‼ CVE-2022-35834 ‼
📖 Read
via "National Vulnerability Database".
Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-34733, CVE-2022-35835, CVE-2022-35836, CVE-2022-35840.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-30196 ‼
📖 Read
via "National Vulnerability Database".
Windows Secure Channel Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-35833.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-33679 ‼
📖 Read
via "National Vulnerability Database".
Windows Kerberos Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-33647.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-34730 ‼
📖 Read
via "National Vulnerability Database".
Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34726, CVE-2022-34727, CVE-2022-34732, CVE-2022-34734.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-34726 ‼
📖 Read
via "National Vulnerability Database".
Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34727, CVE-2022-34730, CVE-2022-34732, CVE-2022-34734.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-35836 ‼
📖 Read
via "National Vulnerability Database".
Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-34733, CVE-2022-35834, CVE-2022-35835, CVE-2022-35840.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-35833 ‼
📖 Read
via "National Vulnerability Database".
Windows Secure Channel Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-30196.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-35838 ‼
📖 Read
via "National Vulnerability Database".
HTTP V3 Denial of Service Vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-37956 ‼
📖 Read
via "National Vulnerability Database".
Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37957, CVE-2022-37964.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-35841 ‼
📖 Read
via "National Vulnerability Database".
Windows Enterprise App Management Service Remote Code Execution Vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-37954 ‼
📖 Read
via "National Vulnerability Database".
DirectX Graphics Kernel Elevation of Privilege Vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-37955 ‼
📖 Read
via "National Vulnerability Database".
Windows Group Policy Elevation of Privilege Vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-36107 ‼
📖 Read
via "National Vulnerability Database".
TYPO3 is an open source PHP based web content management system released under the GNU GPL. It has been discovered that the `FileDumpController` (backend and frontend context) is vulnerable to cross-site scripting when malicious files are displayed using this component. A valid backend user account is needed to exploit this vulnerability. Update to TYPO3 version 7.6.58 ELTS, 8.7.48 ELTS, 9.5.37 ELTS, 10.4.32 or 11.5.16 that fix the problem. There are no known workarounds for this issue.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-38019 ‼
📖 Read
via "National Vulnerability Database".
AV1 Video Extension Remote Code Execution Vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-39208 ‼
📖 Read
via "National Vulnerability Database".
Onedev is an open source, self-hosted Git Server with CI/CD and Kanban. All files in the /opt/onedev/sites/ directory are exposed and can be read by unauthenticated users. This directory contains all projects, including their bare git repos and build artifacts. This file disclosure vulnerability can be used by unauthenticated attackers to leak all project files of any project. Since project IDs are incremental, an attacker could iterate through them and leak all project data. This issue has been resolved in version 7.3.0 and users are advised to upgrade. There are no known workarounds for this issue.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-37959 ‼
📖 Read
via "National Vulnerability Database".
Network Device Enrollment Service (NDES) Security Feature Bypass Vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-38013 ‼
📖 Read
via "National Vulnerability Database".
.NET Core and Visual Studio Denial of Service Vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-40635 ‼
📖 Read
via "National Vulnerability Database".
Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via Groovy Sandbox Bypass.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-38005 ‼
📖 Read
via "National Vulnerability Database".
Windows Print Spooler Elevation of Privilege Vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-38020 ‼
📖 Read
via "National Vulnerability Database".
Visual Studio Code Elevation of Privilege Vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-37969 ‼
📖 Read
via "National Vulnerability Database".
Windows Common Log File System Driver Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-35803.📖 Read
via "National Vulnerability Database".