Skip to main content
CVE-2022-3203 CRITICAL POC Act Now

On ORing net IAP-420(+) with FW version 2.0m a telnet server is enabled by default and cannot permanently be disabled. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Iap 420 Firmware
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2022-37454 CRITICAL POC PATCH Act Now

The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Integer Overflow Buffer Overflow RCE Extended Keccak Code Package Debian Linux +6
NVD GitHub
CVSS 3.1
9.8
EPSS
5.2%
CVE-2022-26870 CRITICAL PATCH Act Now

Dell PowerStore versions 2.1.0.x contain an Authentication bypass vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Dell Powerstoreos
NVD
CVSS 3.1
9.8
EPSS
0.6%
CVE-2022-43400 CRITICAL Act Now

A vulnerability has been identified in Siveillance Video Mobile Server V2022 R2 (All versions < V22.2a (80)). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Siveillance Video Mobile Server
NVD
CVSS 3.1
9.8
EPSS
0.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy