Skip to main content
CVE-2022-29826 HIGH This Week

Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.087R and Motion Control Setting(GX Works3 related software) versions from 1.000A to. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Gx Works3
NVD
CVSS 3.1
7.5
EPSS
0.7%
CVE-2022-29825 HIGH This Week

Use of Hard-coded Password vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U, GT Designer3 Version1 (GOT2000) versions from 1.122C to 1.290C, and MT Works2 versions from. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Gx Works3
NVD
CVSS 3.1
7.5
EPSS
0.5%
CVE-2022-25164 HIGH This Week

Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.095Z and Mitsubishi Electric MX OPC UA Module Configurator-R versions 1.08J and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Gx Works3 Mx Opc Ua Module Configurator R
NVD
CVSS 3.1
7.5
EPSS
0.8%
CVE-2022-45886 HIGH PATCH This Week

An issue was discovered in the Linux kernel through 6.0.9. Rated high severity (CVSS 7.0).

Race Condition Information Disclosure Linux Linux Kernel H410c Firmware +4
NVD
CVSS 3.1
7.0
EPSS
0.3%
CVE-2022-45885 HIGH This Week

An issue was discovered in the Linux kernel through 6.0.9. Rated high severity (CVSS 7.0). No vendor patch available.

Race Condition Information Disclosure Linux Linux Kernel H410c Firmware +4
NVD
CVSS 3.1
7.0
EPSS
0.3%
CVE-2022-45884 HIGH This Week

An issue was discovered in the Linux kernel through 6.0.9. Rated high severity (CVSS 7.0). No vendor patch available.

Race Condition Information Disclosure Linux Linux Kernel H300s Firmware +4
NVD
CVSS 3.1
7.0
EPSS
0.3%
CVE-2022-39346 MEDIUM PATCH This Month

Nextcloud server is an open source personal cloud server. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Nextcloud Denial Of Service Nextcloud Enterprise Server Nextcloud Server Fedora
NVD GitHub
CVSS 3.1
6.5
EPSS
1.0%
CVE-2022-29833 MEDIUM This Month

Insufficiently Protected Credentials vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later allows a remote unauthenticated attacker to disclose sensitive information. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Gx Works3
NVD
CVSS 3.1
6.5
EPSS
1.0%
CVE-2022-29832 MEDIUM This Month

Cleartext Storage of Sensitive Information in Memory vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later, GX Works2 all versions and GX Developer versions 8.40S and. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Gx Works3
NVD
CVSS 3.1
6.5
EPSS
0.6%
CVE-2022-45888 MEDIUM This Month

An issue was discovered in the Linux kernel through 6.0.9. Rated medium severity (CVSS 6.4), this vulnerability is no authentication required. No vendor patch available.

Race Condition Information Disclosure Linux Linux Kernel H410c Firmware +4
NVD
CVSS 3.1
6.4
EPSS
0.7%
CVE-2022-45225 MEDIUM This Month

Book Store Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in /bsms_ci/index.php/book. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP XSS Book Store Management System
NVD
CVSS 3.1
6.1
EPSS
0.5%
CVE-2022-39325 MEDIUM PATCH This Month

BaserCMS is a content management system with a japanese language focus. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Basercms
NVD GitHub
CVSS 3.1
6.1
EPSS
0.5%
CVE-2022-45218 MEDIUM This Month

Human Resource Management System v1.0.0 was discovered to contain a cross-site scripting (XSS) vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Human Resource Management System
NVD GitHub
CVSS 3.1
6.1
EPSS
0.4%
CVE-2022-41926 MEDIUM PATCH This Month

Nextcould talk android is the android OS implementation of the nextcloud talk chat system. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Nextcloud Information Disclosure Google Talk
NVD GitHub
CVSS 3.1
5.5
EPSS
0.3%
CVE-2022-39338 MEDIUM PATCH This Month

user_oidc is an OpenID Connect user backend for Nextcloud. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity.

Nextcloud Apple XSS Openid Connect User Backend
NVD GitHub
CVSS 3.1
5.4
EPSS
0.6%
CVE-2022-45887 MEDIUM This Month

An issue was discovered in the Linux kernel through 6.0.9. Rated medium severity (CVSS 4.7). No vendor patch available.

Race Condition Information Disclosure Linux Linux Kernel H410c Firmware +4
NVD
CVSS 3.1
4.7
EPSS
0.3%
CVE-2022-39339 MEDIUM PATCH This Month

user_oidc is an OpenID Connect user backend for Nextcloud. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Nextcloud Information Disclosure Openid Connect User Backend
NVD GitHub
CVSS 3.1
4.3
EPSS
0.4%
CVE-2022-41954 LOW PATCH Monitor

MPXJ is an open source library to read and write project plans from a variety of file formats and databases. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Apple Microsoft Mpxj
NVD GitHub
CVSS 3.1
3.3
EPSS
0.2%
CVE-2022-38377 LOW PATCH Monitor

An improper access control vulnerability [CWE-284] in FortiManager 7.2.0, 7.0.0 through 7.0.3, 6.4.0 through 6.4.7, 6.2.0 through 6.2.9, 6.0.0 through 6.0.11 and FortiAnalyzer 7.2.0, 7.0.0 through. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Fortianalyzer Fortimanager
NVD
CVSS 3.1
2.7
EPSS
0.5%
Prev Page 2 of 2

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy