Lista CVE 2022/23xxx

CVE nel gruppo: 23xxx

CVE-2022-23061 (Clicca per dettagli)

CVE-2022-23063 (Shopizer – IDOR delete superadmin)

CVE-2022-23064 (Shopizer – Insufficient Session Expiration)

CVE-2022-23065 (Snipe-IT – Host Header Injection)

CVE-2022-23066 (Vendure – XSS via SVG File Upload)

CVE-2022-23067 (Solana rBPF – Incorrect Calculation in sdiv instruction)

CVE-2022-23068 (ToolJet – Token Leakage via Referer Header)

CVE-2022-23071 (ToolJet – HTML Injection in Invite New User)

CVE-2022-23072 (Recipes – SSRF on Import)

CVE-2022-23073 (Recipes – Stored XSS in Add to Cart)

CVE-2022-23074 (Recipes – Stored XSS in Clipboard)

CVE-2022-23077 (Recipes – Stored XSS in Name Parameter)

CVE-2022-23078 (Habitica – DOM XSS in login page)

CVE-2022-23079 (Habitica – Open redirect in login page)

CVE-2022-23080 (motoradmin – host header Injection in the reset password functionality)

CVE-2022-23081 (directus – SSRF which leads to internal port scan)

CVE-2022-23082 (Openlibrary – Reflected XSS)

CVE-2022-23083 (CureKit – Path Traversal in isFileOutsideDir)

CVE-2022-23084 (Clicca per dettagli)

CVE-2022-23085 (Potential jail escape vulnerabilities in netmap)

CVE-2022-23086 (Potential jail escape vulnerabilities in netmap)

CVE-2022-23087 (mpr/mps/mpt driver ioctl heap out-of-bounds write)

CVE-2022-23088 (Bhyve e82545 device emulation out-of-bounds write)

CVE-2022-23089 (802.11 heap buffer overflow)

CVE-2022-23090 (Out of bound read in elf_note_prpsinfo())

CVE-2022-23091 (AIO credential reference count leak)

CVE-2022-23092 (Memory disclosure by stale virtual memory mapping)

CVE-2022-23093 (Missing bounds check in 9p message handling)

CVE-2022-23094 (Stack overflow in ping(8))

CVE-2022-23095 (Clicca per dettagli)

CVE-2022-23096 (Clicca per dettagli)

CVE-2022-23097 (Clicca per dettagli)

CVE-2022-23098 (Clicca per dettagli)

CVE-2022-23099 (Clicca per dettagli)

CVE-2022-23100 (Clicca per dettagli)

CVE-2022-23101 (Clicca per dettagli)

CVE-2022-23102 (Clicca per dettagli)

CVE-2022-23103 (Clicca per dettagli)

CVE-2022-23104 (Clicca per dettagli)

CVE-2022-23105 (WIN-911 2021 Incorrect Default Permissions)

CVE-2022-23106 (Clicca per dettagli)

CVE-2022-23107 (Clicca per dettagli)

CVE-2022-23108 (Clicca per dettagli)

CVE-2022-23109 (Clicca per dettagli)

CVE-2022-23110 (Clicca per dettagli)

CVE-2022-23111 (Clicca per dettagli)

CVE-2022-23112 (Clicca per dettagli)

CVE-2022-23113 (Clicca per dettagli)

CVE-2022-23114 (Clicca per dettagli)

CVE-2022-23115 (Clicca per dettagli)

CVE-2022-23116 (Clicca per dettagli)

CVE-2022-23117 (Clicca per dettagli)

CVE-2022-23118 (Clicca per dettagli)

CVE-2022-23119 (Clicca per dettagli)

CVE-2022-23120 (Clicca per dettagli)

CVE-2022-23121 (Clicca per dettagli)

CVE-2022-23122 (Clicca per dettagli)

CVE-2022-23123 (Clicca per dettagli)

CVE-2022-23124 (Clicca per dettagli)

CVE-2022-23125 (Clicca per dettagli)

CVE-2022-23126 (Clicca per dettagli)

CVE-2022-23127 (Clicca per dettagli)

CVE-2022-23128 (Clicca per dettagli)

CVE-2022-23129 (Clicca per dettagli)

CVE-2022-23130 (Clicca per dettagli)

CVE-2022-23131 (Clicca per dettagli)

CVE-2022-23132 (Unsafe client-side session storage leading to authentication bypass/instance takeover via Zabbix Frontend with configured SAML)

CVE-2022-23133 (Incorrect permissions of [/var/run/zabbix] forces dac_override)

CVE-2022-23134 (Stored XSS in host groups configuration window in Zabbix Frontend)

CVE-2022-23135 (Possible view of the setup pages by unauthenticated users if config file already exists)

CVE-2022-23136 (Clicca per dettagli)

CVE-2022-23137 (Clicca per dettagli)

CVE-2022-23138 (Clicca per dettagli)

CVE-2022-23139 (Clicca per dettagli)

CVE-2022-23141 (Clicca per dettagli)

CVE-2022-23142 (Clicca per dettagli)

CVE-2022-23143 (Clicca per dettagli)

CVE-2022-23144 (Clicca per dettagli)

CVE-2022-23155 (Clicca per dettagli)

CVE-2022-23156 (Clicca per dettagli)