Total
210374 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-20472 | 1 Google | 1 Android | 2022-12-14 | N/A | 9.8 CRITICAL |
In toLanguageTag of LocaleListCache.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-239210579 | |||||
CVE-2022-20471 | 1 Google | 1 Android | 2022-12-14 | N/A | 5.5 MEDIUM |
In SendIncDecRestoreCmdPart2 of NxpMfcReader.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-238177877 | |||||
CVE-2022-20470 | 1 Google | 1 Android | 2022-12-14 | N/A | 7.8 HIGH |
In bindRemoteViewsService of AppWidgetServiceImpl.java, there is a possible way to bypass background activity launch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-234013191 | |||||
CVE-2022-20469 | 1 Google | 1 Android | 2022-12-14 | N/A | 8.8 HIGH |
In avct_lcb_msg_asmbl of avct_lcb_act.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-230867224 | |||||
CVE-2022-20468 | 1 Google | 1 Android | 2022-12-14 | N/A | 6.5 MEDIUM |
In BNEP_ConnectResp of bnep_api.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-228450451 | |||||
CVE-2022-20466 | 1 Google | 1 Android | 2022-12-14 | N/A | 5.5 MEDIUM |
In applyKeyguardFlags of NotificationShadeWindowControllerImpl.java, there is a possible way to observe the user's password on a secondary display due to an insecure default value. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-179725730 | |||||
CVE-2022-20449 | 1 Google | 1 Android | 2022-12-14 | N/A | 4.4 MEDIUM |
In writeApplicationRestrictionsLAr of UserManagerService.java, there is a possible overwrite of system files due to a path traversal error. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-239701237 | |||||
CVE-2022-20442 | 1 Google | 1 Android | 2022-12-14 | N/A | 7.3 HIGH |
In onCreate of ReviewPermissionsActivity.java, there is a possible way to grant permissions for a separate app with API level < 23 due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-176094367 | |||||
CVE-2022-20240 | 1 Google | 1 Android | 2022-12-14 | N/A | 2.3 LOW |
In sOpAllowSystemRestrictionBypass of AppOpsManager.java, there is a possible leak of location information due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12 Android-12LAndroid ID: A-231496105 | |||||
CVE-2021-39660 | 1 Google | 1 Android | 2022-12-14 | N/A | 7.0 HIGH |
In TBD of TBD, there is a possible way to archive arbitrary code execution in kernel due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-254742984 | |||||
CVE-2022-3982 | 1 Wpdevart | 1 Booking Calendar | 2022-12-14 | N/A | 9.8 CRITICAL |
The Booking calendar, Appointment Booking System WordPress plugin before 3.2.2 does not validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as PHP and achieve RCE | |||||
CVE-2022-3981 | 1 Icegram | 1 Email Subscribers \& Newsletters | 2022-12-14 | N/A | 8.8 HIGH |
The Icegram Express WordPress plugin before 5.5.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by any authenticated users, such as subscriber | |||||
CVE-2022-4000 | 1 Dpdgroup | 1 Woocommerce Shipping | 2022-12-14 | N/A | 4.8 MEDIUM |
The WooCommerce Shipping WordPress plugin through 1.2.11 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup). | |||||
CVE-2022-3912 | 1 Wpeverest | 1 User Registration | 2022-12-14 | N/A | 7.5 HIGH |
The User Registration WordPress plugin before 2.2.4.1 does not properly restrict the files to be uploaded via an AJAX action available to both unauthenticated and authenticated users, which could allow unauthenticated users to upload PHP files for example. | |||||
CVE-2022-3915 | 1 Wedevs | 1 Dokan | 2022-12-14 | N/A | 9.8 CRITICAL |
The Dokan WordPress plugin before 3.7.6 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated users | |||||
CVE-2022-3946 | 1 Collne | 1 Welcart E-commerce | 2022-12-14 | N/A | 6.5 MEDIUM |
The Welcart e-Commerce WordPress plugin before 2.8.4 does not have authorisation and CSRF in an AJAX action, allowing any logged-in user to create, update and delete shipping methods. | |||||
CVE-2022-3925 | 1 Buddybadges Project | 1 Buddybadges | 2022-12-14 | N/A | 7.2 HIGH |
The buddybadges WordPress plugin through 1.0.0 does not sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users | |||||
CVE-2022-3921 | 1 Themographics | 1 Listingo | 2022-12-14 | N/A | 9.8 CRITICAL |
The Listingo WordPress theme before 3.2.7 does not validate files to be uploaded via an AJAX action available to unauthenticated users, which could allow them to upload arbitrary files and lead to RCE | |||||
CVE-2022-43542 | 1 Arubanetworks | 1 Edgeconnect Enterprise | 2022-12-14 | N/A | 8.8 HIGH |
Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in Aruba EdgeConnect Enterprise Software version(s): ECOS 9.2.1.0 and below; ECOS 9.1.3.0 and below; ECOS 9.0.7.0 and below; ECOS 8.3.7.1 and below. | |||||
CVE-2022-3930 | 1 Wpwax | 1 Directorist | 2022-12-14 | N/A | 6.5 MEDIUM |
The Directorist WordPress plugin before 7.4.2.2 suffers from an IDOR vulnerability which an attacker can exploit to change the password of arbitrary users instead of his own. |