βΌ CVE-2022-4537 βΌ
π Read
via "National Vulnerability Database".
The Hide My WP Ghost Γ’β¬β Security Plugin plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 5.0.18. This is due to insufficient restrictions on where the IP Address information is being retrieved for request logging and login restrictions. Attackers can supply the X-Forwarded-For header with with a different IP Address that will be logged and can be used to bypass settings that may have blocked out an IP address from logging in.π Read
via "National Vulnerability Database".
βΌ CVE-2022-44420 βΌ
π Read
via "National Vulnerability Database".
In modem, there is a possible missing verification of HashMME value in Security Mode Command. This could local denial of service with no additional execution privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2022-44433 βΌ
π Read
via "National Vulnerability Database".
In phoneEx service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31239 βΌ
π Read
via "National Vulnerability Database".
An issue found in SQLite SQLite3 v.3.35.4 that allows a remote attacker to cause a denial of service via the appendvfs.c function.π Read
via "National Vulnerability Database".
βΌ CVE-2022-47334 βΌ
π Read
via "National Vulnerability Database".
In phasecheck server, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.π Read
via "National Vulnerability Database".
βΌ CVE-2022-48234 βΌ
π Read
via "National Vulnerability Database".
In FM service , there is a possible missing params check. This could lead to local denial of service in FM service .π Read
via "National Vulnerability Database".
βΌ CVE-2022-47487 βΌ
π Read
via "National Vulnerability Database".
In thermal service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service local denial of service with no additional execution privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2022-48244 βΌ
π Read
via "National Vulnerability Database".
In audio service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2022-48243 βΌ
π Read
via "National Vulnerability Database".
In audio service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2022-44419 βΌ
π Read
via "National Vulnerability Database".
In modem, there is a possible missing verification of NAS Security Mode Command Replay Attacks in LTE. This could local denial of service with no additional execution privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2022-47498 βΌ
π Read
via "National Vulnerability Database".
In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.π Read
via "National Vulnerability Database".
βΌ CVE-2023-32113 βΌ
π Read
via "National Vulnerability Database".
SAP GUI for Windows - version 7.70, 8.0, allows an unauthorized attacker to gain NTLM authentication information of a victim by tricking it into clicking a prepared shortcut file. Depending on the authorizations of the victim, the attacker can read and modify potentially sensitive information after successful exploitation.π Read
via "National Vulnerability Database".
βΌ CVE-2022-47488 βΌ
π Read
via "National Vulnerability Database".
In spipe drive, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.π Read
via "National Vulnerability Database".
βΌ CVE-2022-47485 βΌ
π Read
via "National Vulnerability Database".
In modem control device, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.π Read
via "National Vulnerability Database".
βΌ CVE-2022-39089 βΌ
π Read
via "National Vulnerability Database".
In mlog service, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.π Read
via "National Vulnerability Database".
βΌ CVE-2022-48250 βΌ
π Read
via "National Vulnerability Database".
In audio service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2022-48247 βΌ
π Read
via "National Vulnerability Database".
In audio service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2022-48383 βΌ
π Read
via "National Vulnerability Database".
.In srtd service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2023-32112 βΌ
π Read
via "National Vulnerability Database".
Vendor Master Hierarchy - versions SAP_APPL 500, SAP_APPL 600, SAP_APPL 602, SAP_APPL 603, SAP_APPL 604, SAP_APPL 605, SAP_APPL 606, SAP_APPL 616, SAP_APPL 617, SAP_APPL 618, S4CORE 100, does not perform necessary authorization checks for an authenticated user toΓ access some of its function. This could lead to modification of data impacting the integrity of the system.π Read
via "National Vulnerability Database".
βΌ CVE-2022-48377 βΌ
π Read
via "National Vulnerability Database".
In dialer service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.π Read
via "National Vulnerability Database".
βΌ CVE-2022-48386 βΌ
π Read
via "National Vulnerability Database".
the apipe driver, there is a possible use after free due to a logic error. This could lead to local denial of service with System execution privileges needed.π Read
via "National Vulnerability Database".