Skip to main content
CVE-2022-38130 CRITICAL POC THREAT Act Now

The com.keysight.tentacle.config.ResourceManager.smsRestoreDatabaseZip() method is used to restore the HSQLDB database used in SMS. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Sensor Management Server
NVD
CVSS 3.1
9.8
EPSS
53.4%
CVE-2022-38129 CRITICAL POC THREAT Act Now

A path traversal vulnerability exists in the com.keysight.tentacle.licensing.LicenseManager.addLicenseFile() method in the Keysight Sensor Management Server (SMS). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Sensor Management Server
NVD
CVSS 3.1
9.8
EPSS
18.4%
CVE-2022-36750 CRITICAL POC Act Now

Clinic's Patient Management System v1.0 is vulnerable to SQL injection via /pms/update_user.php?id=. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Clinic S Patient Management System
NVD GitHub
CVSS 3.1
9.8
EPSS
0.8%
CVE-2022-36270 CRITICAL POC Act Now

Clinic's Patient Management System v1.0 has arbitrary code execution via url: ip/pms/users.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE PHP Clinic S Patient Management System
NVD GitHub
CVSS 3.1
9.8
EPSS
1.1%
CVE-2022-35538 CRITICAL POC Act Now

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 wireless.cgi has no filtering on parameters: delete_list, delete_al_mac, b_delete_list and b_delete_al_mac, which leads to command injection in. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wn572Hp3 Firmware Wn533A8 Firmware Wn530H4 Firmware Wn535G3 Firmware +1
NVD GitHub
CVSS 3.1
9.8
EPSS
2.2%
CVE-2022-35537 CRITICAL POC Act Now

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 wireless.cgi has no filtering on parameters: mac_5g and Newname, which leads to command injection in page /wifi_mesh.shtml. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wn572Hp3 Firmware Wn533A8 Firmware Wn530H4 Firmware Wn535G3 Firmware +1
NVD GitHub
CVSS 3.1
9.8
EPSS
2.2%
CVE-2022-35536 CRITICAL POC Act Now

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 qos.cgi has no filtering on parameters: qos_bandwith and qos_dat, which leads to command injection in page /qos.shtml. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wn572Hp3 Firmware Wn533A8 Firmware Wn530H4 Firmware Wn535G3 Firmware +1
NVD GitHub
CVSS 3.1
9.8
EPSS
2.2%
CVE-2022-35535 CRITICAL POC Act Now

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 wireless.cgi has no filtering on parameter macAddr, which leads to command injection in page /wifi_mesh.shtml. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wn572Hp3 Firmware Wn533A8 Firmware Wn530H4 Firmware Wn535G3 Firmware +1
NVD GitHub
CVSS 3.1
9.8
EPSS
2.3%
CVE-2022-35534 CRITICAL POC Act Now

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 wireless.cgi has no filtering on parameter hiddenSSID32g and SSID2G2, which leads to command injection in page /wifi_multi_ssid.shtml. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wn572Hp3 Firmware Wn533A8 Firmware Wn530H4 Firmware Wn535G3 Firmware +1
NVD GitHub
CVSS 3.1
9.8
EPSS
2.3%
CVE-2022-35533 CRITICAL POC Act Now

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 qos.cgi has no filtering on parameters: cli_list and cli_num, which leads to command injection in page /qos.shtml. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wn572Hp3 Firmware Wn533A8 Firmware Wn530H4 Firmware Wn535G3 Firmware +1
NVD GitHub
CVSS 3.1
9.8
EPSS
2.3%
CVE-2022-35526 CRITICAL POC Act Now

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 login.cgi has no filtering on parameter key, which leads to command injection in page /login.shtml. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wn572Hp3 Firmware Wn533A8 Firmware Wn530H4 Firmware Wn535G3 Firmware +1
NVD GitHub
CVSS 3.1
9.8
EPSS
2.3%
CVE-2022-35525 CRITICAL POC Act Now

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 adm.cgi has no filtering on parameter led_switch, which leads to command injection in page /ledonoff.shtml. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wn572Hp3 Firmware Wn533A8 Firmware Wn530H4 Firmware Wn535G3 Firmware +1
NVD GitHub
CVSS 3.1
9.8
EPSS
2.4%
CVE-2022-35524 CRITICAL POC Act Now

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 adm.cgi has no filtering on parameters: wlan_signal, web_pskValue, sel_EncrypTyp, sel_Automode, wlan_bssid, wlan_ssid and wlan_channel, which. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wn572Hp3 Firmware Wn533A8 Firmware Wn530H4 Firmware Wn535G3 Firmware +1
NVD GitHub
CVSS 3.1
9.8
EPSS
2.3%
CVE-2022-35523 CRITICAL POC Act Now

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 firewall.cgi has no filtering on parameter del_mac and parameter flag, which leads to command injection in page /cli_black_list.shtml. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wn572Hp3 Firmware Wn533A8 Firmware Wn530H4 Firmware Wn535G3 Firmware +1
NVD GitHub
CVSS 3.1
9.8
EPSS
2.3%
CVE-2022-35522 CRITICAL POC Act Now

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 adm.cgi has no filtering on parameters: ppp_username, ppp_passwd, rwan_gateway, rwan_mask and rwan_ip, which leads to command injection in page. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wn572Hp3 Firmware Wn533A8 Firmware Wn530H4 Firmware Wn535G3 Firmware +1
NVD GitHub
CVSS 3.1
9.8
EPSS
2.3%
CVE-2022-35521 CRITICAL POC Act Now

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 firewall.cgi has no filtering on parameters: remoteManagementEnabled, blockPortScanEnabled, pingFrmWANFilterEnabled and blockSynFloodEnabled,. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wn572Hp3 Firmware Wn533A8 Firmware Wn530H4 Firmware Wn535G3 Firmware +1
NVD GitHub
CVSS 3.1
9.8
EPSS
2.3%
CVE-2022-35520 CRITICAL POC Act Now

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 api.cgi has no filtering on parameter ufconf, and this is a hidden parameter which doesn't appear in POST body, but exist in cgi binary. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wn572Hp3 Firmware Wn533A8 Firmware Wn530H4 Firmware Wn535G3 Firmware +1
NVD GitHub
CVSS 3.1
9.8
EPSS
2.3%
CVE-2022-35519 CRITICAL POC Act Now

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 firewall.cgi has no filtering on parameter add_mac, which leads to command injection in page /cli_black_list.shtml. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wn572Hp3 Firmware Wn533A8 Firmware Wn530H4 Firmware Wn535G3 Firmware +1
NVD GitHub
CVSS 3.1
9.8
EPSS
2.3%
CVE-2022-35518 CRITICAL POC Act Now

WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 nas.cgi has no filtering on parameters: User1Passwd and User1, which leads to command injection in page /nas_disk.shtml. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wn572Hp3 Firmware Wn533A8 Firmware Wn530H4 Firmware Wn535G3 Firmware +1
NVD GitHub
CVSS 3.1
9.8
EPSS
1.5%
CVE-2022-35426 CRITICAL POC Act Now

UCMS 1.6 is vulnerable to arbitrary file upload via ucms/sadmin/file PHP file. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP File Upload Ucms
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-32429 CRITICAL POC THREAT Act Now

An authentication-bypass issue in the component http://MYDEVICEIP/cgi-bin-sdb/ExportSettings.sh of Mega System Technologies Inc MSNSwitch MNT.2408 allows unauthenticated attackers to arbitrarily. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Authentication Bypass Msnswitch Firmware
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
75.6%
CVE-2022-36323 CRITICAL PATCH CISA Act Now

Affected devices do not properly sanitize an input field. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, low attack complexity.

Code Injection Scalance M 800 Firmware Scalance S615 Firmware Scalance Sc 600 Firmware Scalance Sc622 2C Firmware +86
NVD VulDB
CVSS 3.1
9.1
EPSS
0.5%
CVE-2022-20827 CRITICAL Act Now

Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Cisco Denial Of Service Buffer Overflow Rv160 Firmware +8
NVD
CVSS 3.1
10.0
EPSS
1.7%
CVE-2022-37003 CRITICAL Act Now

The AOD module has a vulnerability in permission assignment. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Privilege Escalation Emui Harmonyos Magic Ui
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2022-37002 CRITICAL Act Now

The SystemUI module has a privilege escalation vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Privilege Escalation Emui Harmonyos Magic Ui
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2022-35491 CRITICAL Act Now

TOTOLINK A3002RU V3.0.0-B20220304.1804 has a hardcoded password for root in /etc/shadow.sample. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass A3002ru Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.7%
CVE-2022-2634 CRITICAL Act Now

An attacker may be able to execute malicious actions due to the lack of device access protections and device permissions when using the web application. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Python Privilege Escalation Connectport X2D Firmware
NVD
CVSS 3.1
9.8
EPSS
0.8%
CVE-2022-2457 CRITICAL Act Now

A flaw was found in Red Hat Process Automation Manager 7 where an attacker can benefit from a brute force attack against Administration Console as the application does not limit the number of. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Red Hat Process Automation Manager
NVD
CVSS 3.1
9.8
EPSS
0.5%
CVE-2022-20361 CRITICAL PATCH Act Now

In btif_dm_auth_cmpl_evt of btif_dm.cc, there is a possible vulnerability in Cross-Transport Key Derivation due to Weakness in Bluetooth Standard. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Google Privilege Escalation Android
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-20239 CRITICAL Act Now

remap_pfn_range' here may map out of size kernel memory (for example, may map the kernel area), and because the 'vma->vm_page_prot' can also be controlled by userspace, so userspace may map the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Google Information Disclosure Android
NVD
CVSS 3.1
9.8
EPSS
0.2%
CVE-2022-35280 CRITICAL Act Now

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure IBM Brute Force Robotic Process Automation For Cloud Pak
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2022-34660 CRITICAL Act Now

A vulnerability has been identified in Teamcenter V12.4 (All versions < V12.4.0.15), Teamcenter V13.0 (All versions < V13.0.0.10), Teamcenter V13.1 (All versions < V13.1.0.10), Teamcenter V13.2 (All. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Command Injection Teamcenter
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2022-2242 CRITICAL Act Now

The KUKA SystemSoftware V/KSS in versions prior to 8.6.5 is prone to improper access control as an unauthorized attacker can directly read and write robot configurations when access control is not. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Systemsoftware V Kss
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-20842 CRITICAL Act Now

Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Cisco Denial Of Service Buffer Overflow Rv340 Firmware +3
NVD
CVSS 3.1
9.8
EPSS
1.6%
CVE-2021-33643 CRITICAL Act Now

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Buffer Overflow Libtar Openeuler Fedora
NVD VulDB
CVSS 3.1
9.1
EPSS
1.4%
CVE-2022-35293 CRITICAL Act Now

Due to insecure session management, SAP Enable Now allows an unauthenticated attacker to gain access to user's account. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass SAP Enable Now Manager
NVD VulDB
CVSS 3.1
9.1
EPSS
0.6%
CVE-2022-20841 CRITICAL Act Now

Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

RCE Cisco Denial Of Service Buffer Overflow Rv160 Firmware +8
NVD
CVSS 3.1
9.0
EPSS
2.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy