Skip to main content
CVE-2022-48194 HIGH POC THREAT This Week

TP-Link TL-WR902AC devices through V3 0.9.1 allow remote authenticated attackers to execute arbitrary code or cause a Denial of Service (DoS) by uploading a crafted firmware update because the. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service RCE TP-Link File Upload Tl Wr902Ac Firmware
NVD GitHub Exploit-DB
CVSS 3.1
8.8
EPSS
33.5%
CVE-2022-4857 HIGH POC This Week

A vulnerability was found in Modbus Tools Modbus Poll up to 9.10.0 and classified as critical. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Modbus Poll
NVD GitHub VulDB
CVSS 3.1
7.8
EPSS
0.7%
CVE-2022-4856 HIGH POC This Week

A vulnerability has been found in Modbus Tools Modbus Slave up to 7.5.1 and classified as critical. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Modbus Slave
NVD GitHub VulDB
CVSS 3.1
7.8
EPSS
0.6%
CVE-2022-47116 HIGH POC This Week

Tenda A15 V15.13.07.13 was discovered to contain a stack overflow via the SYSPS parameter at /goform/SysToolChangePwd. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Tenda Buffer Overflow A15 Firmware
NVD
CVSS 3.1
7.5
EPSS
0.8%
CVE-2022-44137 HIGH POC This Week

SourceCodester Sanitization Management System 1.0 is vulnerable to SQL Injection. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Sanitization Management System
NVD GitHub
CVSS 3.1
7.2
EPSS
0.8%
CVE-2022-34671 HIGH This Week

NVIDIA GPU Display Driver for Windows contains a vulnerability in the user-mode layer, where an unprivileged user can cause an out-of-bounds write, which may lead to code execution, information. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Denial Of Service Buffer Overflow Microsoft Nvidia +3
NVD
CVSS 3.1
8.8
EPSS
1.4%
CVE-2022-43396 HIGH PATCH This Week

In the fix for CVE-2022-24697, a blacklist is used to filter user input commands. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Kylin
NVD
CVSS 3.1
8.8
EPSS
56.8%
CVE-2022-42269 HIGH This Week

NVIDIA Trusted OS contains a vulnerability in an SMC call handler, where failure to validate untrusted input may allow a highly privileged local attacker to cause information disclosure and. Rated high severity (CVSS 7.9), this vulnerability is low attack complexity. No vendor patch available.

Nvidia Information Disclosure Jetson Linux
NVD
CVSS 3.1
7.9
EPSS
0.2%
CVE-2022-42270 HIGH This Week

NVIDIA distributions of Linux contain a vulnerability in nvdla_emu_task_submit, where unvalidated input may allow a local attacker to cause stack-based buffer overflow in kernel code, which may lead. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Linux Buffer Overflow Nvidia Stack Overflow +1
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-42267 HIGH This Week

NVIDIA GPU Display Driver for Windows contains a vulnerability where a regular user can cause an out-of-bounds read, which may lead to code execution, denial of service, escalation of privileges,. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Denial Of Service Buffer Overflow Microsoft Nvidia +2
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2022-42264 HIGH This Week

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where an unprivileged regular user can cause the use of an out-of-range pointer offset, which may lead to data. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Linux Nvidia Information Disclosure Memory Corruption +3
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2022-42262 HIGH This Week

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where an input index is not validated, which may lead to buffer overrun, which in turn may cause data. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Nvidia Information Disclosure Memory Corruption +3
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-42261 HIGH This Week

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where an input index is not validated, which may lead to buffer overrun, which in turn may cause data. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Nvidia Information Disclosure Denial Of Service Buffer Overflow Virtual Gpu +2
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2022-42260 HIGH This Week

NVIDIA vGPU Display Driver for Linux guest contains a vulnerability in a D-Bus configuration file, where an unauthorized user in the guest VM can impact protected D-Bus endpoints, which may lead to. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Nvidia RCE Information Disclosure Denial Of Service Virtual Gpu +2
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2022-42256 HIGH This Week

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow in index validation may lead to denial of service, information disclosure,. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Integer Overflow Linux Nvidia Information Disclosure +2
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2022-42255 HIGH This Week

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an out-of-bounds array access may lead to denial of service, information disclosure, or data. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Linux Buffer Overflow Nvidia Information Disclosure +3
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2022-42254 HIGH This Week

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an out-of-bounds array access may lead to denial of service, data tampering, or information. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Linux Buffer Overflow Nvidia Information Disclosure +3
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2022-34676 HIGH This Week

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an out-of-bounds read may lead to denial of service, information disclosure, or data tampering. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Linux Buffer Overflow Nvidia Information Disclosure +2
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2022-34672 HIGH This Week

NVIDIA Control Panel for Windows contains a vulnerability where an unauthorized user or an unprivileged regular user can compromise the security of the software by gaining privileges, reading. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Nvidia Authentication Bypass Microsoft Virtual Gpu Cloud Gaming
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-34670 HIGH This Week

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an unprivileged regular user can cause truncation errors when casting a primitive to a primitive. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Nvidia Information Disclosure Linux Denial Of Service Gpu Display Driver +3
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2022-34669 HIGH This Week

NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an unprivileged regular user can access or modify system files or other files that are critical to the. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Denial Of Service Microsoft Nvidia RCE +2
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2022-4858 HIGH This Week

Insertion of Sensitive Information into Log Files in M-Files Server before 22.10.11846.0 could allow to obtain sensitive tokens from logs, if specific configurations were set. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure M Files Server
NVD
CVSS 3.1
7.5
EPSS
0.5%
CVE-2022-42258 HIGH This Week

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to denial of service, data tampering, or information disclosure. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Integer Overflow Linux Nvidia Information Disclosure +4
NVD
CVSS 3.1
7.3
EPSS
0.3%
CVE-2022-42257 HIGH This Week

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to information disclosure, data tampering or denial of service. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Integer Overflow Linux Nvidia Information Disclosure +4
NVD
CVSS 3.1
7.3
EPSS
0.3%
CVE-2022-34673 HIGH This Week

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an out-of-bounds array access may lead to denial of service, information disclosure, or data. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Integer Overflow Linux Nvidia Information Disclosure +1
NVD
CVSS 3.1
7.3
EPSS
0.2%
CVE-2022-42265 HIGH This Week

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to information disclosure or data tampering. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Integer Overflow Information Disclosure Linux Nvidia Gpu Display Driver
NVD
CVSS 3.1
7.1
EPSS
0.3%
CVE-2022-42263 HIGH This Week

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an Integer overflow may lead to denial of service or information disclosure. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Integer Overflow Linux Nvidia Information Disclosure +3
NVD
CVSS 3.1
7.1
EPSS
0.3%
CVE-2022-34684 HIGH This Week

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an off-by-one error may lead to data tampering or information disclosure. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Nvidia Information Disclosure Linux Buffer Overflow Virtual Gpu +2
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2022-34677 HIGH This Week

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an unprivileged regular user can cause an integer to be truncated, which may lead to denial of. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Linux Buffer Overflow Nvidia Information Disclosure +4
NVD
CVSS 3.1
7.1
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy