Total
210374 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-24465 | 1 Microsoft | 1 Intune Company Portal | 2022-03-14 | 2.1 LOW | 5.5 MEDIUM |
| Microsoft Intune Portal for iOS Security Feature Bypass Vulnerability. | |||||
| CVE-2022-24463 | 1 Microsoft | 1 Exchange Server | 2022-03-14 | 4.0 MEDIUM | 6.5 MEDIUM |
| Microsoft Exchange Server Spoofing Vulnerability. | |||||
| CVE-2022-24462 | 1 Microsoft | 2 365 Apps, Office | 2022-03-14 | 4.3 MEDIUM | 5.5 MEDIUM |
| Microsoft Word Security Feature Bypass Vulnerability. | |||||
| CVE-2022-24461 | 1 Microsoft | 2 365 Apps, Office | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| Microsoft Office Visio Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-24509, CVE-2022-24510. | |||||
| CVE-2022-24719 | 1 Fluture-node Project | 1 Fluture-node | 2022-03-14 | 5.8 MEDIUM | 6.1 MEDIUM |
| Fluture-Node is a FP-style HTTP and streaming utils for Node based on Fluture. Using `followRedirects` or `followRedirectsWith` with any of the redirection strategies built into fluture-node 4.0.0 or 4.0.1, paired with a request that includes confidential headers such as Authorization or Cookie, exposes you to a vulnerability where, if the destination server were to redirect the request to a server on a third-party domain, or the same domain over unencrypted HTTP, the headers would be included in the follow-up request and be exposed to the third party, or potential http traffic sniffing. The redirection strategies made available in version 4.0.2 automatically redact confidential headers when a redirect is followed across to another origin. A workaround has been identified by using a custom redirection strategy via the `followRedirectsWith` function. The custom strategy can be based on the new strategies available in fluture-node@4.0.2. | |||||
| CVE-2022-24457 | 1 Microsoft | 1 Heif Image Extension | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| HEIF Image Extensions Remote Code Execution Vulnerability. | |||||
| CVE-2022-24456 | 1 Microsoft | 1 Hevc Video Extensions | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| HEVC Video Extensions Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22006, CVE-2022-22007, CVE-2022-23301, CVE-2022-24452, CVE-2022-24453. | |||||
| CVE-2022-24455 | 1 Microsoft | 6 Windows 10, Windows 8.1, Windows Rt 8.1 and 3 more | 2022-03-14 | 7.2 HIGH | 7.8 HIGH |
| Windows CD-ROM Driver Elevation of Privilege Vulnerability. | |||||
| CVE-2022-0855 | 1 Microweber | 1 Whmcs | 2022-03-14 | 5.8 MEDIUM | 6.1 MEDIUM |
| Improper Resolution of Path Equivalence in GitHub repository microweber-dev/whmcs_plugin prior to 0.0.4. | |||||
| CVE-2022-24453 | 1 Microsoft | 1 Hevc Video Extensions | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| HEVC Video Extensions Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22006, CVE-2022-22007, CVE-2022-23301, CVE-2022-24452, CVE-2022-24456. | |||||
| CVE-2022-24452 | 1 Microsoft | 1 Hevc Video Extensions | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| HEVC Video Extensions Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22006, CVE-2022-22007, CVE-2022-23301, CVE-2022-24453, CVE-2022-24456. | |||||
| CVE-2022-24451 | 1 Microsoft | 1 Vp9 Video Extensions | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| VP9 Video Extensions Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-24501. | |||||
| CVE-2022-23301 | 1 Microsoft | 1 Hevc Video Extensions | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| HEVC Video Extensions Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22006, CVE-2022-22007, CVE-2022-24452, CVE-2022-24453, CVE-2022-24456. | |||||
| CVE-2022-23300 | 1 Microsoft | 1 Raw Image Extension | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| Raw Image Extension Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-23295. | |||||
| CVE-2022-23295 | 1 Microsoft | 1 Raw Image Extension | 2022-03-14 | 6.8 MEDIUM | 7.8 HIGH |
| Raw Image Extension Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-23300. | |||||
| CVE-2022-24517 | 1 Microsoft | 1 Azure Site Recovery | 2022-03-14 | 6.5 MEDIUM | 7.2 HIGH |
| Azure Site Recovery Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-24467, CVE-2022-24468, CVE-2022-24470, CVE-2022-24471, CVE-2022-24520. | |||||
| CVE-2022-24518 | 1 Microsoft | 1 Azure Site Recovery | 2022-03-14 | 4.0 MEDIUM | 4.9 MEDIUM |
| Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-24469, CVE-2022-24506, CVE-2022-24515, CVE-2022-24519. | |||||
| CVE-2022-24519 | 1 Microsoft | 1 Azure Site Recovery | 2022-03-14 | 4.0 MEDIUM | 4.9 MEDIUM |
| Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-24469, CVE-2022-24506, CVE-2022-24515, CVE-2022-24518. | |||||
| CVE-2022-24520 | 1 Microsoft | 1 Azure Site Recovery | 2022-03-14 | 6.5 MEDIUM | 7.2 HIGH |
| Azure Site Recovery Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-24467, CVE-2022-24468, CVE-2022-24470, CVE-2022-24471, CVE-2022-24517. | |||||
| CVE-2022-24471 | 1 Microsoft | 1 Azure Site Recovery | 2022-03-14 | 6.5 MEDIUM | 7.2 HIGH |
| Azure Site Recovery Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-24467, CVE-2022-24468, CVE-2022-24470, CVE-2022-24517, CVE-2022-24520. | |||||