Skip to main content
CVE-2022-23463 CRITICAL POC Act Now

Nepxion Discovery is a solution for Spring Cloud. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Java Discovery
NVD GitHub
CVSS 3.1
9.8
EPSS
1.8%
CVE-2022-23464 HIGH POC This Week

Nepxion Discovery is a solution for Spring Cloud. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SSRF Information Disclosure Java Discovery
NVD GitHub
CVSS 3.1
7.5
EPSS
0.6%
CVE-2022-23461 MEDIUM POC This Month

Jodit Editor is a WYSIWYG editor written in pure TypeScript without the use of additional libraries. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Jodit Editor
NVD GitHub
CVSS 3.1
6.1
EPSS
0.5%
CVE-2022-39240 MEDIUM POC This Month

MyGraph is a permission management system. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE XSS Mygraph
NVD GitHub
CVSS 3.1
5.4
EPSS
0.6%
CVE-2022-36025 CRITICAL PATCH Act Now

Besu is a Java-based Ethereum client. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Besu
NVD GitHub
CVSS 3.1
9.1
EPSS
0.9%
CVE-2022-41340 HIGH PATCH This Week

The secp256k1-js package before 1.1.0 for Node.js implements ECDSA without required r and s validation, leading to signature forgery. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Jwt Attack Node.js Secp256K1 Js
NVD GitHub
CVSS 3.1
7.5
EPSS
0.5%
CVE-2022-39242 MEDIUM PATCH This Month

Frontier is an Ethereum compatibility layer for Substrate. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Frontier
NVD GitHub
CVSS 3.1
5.3
EPSS
0.6%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy