Vulnerabilidades CVE
Base de datos de vulnerabilidades CVE enriquecida con datos de CISA KEV y NVD
| CVE ID | CVSS | Severidad | KEV | Avistamientos |
|---|---|---|---|---|
| CVE-2021-43973 An unrestricted file upload vulnerability in /UploadPsIcon.jsp in SysAid ITIL 20.4.74 b10 allows a remote authenticated attacker to upload an arbitrary file via the file parameter in the HTTP POST bod... | 8.8 | HIGH | β | 0 |
| CVE-2021-43974 An issue was discovered in SysAid ITIL 20.4.74 b10. The /enduserreg endpoint is used to register end users anonymously, but does not respect the server-side setting that determines if anonymous users ... | 5.3 | MEDIUM | β | 0 |
| CVE-2022-21833 Virtual Machine IDE Drive Elevation of Privilege Vulnerability | 7.8 | HIGH | β | 0 |
| CVE-2022-21846 Microsoft Exchange Server Remote Code Execution Vulnerability | 9.0 | CRITICAL | β | 0 |
| CVE-2022-21834 Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21835 Microsoft Cryptographic Services Elevation of Privilege Vulnerability | 7.8 | HIGH | β | 0 |
| CVE-2022-21836 Windows Certificate Spoofing Vulnerability | 7.8 | HIGH | β | 0 |
| CVE-2022-21837 Microsoft SharePoint Server Remote Code Execution Vulnerability | 8.3 | HIGH | β | 0 |
| CVE-2022-21931 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability | 4.2 | MEDIUM | β | 0 |
| CVE-2022-21838 Windows Cleanup Manager Elevation of Privilege Vulnerability | 5.5 | MEDIUM | β | 0 |
| CVE-2022-21839 Windows Event Tracing Discretionary Access Control List Denial of Service Vulnerability | 6.1 | MEDIUM | β | 0 |
| CVE-2022-21840 Microsoft Office Remote Code Execution Vulnerability | 8.8 | HIGH | β | 0 |
| CVE-2022-21841 Microsoft Excel Remote Code Execution Vulnerability | 7.8 | HIGH | β | 0 |
| CVE-2022-21842 Microsoft Word Remote Code Execution Vulnerability | 7.8 | HIGH | β | 0 |
| CVE-2022-21843 Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability | 7.5 | HIGH | β | 0 |
| CVE-2022-21884 Local Security Authority Subsystem Service Elevation of Privilege Vulnerability | 7.8 | HIGH | β | 0 |
| CVE-2022-21847 Windows Hyper-V Denial of Service Vulnerability | 6.5 | MEDIUM | β | 0 |
| CVE-2022-21848 Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability | 7.5 | HIGH | β | 0 |
| CVE-2022-21849 Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability | 9.8 | CRITICAL | β | 0 |
| CVE-2022-21850 Remote Desktop Client Remote Code Execution Vulnerability | 8.8 | HIGH | β | 0 |
| CVE-2022-21851 Remote Desktop Client Remote Code Execution Vulnerability | 8.8 | HIGH | β | 0 |
| CVE-2022-21852 Windows DWM Core Library Elevation of Privilege Vulnerability | 7.8 | HIGH | β | 0 |
| CVE-2022-21855 Microsoft Exchange Server Remote Code Execution Vulnerability | 9.0 | CRITICAL | β | 0 |
| CVE-2022-21857 Active Directory Domain Services Elevation of Privilege Vulnerability | 8.8 | HIGH | β | 0 |
| CVE-2022-21858 Windows Bind Filter Driver Elevation of Privilege Vulnerability | 7.8 | HIGH | β | 0 |
| CVE-2022-21859 Windows Accounts Control Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21860 Windows AppContracts API Server Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21885 Windows Remote Access Connection Manager Elevation of Privilege Vulnerability | 7.8 | HIGH | β | 0 |
| CVE-2022-21887 Win32k Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21861 Task Flow Data Engine Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21862 Windows Application Model Core API Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21863 Windows StateRepository API Server file Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21864 Windows UI Immersive Server API Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21865 Connected Devices Platform Service Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21913 Local Security Authority (Domain Policy) Remote Protocol Security Feature Bypass | 5.3 | MEDIUM | β | 0 |
| CVE-2022-21914 Windows Remote Access Connection Manager Elevation of Privilege Vulnerability | 7.8 | HIGH | β | 0 |
| CVE-2022-21866 Windows System Launcher Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21867 Windows Push Notifications Apps Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21868 Windows Devices Human Interface Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21869 Clipboard User Service Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21870 Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21871 Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21872 Windows Event Tracing Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21873 Tile Data Repository Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21874 Windows Security Center API Remote Code Execution Vulnerability | 7.8 | HIGH | β | 0 |
| CVE-2022-21875 Windows Storage Elevation of Privilege Vulnerability | 7.0 | HIGH | β | 0 |
| CVE-2022-21876 Win32k Information Disclosure Vulnerability | 5.5 | MEDIUM | β | 0 |
| CVE-2022-21915 Windows GDI+ Information Disclosure Vulnerability | 6.5 | MEDIUM | β | 0 |
| CVE-2022-21877 Storage Spaces Controller Information Disclosure Vulnerability | 5.5 | MEDIUM | β | 0 |
| CVE-2022-21878 Windows Geolocation Service Remote Code Execution Vulnerability | 7.8 | HIGH | β | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.