Skip to main content
CVE-2022-25671 HIGH This Week

Denial of service in MODEM due to reachable assertion in Snapdragon Mobile. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qualcomm Denial Of Service Ar8035 Firmware Qca8081 Firmware Qca8337 Firmware +11
NVD
CVSS 3.1
7.5
EPSS
0.4%
CVE-2022-25667 HIGH This Week

Information disclosure in kernel due to improper handling of ICMP requests in Snapdragon Wired Infrastructure and Networking. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Authentication Bypass Qualcomm Ar9380 Firmware Csr8811 Firmware +67
NVD
CVSS 3.1
7.5
EPSS
0.3%
CVE-2022-40405 HIGH This Week

WoWonder Social Network Platform v4.1.2 was discovered to contain a SQL injection vulnerability via the offset parameter at requests.php?f=load-my-blogs. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP SQLi Wowonder
NVD GitHub
CVSS 3.1
7.5
EPSS
0.6%
CVE-2022-20925 HIGH This Week

A vulnerability in the web management interface of the Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary commands on the underlying. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Cisco Secure Firewall Management Center
NVD
CVSS 3.1
7.2
EPSS
0.8%
CVE-2022-33985 HIGH This Week

DMA transactions which are targeted at input buffers used for the NvmExpressDxe software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
CVSS 3.1
7.0
EPSS
0.1%
CVE-2022-33984 HIGH This Week

DMA transactions which are targeted at input buffers used for the SdMmcDevice software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
CVSS 3.1
7.0
EPSS
0.2%
CVE-2022-33983 HIGH This Week

DMA transactions which are targeted at input buffers used for the NvmExpressLegacy software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
CVSS 3.1
7.0
EPSS
0.2%
CVE-2022-33909 HIGH This Week

DMA transactions which are targeted at input buffers used for the HddPassword software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
CVSS 3.1
7.0
EPSS
0.1%
CVE-2022-33908 HIGH This Week

DMA transactions which are targeted at input buffers used for the SdHostDriver software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
CVSS 3.1
7.0
EPSS
0.1%
CVE-2022-33905 HIGH This Week

DMA transactions which are targeted at input buffers used for the AhciBusDxe software SMI handler could cause SMRAM corruption (a TOCTOU attack). Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
CVSS 3.1
7.0
EPSS
0.1%
Prev Page 2 of 2

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy