Skip to main content
CVE-2022-0731 MEDIUM POC PATCH This Month

Improper Access Control (IDOR) in GitHub repository dolibarr/dolibarr prior to 16.0. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Authentication Bypass Dolibarr Erp Crm
NVD GitHub
CVSS 3.1
6.5
EPSS
1.0%
CVE-2022-0724 MEDIUM POC PATCH This Month

Insecure Storage of Sensitive Information in GitHub repository microweber/microweber prior to 1.3. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Information Disclosure Microweber
NVD GitHub
CVSS 3.1
6.5
EPSS
1.3%
CVE-2022-0721 MEDIUM POC PATCH This Month

Insertion of Sensitive Information Into Debugging Code in GitHub repository microweber/microweber prior to 1.3. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Information Disclosure Microweber
NVD GitHub
CVSS 3.1
6.5
EPSS
1.4%
CVE-2022-0476 MEDIUM POC PATCH This Month

Denial of Service in GitHub repository radareorg/radare2 prior to 5.6.4. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Radare2 Fedora
NVD GitHub
CVSS 3.1
5.5
EPSS
1.0%
CVE-2022-0727 MEDIUM POC PATCH This Month

Improper Access Control in GitHub repository chocobozzz/peertube prior to 4.1.0. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Authentication Bypass Peertube
NVD GitHub
CVSS 3.1
5.4
EPSS
0.7%
CVE-2022-0726 MEDIUM POC PATCH This Month

Missing Authorization in GitHub repository chocobozzz/peertube prior to 4.1.0. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Authentication Bypass Peertube
NVD GitHub
CVSS 3.1
5.4
EPSS
0.7%
CVE-2022-0719 MEDIUM POC PATCH This Month

Cross-site Scripting (XSS) - Reflected in GitHub repository microweber/microweber prior to 1.3. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Microweber
NVD GitHub
CVSS 3.1
5.4
EPSS
0.9%
CVE-2022-22333 MEDIUM PATCH This Month

IBM Sterling Secure Proxy 6.0.3.0, 6.0.2.0, and 3.4.3.2 and IBM Sterling External Authentication Server are vulnerable a buffer overflow, due to the Jetty based GUI in the Secure Zone not properly. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

IBM Buffer Overflow Sterling External Authentication Server Sterling Secure Proxy
NVD
CVSS 3.1
6.5
EPSS
0.6%
CVE-2022-23653 MEDIUM PATCH This Month

B2 Command Line Tool is the official command line tool for the backblaze cloud storage service. Rated medium severity (CVSS 4.7).

Information Disclosure B2 Command Line Tool
NVD GitHub
CVSS 3.1
4.7
EPSS
0.2%
CVE-2022-23651 MEDIUM PATCH This Month

b2-sdk-python is a python library to access cloud storage provided by backblaze. Rated medium severity (CVSS 4.7).

Python Information Disclosure B2 Python Software Development Kit
NVD GitHub
CVSS 3.1
4.7
EPSS
0.2%
CVE-2022-20625 MEDIUM This Month

A vulnerability in the Cisco Discovery Protocol service of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause the service to restart, resulting in. Rated medium severity (CVSS 4.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Cisco Firepower Extensible Operating System Nx Os
NVD
CVSS 3.1
4.3
EPSS
3.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy