Vulnerabilidades CVE
Base de datos de vulnerabilidades CVE enriquecida con datos de CISA KEV y NVD
| CVE ID | CVSS | Severidad | KEV | Avistamientos |
|---|---|---|---|---|
| CVE-2022-29383 NETGEAR ProSafe SSL VPN firmware FVS336Gv2 and FVS336Gv3 was discovered to contain a SQL injection vulnerability via USERDBDomains.Domainname at cgi-bin/platform.cgi. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30370 Air Cargo Management System 1.0 is vulnerable to SQL Injection via /acms/classes/Master.php?f=delete_cargo_type. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30371 Air Cargo Management System 1.0 is vulnerable to SQL Injection via /acms/admin/cargo_types/view_cargo_type.php?id=. | 7.2 | HIGH | β | 0 |
| CVE-2022-30372 Air Cargo Management System 1.0 is vulnerable to SQL Injection via /acms/classes/Master.php?f=delete_cargo. | 7.2 | HIGH | β | 0 |
| CVE-2022-30373 Air Cargo Management System 1.0 is vulnerable to SQL Injection via /acms/admin/cargo_types/manage_cargo_type.php?id=. | 7.2 | HIGH | β | 0 |
| CVE-2022-30374 Air Cargo Management System 1.0 is vulnerable to SQL Injection via /acms/admin/?page=transactions/manage_transaction&id=. | 7.2 | HIGH | β | 0 |
| CVE-2022-29854 A vulnerability in Mitel 6900 Series IP (MiNet) phones excluding 6970, versions 1.8 (1.8.0.12) and earlier, could allow a unauthenticated attacker with physical access to the phone to gain root access... | 6.8 | MEDIUM | β | 0 |
| CVE-2022-30367 Air Cargo Management System v1.0 is vulnerable to file deletion via /acms/classes/Master.php?f=delete_img. | 6.5 | MEDIUM | β | 0 |
| CVE-2022-30375 Sourcecodester Simple Social Networking Site v1.0 is vulnerable to file deletion via /sns/classes/Master.php?f=delete_img. | 6.5 | MEDIUM | β | 0 |
| CVE-2022-30376 Sourcecodester Simple Social Networking Site v1.0 is vulnerable to SQL Injection via /sns/admin/members/view_member.php?id=. | 7.2 | HIGH | β | 0 |
| CVE-2022-30378 Sourcecodester Simple Social Networking Site v1.0 is vulnerable to SQL Injection via /sns/admin/?page=posts/view_post&id=. | 7.2 | HIGH | β | 0 |
| CVE-2022-30379 Sourcecodester Simple Social Networking Site v1.0 is vulnerable to SQL Injection via /sns/admin/?page=user/manage_user&id=. | 7.2 | HIGH | β | 0 |
| CVE-2021-22275 Buffer Overflow vulnerability in B&R Automation Runtime webserver allows an unauthenticated network-based attacker to stop the cyclic program on the device and cause a denial of service. | 8.6 | HIGH | β | 0 |
| CVE-2024-36274 Out-of-bounds write in the Intel(R) 800 Series Ethernet Driver for Intel(R) Ethernet Adapter Complete Driver Pack before versions 29.1 may allow an unauthenticated user to potentially enable denial of... | 6.5 | MEDIUM | β | 0 |
| CVE-2021-46785 The Property module has a vulnerability in permission control.This vulnerability can be exploited to obtain the unique device identifier. | 5.3 | MEDIUM | β | 0 |
| CVE-2021-46786 The audio module has a vulnerability in verifying the parameters passed by the application space.Successful exploitation of this vulnerability may cause out-of-bounds memory access. | 9.8 | CRITICAL | β | 0 |
| CVE-2021-46787 The AMS module has a vulnerability of improper permission control.Successful exploitation of this vulnerability may cause non-system application processes to crash. | 7.5 | HIGH | β | 0 |
| CVE-2021-46788 Third-party pop-up window coverage vulnerability in the iConnect module.Successful exploitation of this vulnerability may cause system pop-up window may be covered to mislead users to perform incorrec... | 7.5 | HIGH | β | 0 |
| CVE-2022-28821 Adobe Framemaker versions 2029u8 (and earlier) and 2020u4 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current... | N/A | NONE | β | 0 |
| CVE-2021-46789 Configuration defects in the secure OS module. Successful exploitation of this vulnerability can affect availability. | 7.5 | HIGH | β | 0 |
| CVE-2022-1714 Out-of-bounds Read in GitHub repository radareorg/radare2 prior to 5.7.0. The bug causes the program reads data past the end of the intented buffer. Typically, this can allow attackers to read sensiti... | 7.1 | HIGH | β | 0 |
| CVE-2022-22260 The kernel module has a UAF vulnerability.Successful exploitation of this vulnerability will affect data integrity and availability. | 9.1 | CRITICAL | β | 0 |
| CVE-2022-22261 The HiAIserver has a vulnerability in verifying the validity of the weight used in the model.Successful exploitation of this vulnerability will affect AI services. | 7.5 | HIGH | β | 0 |
| CVE-2022-25591 BlogEngine.NET v3.3.8.0 was discovered to contain an arbitrary file deletion vulnerability which allows attackers to delete files within the web server root directory via a crafted HTTP request. | 9.1 | CRITICAL | β | 0 |
| CVE-2022-27247 onlinetolls in cdSoft Onlinetools-Smart Winhotel.MX 2021 allows an attacker to download sensitive information about any customer (e.g., data of birth, full address, mail information, and phone number)... | 5.3 | MEDIUM | β | 0 |
| CVE-2022-28822 Adobe Framemaker versions 2029u8 (and earlier) and 2020u4 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current... | N/A | NONE | β | 0 |
| CVE-2022-28823 Adobe Framemaker versions 2029u8 (and earlier) and 2020u4 (and earlier) are affected by a Use-after-free vulnerability that could result in arbitrary code execution in the context of the current user.... | N/A | NONE | β | 0 |
| CVE-2022-28824 Adobe Framemaker versions 2029u8 (and earlier) and 2020u4 (and earlier) are affected by a Use-after-free vulnerability that could result in arbitrary code execution in the context of the current user.... | N/A | NONE | β | 0 |
| CVE-2022-28825 Adobe Framemaker versions 2029u8 (and earlier) and 2020u4 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current... | N/A | NONE | β | 0 |
| CVE-2022-28826 Adobe Framemaker versions 2029u8 (and earlier) and 2020u4 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current... | 7.8 | HIGH | β | 0 |
| CVE-2022-28827 Adobe Framemaker versions 2029u8 (and earlier) and 2020u4 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current... | N/A | NONE | β | 0 |
| CVE-2022-28828 Adobe Framemaker versions 2029u8 (and earlier) and 2020u4 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current... | N/A | NONE | β | 0 |
| CVE-2022-28829 Adobe Framemaker versions 2029u8 (and earlier) and 2020u4 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current... | N/A | NONE | β | 0 |
| CVE-2022-28830 Adobe Framemaker versions 2029u8 (and earlier) and 2020u4 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverag... | 5.5 | MEDIUM | β | 0 |
| CVE-2022-29789 The HiAIserver has a vulnerability in verifying the validity of the properties used in the model.Successful exploitation of this vulnerability will affect AI services. | 7.5 | HIGH | β | 0 |
| CVE-2022-29790 The graphics acceleration service has a vulnerability in multi-thread access to the database.Successful exploitation of this vulnerability may cause service exceptions. | 7.5 | HIGH | β | 0 |
| CVE-2022-29791 The HiAIserver has a vulnerability in verifying the validity of the weight used in the model.Successful exploitation of this vulnerability will affect AI services. | 7.5 | HIGH | β | 0 |
| CVE-2022-29792 The chip component has a vulnerability of disclosing CPU SNs.Successful exploitation of this vulnerability may affect data confidentiality. | 7.5 | HIGH | β | 0 |
| CVE-2022-29793 There is a configuration defect in the activation lock of mobile phones.Successful exploitation of this vulnerability may affect application availability. | 7.5 | HIGH | β | 0 |
| CVE-2022-29794 The frame scheduling module has a Use After Free (UAF) vulnerability.Successful exploitation of this vulnerability will affect data integrity, availability, and confidentiality. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-29795 The frame scheduling module has a null pointer dereference vulnerability. Successful exploitation of this vulnerability will affect the kernel availability. | 7.5 | HIGH | β | 0 |
| CVE-2022-29796 The HiAIserver has a vulnerability in verifying the validity of the weight used in the model.Successful exploitation of this vulnerability will affect AI services. | 7.5 | HIGH | β | 0 |
| CVE-2022-30381 Merchandise Online Store v1.0 is vulnerable to file deletion via /vloggers_merch/classes/Master.php?f=delete_img. | 6.5 | MEDIUM | β | 0 |
| CVE-2022-30385 Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=delete_order. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30386 Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=delete_featured. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30387 Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=pay_order. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30391 Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=delete_category. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30392 Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=delete_sub_category. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-30393 Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page=product/manage_product&id=. | 7.2 | HIGH | β | 0 |
| CVE-2022-30395 Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=delete_cart. | 9.8 | CRITICAL | β | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.