Total
7966 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-0904 | 1 Mattermost | 1 Mattermost Server | 2022-03-15 | 4.0 MEDIUM | 6.5 MEDIUM |
| A stack overflow bug in the document extractor in Mattermost Server in versions up to and including 6.3.2 allows an attacker to crash the server via submitting a maliciously crafted Apple Pages document. | |||||
| CVE-2022-0903 | 1 Mattermost | 1 Mattermost Server | 2022-03-15 | 5.0 MEDIUM | 7.5 HIGH |
| A call stack overflow bug in the SAML login feature in Mattermost server in versions up to and including 6.3.2 allows an attacker to crash the server via submitting a maliciously crafted POST body. | |||||
| CVE-2021-46408 | 1 Tenda | 2 Ax12, Ax12 Firmware | 2022-03-15 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX12 v22.03.01.21 was discovered to contain a stack buffer overflow in the function sub_422CE4. This vulnerability allows attackers to cause a Denial of Service (DoS) via the strcpy parameter. | |||||
| CVE-2022-25234 | 1 Omron | 1 Cx-programmer | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| Out-of-bounds write vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4.60) suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-21124. | |||||
| CVE-2022-24457 | 1 Microsoft | 1 Heif Image Extension | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| HEIF Image Extensions Remote Code Execution Vulnerability. | |||||
| CVE-2022-24456 | 1 Microsoft | 1 Hevc Video Extensions | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| HEVC Video Extensions Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22006, CVE-2022-22007, CVE-2022-23301, CVE-2022-24452, CVE-2022-24453. | |||||
| CVE-2022-24453 | 1 Microsoft | 1 Hevc Video Extensions | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| HEVC Video Extensions Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22006, CVE-2022-22007, CVE-2022-23301, CVE-2022-24452, CVE-2022-24456. | |||||
| CVE-2021-44335 | 1 Ok-file-formats Project | 1 Ok-file-formats | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| David Brackeen ok-file-formats 203defd is vulnerable to Buffer Overflow. When the function of the ok-file-formats project is used, a heap-buffer-overflow occurs in function ok_png_transform_scanline() in "/ok_png.c:533". | |||||
| CVE-2021-40064 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2022-03-14 | 7.8 HIGH | 7.5 HIGH |
| There is a heap-based buffer overflow vulnerability in system components. Successful exploitation of this vulnerability may affect system stability. | |||||
| CVE-2021-40060 | 1 Huawei | 2 Emui, Magic Ui | 2022-03-14 | 7.8 HIGH | 7.5 HIGH |
| There is a heap-based buffer overflow vulnerability in the video framework. Successful exploitation of this vulnerability may affect availability. | |||||
| CVE-2021-40058 | 1 Huawei | 2 Emui, Magic Ui | 2022-03-14 | 7.8 HIGH | 7.5 HIGH |
| There is a heap-based buffer overflow vulnerability in the video framework. Successful exploitation of this vulnerability may affect availability. | |||||
| CVE-2022-22007 | 1 Microsoft | 1 Hevc Video Extensions | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| HEVC Video Extensions Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22006, CVE-2022-23301, CVE-2022-24452, CVE-2022-24453, CVE-2022-24456. | |||||
| CVE-2021-40057 | 1 Huawei | 2 Emui, Magic Ui | 2022-03-14 | 7.8 HIGH | 7.5 HIGH |
| There is a heap-based and stack-based buffer overflow vulnerability in the video framework. Successful exploitation of this vulnerability may affect availability. | |||||
| CVE-2022-22006 | 1 Microsoft | 1 Hevc Video Extensions | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| HEVC Video Extensions Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22007, CVE-2022-23301, CVE-2022-24452, CVE-2022-24453, CVE-2022-24456. | |||||
| CVE-2022-25547 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2022-03-11 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow in the function fromSetSysTime. This vulnerability allows attackers to cause a Denial of Service (DoS) via the time parameter. | |||||
| CVE-2022-25549 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2022-03-11 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow in the function formSetSysToolDDNS. This vulnerability allows attackers to cause a Denial of Service (DoS) via the ddnsEn parameter. | |||||
| CVE-2022-25557 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2022-03-11 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX1806 v1.0.0.1 was discovered to contain a heap overflow in the function saveParentControlInfo. This vulnerability allows attackers to cause a Denial of Service (DoS) via the urls parameter. | |||||
| CVE-2022-25555 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2022-03-11 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow in the function fromSetSysTime. This vulnerability allows attackers to cause a Denial of Service (DoS) via the ntpServer parameter. | |||||
| CVE-2022-25558 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2022-03-11 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow in the function formSetProvince. This vulnerability allows attackers to cause a Denial of Service (DoS) via the ProvinceCode parameter. | |||||
| CVE-2022-25566 | 1 Tenda | 2 Ax1806, Ax1806 Firmware | 2022-03-11 | 7.8 HIGH | 7.5 HIGH |
| Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow in the function saveParentControlInfo. This vulnerability allows attackers to cause a Denial of Service (DoS) via the time parameter. | |||||