP URL paths in versions 1.18.2 and before. A remote attacker may craft a path with escaped slashes, e.g. /something%2F..%2Fadmin, to bypass access control, e.g. a block on /admin. A...

8.3CVSS0.68383EPSS
Exploits0References1
NVD
NVD
added 2021/05/24 6:15 p.m.47 views

CVE-2020-26559

Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device participating in the provisioning protocol to identify the AuthValue used given the Provisioner’s public key, and the confirmation number and nonce provided by the provisioning device. This could...

8.8CVSS0.00852EPSS
Exploits0References3
Total number of security vulnerabilities5000