Total
22706 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-44557 | 1 Huawei | 2 Emui, Harmonyos | 2022-11-14 | N/A | 7.5 HIGH |
| The SmartTrimProcessEvent module has a vulnerability of obtaining the read and write permissions on arbitrary system files. Successful exploitation of this vulnerability may affect data confidentiality. | |||||
| CVE-2022-44797 | 2 Btcd Project, Lightning Network Daemon Project | 2 Btcd, Lightning Network Daemon | 2022-11-14 | N/A | 9.8 CRITICAL |
| btcd before 0.23.2, as used in Lightning Labs lnd before 0.15.2-beta and other Bitcoin-related products, mishandles witness size checking. | |||||
| CVE-2022-41063 | 1 Microsoft | 5 365 Apps, Excel, Office and 2 more | 2022-11-14 | N/A | 7.8 HIGH |
| Microsoft Excel Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-41106. | |||||
| CVE-2022-41085 | 1 Microsoft | 1 Azure Cyclecloud | 2022-11-14 | N/A | 8.8 HIGH |
| Azure CycleCloud Elevation of Privilege Vulnerability. | |||||
| CVE-2022-34732 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2022-11-14 | N/A | 8.8 HIGH |
| Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34726, CVE-2022-34727, CVE-2022-34730, CVE-2022-34734. | |||||
| CVE-2022-38043 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2022-11-14 | N/A | 5.5 MEDIUM |
| Windows Security Support Provider Interface Information Disclosure Vulnerability. | |||||
| CVE-2022-34730 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2022-11-14 | N/A | 8.8 HIGH |
| Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34726, CVE-2022-34727, CVE-2022-34732, CVE-2022-34734. | |||||
| CVE-2022-34734 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2022-11-14 | N/A | 8.8 HIGH |
| Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34726, CVE-2022-34727, CVE-2022-34730, CVE-2022-34732. | |||||
| CVE-2022-38034 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2022-11-14 | N/A | 8.8 HIGH |
| Windows Workstation Service Elevation of Privilege Vulnerability. | |||||
| CVE-2022-38022 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2022-11-14 | N/A | 3.3 LOW |
| Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37988, CVE-2022-37990, CVE-2022-37991, CVE-2022-37995, CVE-2022-38037, CVE-2022-38038, CVE-2022-38039. | |||||
| CVE-2022-41104 | 1 Microsoft | 3 365 Apps, Excel, Office | 2022-11-10 | N/A | 7.8 HIGH |
| Microsoft Excel Security Feature Bypass Vulnerability. | |||||
| CVE-2022-3447 | 1 Google | 2 Android, Chrome | 2022-11-10 | N/A | 4.3 MEDIUM |
| Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 106.0.5249.119 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: High) | |||||
| CVE-2022-41119 | 1 Microsoft | 3 Visual Studio 2017, Visual Studio 2019, Visual Studio 2022 | 2022-11-10 | N/A | 7.8 HIGH |
| Visual Studio Remote Code Execution Vulnerability. | |||||
| CVE-2022-3726 | 1 Gitlab | 1 Gitlab | 2022-11-10 | N/A | 9.0 CRITICAL |
| Lack of sand-boxing of OpenAPI documents in GitLab CE/EE affecting all versions from 12.6 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2 allows an attacker to trick a user to click on the Swagger OpenAPI viewer and issue HTTP requests that affect the victim's account. | |||||
| CVE-2022-3483 | 1 Gitlab | 1 Gitlab | 2022-11-10 | N/A | 5.4 MEDIUM |
| An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.1 before 15.3.5, all versions starting from 15.4 before 15.4.4, all versions starting from 15.5 before 15.5.2. A malicious maintainer could exfiltrate a Datadog integration's access token by modifying the integration URL such that authenticated requests are sent to an attacker controlled server. | |||||
| CVE-2022-2761 | 1 Gitlab | 1 Gitlab | 2022-11-10 | N/A | 5.3 MEDIUM |
| An information disclosure issue in GitLab CE/EE affecting all versions from 14.4 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2 allows an attacker to use GitLab Flavored Markdown (GFM) references in a Jira issue to disclose the names of resources they don't have access to. | |||||
| CVE-2016-4277 | 5 Adobe, Apple, Google and 2 more | 8 Flash Player, Flash Player Desktop Runtime, Mac Os X and 5 more | 2022-11-10 | 4.3 MEDIUM | 6.5 MEDIUM |
| Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2016-4271 and CVE-2016-4278. | |||||
| CVE-2016-1019 | 5 Adobe, Apple, Google and 2 more | 13 Air Desktop Runtime, Air Sdk, Air Sdk \& Compiler and 10 more | 2022-11-10 | 10.0 HIGH | 9.8 CRITICAL |
| Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors, as exploited in the wild in April 2016. | |||||
| CVE-2021-46851 | 1 Huawei | 2 Emui, Harmonyos | 2022-11-10 | N/A | 9.8 CRITICAL |
| The DRM module has a vulnerability in verifying the secure memory attributes. Successful exploitation of this vulnerability may cause abnormal video playback. | |||||
| CVE-2022-44550 | 1 Huawei | 2 Emui, Harmonyos | 2022-11-10 | N/A | 7.5 HIGH |
| The graphics display module has a UAF vulnerability when traversing graphic layers. Successful exploitation of this vulnerability may affect system availability. | |||||