π΄ Protecting Hospital Networks From 'Code Dark' Scenarios π΄
π Read
via "Dark Reading".
Asset inventory, behavioral baselining, and automated response are all key to keeping patients healthy and safe. π Read
via "Dark Reading".
Dark Reading
Protecting Hospital Networks From 'Code Dark' Scenarios
Asset inventory, behavioral baselining, and automated response are all key to keeping patients healthy and safe.
βΌ CVE-2022-45942 βΌ
π Read
via "National Vulnerability Database".
A Remote Code Execution (RCE) vulnerability was found in includes/baijiacms/common.inc.php in baijiacms v4.π Read
via "National Vulnerability Database".
βΌ CVE-2022-46534 βΌ
π Read
via "National Vulnerability Database".
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the speed_dir parameter at /goform/SetSpeedWan.π Read
via "National Vulnerability Database".
βΌ CVE-2022-46549 βΌ
π Read
via "National Vulnerability Database".
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the deviceId parameter at /goform/saveParentControlInfo.π Read
via "National Vulnerability Database".
βΌ CVE-2022-46531 βΌ
π Read
via "National Vulnerability Database".
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the deviceId parameter at /goform/addWifiMacFilter.π Read
via "National Vulnerability Database".
βΌ CVE-2022-46544 βΌ
π Read
via "National Vulnerability Database".
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the cmdinput parameter at /goform/exeCommand.π Read
via "National Vulnerability Database".
βΌ CVE-2022-40624 βΌ
π Read
via "National Vulnerability Database".
pfSense pfBlockerNG through 2.1.4_27 allows remote attackers to execute arbitrary OS commands as root via the HTTP Host header, a different vulnerability than CVE-2022-31814.π Read
via "National Vulnerability Database".
βΌ CVE-2022-46550 βΌ
π Read
via "National Vulnerability Database".
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the urls parameter at /goform/saveParentControlInfo.π Read
via "National Vulnerability Database".
βΌ CVE-2022-46546 βΌ
π Read
via "National Vulnerability Database".
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the entrys parameter at /goform/RouteStatic.π Read
via "National Vulnerability Database".
βΌ CVE-2022-46540 βΌ
π Read
via "National Vulnerability Database".
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the entrys parameter at /goform/addressNat.π Read
via "National Vulnerability Database".
βΌ CVE-2022-45666 βΌ
π Read
via "National Vulnerability Database".
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the list parameter in the formwrlSSIDset function.π Read
via "National Vulnerability Database".
βΌ CVE-2022-46532 βΌ
π Read
via "National Vulnerability Database".
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the deviceMac parameter at /goform/addWifiMacFilter.π Read
via "National Vulnerability Database".
βΌ CVE-2022-46533 βΌ
π Read
via "National Vulnerability Database".
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the limitSpeed parameter at /goform/SetClientState.π Read
via "National Vulnerability Database".
βΌ CVE-2022-46542 βΌ
π Read
via "National Vulnerability Database".
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/addressNat.π Read
via "National Vulnerability Database".
βΌ CVE-2022-46545 βΌ
π Read
via "National Vulnerability Database".
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/NatStaticSetting.π Read
via "National Vulnerability Database".
βΌ CVE-2022-45665 βΌ
π Read
via "National Vulnerability Database".
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the funcpara1 parameter in the formSetCfm function.π Read
via "National Vulnerability Database".
βΌ CVE-2022-46547 βΌ
π Read
via "National Vulnerability Database".
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/VirtualSer.π Read
via "National Vulnerability Database".
βΌ CVE-2022-46538 βΌ
π Read
via "National Vulnerability Database".
Tenda F1203 V2.0.1.6 was discovered to contain a command injection vulnerability via the mac parameter at /goform/WriteFacMac.π Read
via "National Vulnerability Database".
βΌ CVE-2022-46548 βΌ
π Read
via "National Vulnerability Database".
Tenda F1203 V2.0.1.6 was discovered to contain a buffer overflow via the page parameter at /goform/DhcpListClient.π Read
via "National Vulnerability Database".
βΌ CVE-2022-44643 βΌ
π Read
via "National Vulnerability Database".
In Grafana Enterprise Metrics (GEM) before 1.7.1 and 2.x before 2.3.1, after creating an Access Policy that is granted access to all tenants as well as specified a specific label matcher, the label matcher is erroneously not propagated to queries performed with this access policy. Thus, more access is granted to the policy than intended.π Read
via "National Vulnerability Database".
βΌ CVE-2022-4619 βΌ
π Read
via "National Vulnerability Database".
The Sidebar Widgets by CodeLights plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Γ’β¬ΛExtra CSS classΓ’β¬β’ parameter in versions up to, and including, 1.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.π Read
via "National Vulnerability Database".