Skip to main content
CVE-2022-38934 LOW POC Monitor

readelf in ToaruOS 2.0.1 has some arbitrary address read vulnerabilities when parsing a crafted ELF file. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Buffer Overflow Toaruos
NVD GitHub
CVSS 3.1
3.3
EPSS
0.3%
CVE-2022-34394 LOW Monitor

Dell OS10, version 10.5.3.4, contains an Improper Certificate Validation vulnerability in Support Assist. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Dell Smartfabric Os10
NVD
CVSS 3.1
3.7
EPSS
0.4%
CVE-2022-40709 LOW Monitor

An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Information Disclosure Trend Micro Buffer Overflow Deep Security Agent
NVD
CVSS 3.1
3.3
EPSS
0.4%
CVE-2022-40708 LOW Monitor

An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Information Disclosure Trend Micro Buffer Overflow Deep Security Agent
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2022-40707 LOW Monitor

An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Information Disclosure Trend Micro Buffer Overflow Deep Security Agent
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2022-28815 LOW Monitor

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy server was discovered to contain a SQL injection vulnerability allowing an attacker to query. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Cpy Car Park Server Uwp 3 0 Monitoring Gateway And Controller Firmware
NVD
CVSS 3.1
2.7
EPSS
0.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy