Lista CVE 2023/32xxx

CVE nel gruppo: 32xxx

CVE-2023-32042 (N/A)

CVE-2023-32043 (OLE Automation Information Disclosure Vulnerability)

CVE-2023-32044 (Windows Remote Desktop Security Feature Bypass Vulnerability)

CVE-2023-32045 (Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability)

CVE-2023-32046 (Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability)

CVE-2023-32047 (Windows MSHTML Platform Elevation of Privilege Vulnerability)

CVE-2023-32049 (Paint 3D Remote Code Execution Vulnerability)

CVE-2023-32050 (Windows SmartScreen Security Feature Bypass Vulnerability)

CVE-2023-32051 (Windows Installer Elevation of Privilege Vulnerability)

CVE-2023-32052 (Raw Image Extension Remote Code Execution Vulnerability)

CVE-2023-32053 (Microsoft Power Apps (online) Spoofing Vulnerability)

CVE-2023-32054 (Windows Installer Elevation of Privilege Vulnerability)

CVE-2023-32055 (Volume Shadow Copy Elevation of Privilege Vulnerability)

CVE-2023-32056 (Active Template Library Elevation of Privilege Vulnerability)

CVE-2023-32057 (Windows Server Update Service (WSUS) Elevation of Privilege Vulnerability)

CVE-2023-32058 (Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability)

CVE-2023-32059 (Vyper vulnerable to integer overflow in loop)

CVE-2023-32060 (Vyper vulnerable to incorrect ordering of arguments for kwargs passed to internal calls)

CVE-2023-32061 (DHIS2 Core Improper Access Control with Category Option Combination sharing in /api/trackedEntityInstance and /api/events)

CVE-2023-32062 (Discourse Topic Creation Page Allows iFrame Tag without Restrictions)

CVE-2023-32063 (OroCalendarBundle has incorrect system calendar events visibility)

CVE-2023-32064 (OroCRMCallBundle has incorrect call view page visibility)

CVE-2023-32065 (OroCommerce Customer Portal Incorrect Customer and Customer Group Frontend Menus pages visibility)

CVE-2023-32066 (OroCommerce get-totals-for-checkout API endpoint returns unwanted data)

CVE-2023-32067 (Time Tracker has Stored XSS vulnerability in Week View plugin)

CVE-2023-32068 (0-byte UDP payload DoS in c-ares)

CVE-2023-32069 (URL Redirection to Untrusted Site in XWiki)

CVE-2023-32070 (XWiki Platform privilege escalation (PR)/RCE from account through class sheet)

CVE-2023-32071 (Improper Neutralization of Script in Attributes in XWiki (X)HTML renderers)

CVE-2023-32072 (XWiki Platform vulnerable to RXSS via editor parameter – importinline template)

CVE-2023-32073 (Tuleap vulnerable toXSS via the triggered job URL of a Jenkins job)

CVE-2023-32074 (AVideo command injection vulnerability)

CVE-2023-32075 (Nextcloud user_oidc app is missing brute force protection)

CVE-2023-32076 (Pimcore vulnerable to Business Logic Errors in Customer automation rules)

CVE-2023-32077 (in-toto vulnerable to Configuration Read From Local Directory)

CVE-2023-32078 (Netmaker has Hardcoded DNS Secret Key)

CVE-2023-32079 (Netmaker IDOR Vulnerability Allows User to Update Other User’s Password)

CVE-2023-32080 (Netmaker Privilige Escalation Vulnerability)

CVE-2023-32081 (Wings vulnerable to escape to host from installation container)

CVE-2023-32082 (Vert.x STOMP server process client frames that would not send initially a connect frame)

CVE-2023-32083 (etcd key name can be accessed via LeaseTimeToLive API)

CVE-2023-32084 (Microsoft Failover Cluster Information Disclosure Vulnerability)

CVE-2023-32085 (HTTP.sys Denial of Service Vulnerability)

CVE-2023-32086 (Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability)

CVE-2023-32087 (N/A)

CVE-2023-32088 (N/A)

CVE-2023-32089 (N/A)

CVE-2023-32090 (N/A)

CVE-2023-32091 (N/A)

CVE-2023-32092 (WordPress POEditor Plugin <= 0.9.4 is vulnerable to Cross Site Request Forgery (CSRF))

CVE-2023-32093 (WordPress Community by PeepSo Plugin <= 6.0.9.0 is vulnerable to Cross Site Request Forgery (CSRF))

CVE-2023-32094 (WordPress TPG Redirect Plugin <= 1.0.7 is vulnerable to Cross Site Request Forgery (CSRF))

CVE-2023-32095 (WordPress Extended Post Status plugin <= 1.0.19 - Broken Access Control vulnerability)

CVE-2023-32096 (WordPress Rename Media Files Plugin <= 1.0.1 is vulnerable to Remote Code Execution (RCE))

CVE-2023-32097 (Key duplication in GSDK)

CVE-2023-32098 (Key duplication in GSDK)

CVE-2023-32099 (Key duplication in GSDK)

CVE-2023-32100 (Key duplication in GSDK)

CVE-2023-32101 (Key duplication in GSDK)

CVE-2023-32102 (WordPress Library Viewer Plugin <= 2.0.6 is vulnerable to Open Redirection)