Skip to main content
CVE-2022-3627 MEDIUM POC PATCH This Month

LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection, tools/tiffcrop.c:6860, allowing attackers to cause a denial-of-service via a. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Memory Corruption Buffer Overflow Libtiff Active Iq Unified Manager Debian Linux
NVD
CVSS 3.1
6.5
EPSS
1.0%
CVE-2022-3626 MEDIUM POC PATCH This Month

LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c:340 when called from processCropSelections, tools/tiffcrop.c:7619, allowing attackers to cause a denial-of-service via a. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Memory Corruption Buffer Overflow Libtiff Active Iq Unified Manager Debian Linux
NVD
CVSS 3.1
6.5
EPSS
0.9%
CVE-2022-3599 MEDIUM POC PATCH This Month

LibTIFF 4.4.0 has an out-of-bounds read in writeSingleSection in tools/tiffcrop.c:7345, allowing attackers to cause a denial-of-service via a crafted tiff file. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Buffer Overflow Libtiff Active Iq Unified Manager Debian Linux
NVD
CVSS 3.1
6.5
EPSS
0.9%
CVE-2022-3598 MEDIUM POC PATCH This Month

LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing attackers to cause a denial-of-service via a crafted tiff file. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Memory Corruption Buffer Overflow Libtiff Active Iq Unified Manager Debian Linux
NVD
CVSS 3.1
6.5
EPSS
0.9%
CVE-2022-3597 MEDIUM POC PATCH This Month

LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection, tools/tiffcrop.c:6826, allowing attackers to cause a denial-of-service via a. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Memory Corruption Buffer Overflow Libtiff Active Iq Unified Manager Debian Linux
NVD
CVSS 3.1
6.5
EPSS
0.9%
CVE-2022-39259 MEDIUM POC PATCH This Month

jadx is a set of command line and GUI tools for producing Java source code from Android Dex and Apk files. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Google Denial Of Service Java Jadx
NVD GitHub
CVSS 3.1
5.5
EPSS
0.3%
CVE-2022-3570 MEDIUM POC PATCH This Month

Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Memory Corruption Information Disclosure Buffer Overflow Libtiff Debian Linux
NVD
CVSS 3.1
5.5
EPSS
0.5%
CVE-2022-42206 MEDIUM POC This Month

PHPGurukul Hospital Management System In PHP V 4.0 is vulnerable to Cross Site Scripting (XSS) via doctor/view-patient.php, admin/view-patient.php, and view-medhistory.php. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Hospital Management System
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2022-42205 MEDIUM POC This Month

PHPGurukul Hospital Management System In PHP V 4.0 is vulnerable to Cross Site Scripting (XSS) via add-patient.php. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Hospital Management System
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2022-34438 MEDIUM PATCH This Month

Dell PowerScale OneFS, versions 8.2.x-9.4.0.x, contain a privilege context switching error. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Dell Privilege Escalation Emc Powerscale Onefs
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2022-34437 MEDIUM PATCH This Month

Dell PowerScale OneFS, versions 8.2.2-9.3.0, contain an OS command injection vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Dell Command Injection Emc Powerscale Onefs
NVD
CVSS 3.1
6.7
EPSS
0.5%
CVE-2022-1059 MEDIUM This Month

Aethon TUG Home Base Server versions prior to version 24 are affected by un unauthenticated attacker who can freely access hashed user credentials. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Tug Home Base Server
NVD
CVSS 3.1
6.1
EPSS
0.6%
CVE-2022-3637 MEDIUM PATCH This Month

A vulnerability has been found in Linux Kernel and classified as problematic. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Linux Denial Of Service Bluez
NVD VulDB
CVSS 3.1
5.5
EPSS
0.3%
CVE-2022-3630 MEDIUM PATCH This Month

A vulnerability was found in Linux Kernel. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Linux Information Disclosure Linux Kernel
NVD VulDB
CVSS 3.1
5.5
EPSS
0.2%
CVE-2022-41638 MEDIUM This Month

Auth. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS WordPress Pop Up Chop Chop
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2022-27494 MEDIUM This Month

Aethon TUG Home Base Server versions prior to version 24 are affected by un unauthenticated attacker who can freely access hashed user credentials. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Tug Home Base Server
NVD
CVSS 3.1
5.4
EPSS
0.6%
CVE-2022-40311 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS WordPress Analytics Cat
NVD
CVSS 3.1
4.8
EPSS
0.4%
CVE-2022-31239 MEDIUM PATCH This Month

Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, and 9.3.0.6, contain sensitive data in log files vulnerability. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Information Disclosure Dell Emc Powerscale Onefs
NVD
CVSS 3.1
4.4
EPSS
0.2%
CVE-2022-3646 MEDIUM PATCH This Month

A vulnerability, which was classified as problematic, has been found in Linux Kernel.c of the component BPF. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Linux Information Disclosure Linux Kernel Debian Linux
NVD VulDB
CVSS 3.1
4.3
EPSS
0.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy