Skip to main content
CVE-2022-33324 HIGH PATCH This Week

Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R Series R00/01/02CPU Firmware versions "32" and prior, Mitsubishi Electric Corporation MELSEC iQ-R. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Melsec Iq R R00 Cpu Firmware Melsec Iq R R01 Cpu Firmware Melsec Iq R R02 Cpu Firmware Melsec Iq R R04 Cpu Firmware +15
NVD
CVSS 3.1
7.5
EPSS
1.7%
CVE-2022-46570 HIGH This Week

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWan3Settings module. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Memory Corruption D-Link Buffer Overflow Dir 882 A1 Firmware
NVD
CVSS 3.1
7.2
EPSS
1.4%
CVE-2022-46569 HIGH This Week

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Key parameter in the SetWLanRadioSecurity module. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Memory Corruption D-Link Buffer Overflow Dir 882 A1 Firmware
NVD
CVSS 3.1
7.2
EPSS
1.6%
CVE-2022-46568 HIGH This Week

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the AccountPassword parameter in the SetSysEmailSettings module. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Memory Corruption D-Link Buffer Overflow Dir 882 A1 Firmware
NVD
CVSS 3.1
7.2
EPSS
1.4%
CVE-2022-46566 HIGH This Week

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetQuickVPNSettings module. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Memory Corruption D-Link Buffer Overflow Dir 882 A1 Firmware
NVD
CVSS 3.1
7.2
EPSS
1.4%
CVE-2022-46563 HIGH This Week

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetDynamicDNSSettings module. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Memory Corruption D-Link Buffer Overflow Dir 882 A1 Firmware
NVD
CVSS 3.1
7.2
EPSS
1.4%
CVE-2022-46562 HIGH This Week

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the PSK parameter in the SetQuickVPNSettings module. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Memory Corruption D-Link Buffer Overflow Dir 882 A1 Firmware
NVD
CVSS 3.1
7.2
EPSS
1.4%
CVE-2022-46561 HIGH This Week

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWanSettings module. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Memory Corruption D-Link Buffer Overflow Dir 882 A1 Firmware
NVD
CVSS 3.1
7.2
EPSS
1.4%
CVE-2022-46560 HIGH This Week

D-Link DIR-882 DIR882A1_FW130B06, DIR-878 DIR_878_FW1.30B08 was discovered to contain a stack overflow via the Password parameter in the SetWan2Settings module. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Memory Corruption D-Link Buffer Overflow Dir 882 A1 Firmware
NVD
CVSS 3.1
7.2
EPSS
1.4%
CVE-2022-38757 HIGH This Week

A vulnerability has been identified in Micro Focus ZENworks 2020 Update 3a and prior versions. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Zenworks
NVD
CVSS 3.1
7.2
EPSS
0.8%
CVE-2022-47938 MEDIUM PATCH This Month

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Information Disclosure Linux Buffer Overflow Linux Kernel
NVD GitHub
CVSS 3.1
6.5
EPSS
58.5%
CVE-2022-43849 MEDIUM PATCH This Month

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX pfcdd kernel extension to cause a denial of service. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity.

IBM Denial Of Service Vios Aix
NVD
CVSS 3.1
6.2
EPSS
0.2%
CVE-2022-43848 MEDIUM PATCH This Month

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX perfstat kernel extension to cause a denial of service. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity.

IBM Denial Of Service Vios Aix
NVD
CVSS 3.1
6.2
EPSS
0.2%
CVE-2022-39164 MEDIUM PATCH This Month

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to cause a denial of service. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. This Uncontrolled Resource Consumption vulnerability could allow attackers to cause denial of service by exhausting system resources.

IBM Denial Of Service Vios Aix
NVD
CVSS 3.1
6.2
EPSS
0.2%
CVE-2022-43381 MEDIUM PATCH This Month

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX SMB client to cause a denial of service. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity.

IBM Denial Of Service Vios Aix
NVD
CVSS 3.1
6.2
EPSS
0.2%
CVE-2022-43380 MEDIUM PATCH This Month

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel extension to cause a denial of service. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity.

IBM Denial Of Service Vios Aix
NVD
CVSS 3.1
6.2
EPSS
0.2%
CVE-2022-40233 MEDIUM PATCH This Month

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX TCP/IP kernel extension to cause a denial of service. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity.

IBM Denial Of Service Vios Aix
NVD
CVSS 3.1
6.2
EPSS
0.2%
CVE-2022-39165 MEDIUM PATCH This Month

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service. Rated medium severity (CVSS 6.2), this vulnerability is no authentication required, low attack complexity. This Uncontrolled Resource Consumption vulnerability could allow attackers to cause denial of service by exhausting system resources.

IBM Denial Of Service Vios Aix
NVD
CVSS 3.1
6.2
EPSS
0.2%
CVE-2022-4698 MEDIUM PATCH This Month

The ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several form fields in versions up to, and including, 4.5.0 due to insufficient input sanitization and output. Rated medium severity (CVSS 5.5), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS WordPress Profilepress
NVD VulDB
CVSS 3.1
5.5
EPSS
0.3%
CVE-2022-4697 MEDIUM PATCH This Month

The ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘wp_user_cover_default_image_url’ parameter in versions up to, and including, 4.5.0 due to insufficient. Rated medium severity (CVSS 5.5), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS WordPress Profilepress
NVD VulDB
CVSS 3.1
5.5
EPSS
0.3%
CVE-2022-47524 MEDIUM This Month

F-Secure SAFE Browser 19.1 before 19.2 for Android allows an IDN homograph attack. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Google Safe
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2022-44565 MEDIUM PATCH This Month

An improper access validation vulnerability exists in airMAX AC <8.7.11, airFiber 60/LR <2.6.2, airFiber 60 XG/HD <v1.0.0 and airFiber GBE <1.4.1 that allows a malicious actor to retrieve status and. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Airfiber Gigabeam Firmware Airfiber 60 Xg Firmware Airfiber 60 Hd Firmware Airfiber 60 Lr Firmware +2
NVD
CVSS 3.1
5.3
EPSS
0.4%
Prev Page 2 of 2

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy