Search
Total
201818 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-21861 | 1 Microsoft | 4 Windows 10, Windows 11, Windows Server and 1 more | 2023-12-21 | 7.2 HIGH | 7.8 HIGH |
| Task Flow Data Engine Elevation of Privilege Vulnerability | |||||
| CVE-2022-21860 | 1 Microsoft | 4 Windows 10, Windows Server, Windows Server 2016 and 1 more | 2023-12-21 | 4.4 MEDIUM | 7.0 HIGH |
| Windows AppContracts API Server Elevation of Privilege Vulnerability | |||||
| CVE-2022-21859 | 1 Microsoft | 7 Windows 10, Windows 7, Windows 8.1 and 4 more | 2023-12-21 | 6.9 MEDIUM | 7.0 HIGH |
| Windows Accounts Control Elevation of Privilege Vulnerability | |||||
| CVE-2022-21858 | 1 Microsoft | 4 Windows 10, Windows 11, Windows Server and 1 more | 2023-12-21 | 7.2 HIGH | 7.8 HIGH |
| Windows Bind Filter Driver Elevation of Privilege Vulnerability | |||||
| CVE-2022-21857 | 1 Microsoft | 9 Windows 10, Windows 11, Windows 7 and 6 more | 2023-12-21 | 9.0 HIGH | 8.8 HIGH |
| Active Directory Domain Services Elevation of Privilege Vulnerability | |||||
| CVE-2022-21855 | 1 Microsoft | 1 Exchange Server | 2023-12-21 | 7.7 HIGH | 9.0 CRITICAL |
| Microsoft Exchange Server Remote Code Execution Vulnerability | |||||
| CVE-2022-21852 | 1 Microsoft | 4 Windows 10, Windows 11, Windows Server and 1 more | 2023-12-21 | 7.2 HIGH | 7.8 HIGH |
| Windows DWM Core Library Elevation of Privilege Vulnerability | |||||
| CVE-2022-21851 | 1 Microsoft | 9 Windows 10, Windows 11, Windows 7 and 6 more | 2023-12-21 | 9.3 HIGH | 8.8 HIGH |
| Remote Desktop Client Remote Code Execution Vulnerability | |||||
| CVE-2022-21850 | 1 Microsoft | 9 Windows 10, Windows 11, Windows 7 and 6 more | 2023-12-21 | 9.3 HIGH | 8.8 HIGH |
| Remote Desktop Client Remote Code Execution Vulnerability | |||||
| CVE-2022-21849 | 1 Microsoft | 5 Windows 10, Windows 11, Windows Server and 2 more | 2023-12-21 | 9.3 HIGH | 9.8 CRITICAL |
| Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability | |||||
| CVE-2022-21848 | 1 Microsoft | 9 Windows 10, Windows 11, Windows 7 and 6 more | 2023-12-21 | 7.1 HIGH | 7.5 HIGH |
| Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability | |||||
| CVE-2022-21847 | 1 Microsoft | 4 Windows 10, Windows 11, Windows Server and 1 more | 2023-12-21 | 4.9 MEDIUM | 6.5 MEDIUM |
| Windows Hyper-V Denial of Service Vulnerability | |||||
| CVE-2022-21846 | 1 Microsoft | 1 Exchange Server | 2023-12-21 | 8.3 HIGH | 9.0 CRITICAL |
| Microsoft Exchange Server Remote Code Execution Vulnerability | |||||
| CVE-2022-21843 | 1 Microsoft | 9 Windows 10, Windows 11, Windows 7 and 6 more | 2023-12-21 | 4.3 MEDIUM | 7.5 HIGH |
| Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability | |||||
| CVE-2022-21842 | 1 Microsoft | 2 Sharepoint Enterprise Server, Word | 2023-12-21 | 6.8 MEDIUM | 7.8 HIGH |
| Microsoft Word Remote Code Execution Vulnerability | |||||
| CVE-2022-21841 | 1 Microsoft | 2 365 Apps, Office | 2023-12-21 | 9.3 HIGH | 7.8 HIGH |
| Microsoft Excel Remote Code Execution Vulnerability | |||||
| CVE-2022-21840 | 1 Microsoft | 6 Excel, Office, Office Online Server and 3 more | 2023-12-21 | 6.8 MEDIUM | 8.8 HIGH |
| Microsoft Office Remote Code Execution Vulnerability | |||||
| CVE-2022-21839 | 1 Microsoft | 2 Windows 10, Windows Server 2019 | 2023-12-21 | 2.1 LOW | 5.5 MEDIUM |
| Windows Event Tracing Discretionary Access Control List Denial of Service Vulnerability | |||||
| CVE-2022-21838 | 1 Microsoft | 9 Windows 10, Windows 11, Windows 7 and 6 more | 2023-12-21 | 7.2 HIGH | 7.8 HIGH |
| Windows Cleanup Manager Elevation of Privilege Vulnerability | |||||
| CVE-2022-21837 | 1 Microsoft | 2 Sharepoint Foundation, Sharepoint Server | 2023-12-21 | 9.0 HIGH | 8.8 HIGH |
| Microsoft SharePoint Server Remote Code Execution Vulnerability | |||||
| CVE-2022-21836 | 1 Microsoft | 9 Windows 10, Windows 11, Windows 7 and 6 more | 2023-12-21 | 7.2 HIGH | 7.8 HIGH |
| Windows Certificate Spoofing Vulnerability | |||||
| CVE-2022-21835 | 1 Microsoft | 9 Windows 10, Windows 11, Windows 7 and 6 more | 2023-12-21 | 7.2 HIGH | 7.8 HIGH |
| Microsoft Cryptographic Services Elevation of Privilege Vulnerability | |||||
| CVE-2022-21834 | 1 Microsoft | 9 Windows 10, Windows 11, Windows 7 and 6 more | 2023-12-21 | 7.2 HIGH | 7.8 HIGH |
| Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability | |||||
| CVE-2022-21833 | 1 Microsoft | 9 Windows 10, Windows 11, Windows 7 and 6 more | 2023-12-21 | 7.2 HIGH | 7.8 HIGH |
| Virtual Machine IDE Drive Elevation of Privilege Vulnerability | |||||
| CVE-2023-22934 | 1 Splunk | 2 Splunk, Splunk Cloud Platform | 2023-12-21 | N/A | 8.0 HIGH |
| In Splunk Enterprise versions below 8.1.13, 8.2.10, and 9.0.4, the ‘pivot’ search processing language (SPL) command lets a search bypass SPL safeguards for risky commands using a saved search job. The vulnerability requires an authenticated user to craft the saved job and a higher privileged user to initiate a request within their browser. | |||||
| CVE-2023-22933 | 1 Splunk | 2 Splunk, Splunk Cloud Platform | 2023-12-21 | N/A | 6.1 MEDIUM |
| In Splunk Enterprise versions below 8.1.13, 8.2.10, and 9.0.4, a View allows for Cross-Site Scripting (XSS) in an extensible mark-up language (XML) View through the ‘layoutPanel’ attribute in the ‘module’ tag’. | |||||
| CVE-2022-47002 | 1 Masacms | 1 Masacms | 2023-12-21 | N/A | 9.8 CRITICAL |
| A vulnerability in the Remember Me function of Masa CMS v7.2, 7.3, and 7.4-beta allows attackers to bypass authentication via a crafted web request. | |||||
| CVE-2023-44249 | 1 Fortinet | 2 Fortianalyzer, Fortimanager | 2023-12-21 | N/A | 6.5 MEDIUM |
| An authorization bypass through user-controlled key [CWE-639] vulnerability in Fortinet FortiManager version 7.4.0 and before 7.2.3 and FortiAnalyzer version 7.4.0 and before 7.2.3 allows a remote attacker with low privileges to read sensitive information via crafted HTTP requests. | |||||
| CVE-2023-4853 | 2 Quarkus, Redhat | 13 Quarkus, Build Of Optaplanner, Build Of Quarkus and 10 more | 2023-12-21 | N/A | 8.1 HIGH |
| A flaw was found in Quarkus where HTTP security policies are not sanitizing certain character permutations correctly when accepting requests, resulting in incorrect evaluation of permissions. This issue could allow an attacker to bypass the security policy altogether, resulting in unauthorized endpoint access and possibly a denial of service. | |||||
| CVE-2023-4585 | 1 Mozilla | 3 Firefox, Firefox Esr, Thunderbird | 2023-12-21 | N/A | 8.8 HIGH |
| Memory safety bugs present in Firefox 116, Firefox ESR 115.1, and Thunderbird 115.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 117, Firefox ESR < 115.2, and Thunderbird < 115.2. | |||||
| CVE-2022-29143 | 1 Microsoft | 1 Sql Server | 2023-12-21 | 6.0 MEDIUM | 7.5 HIGH |
| Microsoft SQL Server Remote Code Execution Vulnerability | |||||
| CVE-2022-29111 | 1 Microsoft | 1 Hevc Video Extensions | 2023-12-21 | 6.8 MEDIUM | 7.8 HIGH |
| HEVC Video Extensions Remote Code Execution Vulnerability | |||||
| CVE-2022-22018 | 1 Microsoft | 1 Hevc Video Extensions | 2023-12-21 | 6.8 MEDIUM | 7.8 HIGH |
| HEVC Video Extensions Remote Code Execution Vulnerability | |||||
| CVE-2022-26905 | 1 Microsoft | 1 Edge Chromium | 2023-12-21 | 4.3 MEDIUM | 4.3 MEDIUM |
| Microsoft Edge (Chromium-based) Spoofing Vulnerability | |||||
| CVE-2022-29151 | 1 Microsoft | 5 Windows Server, Windows Server 2012, Windows Server 2016 and 2 more | 2023-12-21 | 6.9 MEDIUM | 7.0 HIGH |
| Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability | |||||
| CVE-2022-29150 | 1 Microsoft | 5 Windows Server, Windows Server 2012, Windows Server 2016 and 2 more | 2023-12-21 | 6.9 MEDIUM | 7.0 HIGH |
| Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability | |||||
| CVE-2022-29148 | 1 Microsoft | 1 Visual Studio 2017 | 2023-12-21 | 6.8 MEDIUM | 7.8 HIGH |
| Visual Studio Remote Code Execution Vulnerability | |||||
| CVE-2022-29145 | 2 Fedoraproject, Microsoft | 5 Fedora, .net, .net Core and 2 more | 2023-12-21 | 5.0 MEDIUM | 7.5 HIGH |
| .NET and Visual Studio Denial of Service Vulnerability | |||||
| CVE-2022-29142 | 1 Microsoft | 4 Windows 10, Windows Server, Windows Server 2019 and 1 more | 2023-12-21 | 6.9 MEDIUM | 7.0 HIGH |
| Windows Kernel Elevation of Privilege Vulnerability | |||||
| CVE-2022-29141 | 1 Microsoft | 11 Windows 10, Windows 11, Windows 7 and 8 more | 2023-12-21 | 6.5 MEDIUM | 8.8 HIGH |
| Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | |||||
| CVE-2022-29140 | 1 Microsoft | 6 Windows 10, Windows 11, Windows Server and 3 more | 2023-12-21 | 2.1 LOW | 5.5 MEDIUM |
| Windows Print Spooler Information Disclosure Vulnerability | |||||
| CVE-2022-29139 | 1 Microsoft | 11 Windows 10, Windows 11, Windows 7 and 8 more | 2023-12-21 | 6.8 MEDIUM | 8.8 HIGH |
| Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | |||||
| CVE-2022-29138 | 1 Microsoft | 5 Windows Server, Windows Server 2012, Windows Server 2016 and 2 more | 2023-12-21 | 6.9 MEDIUM | 7.0 HIGH |
| Windows Clustered Shared Volume Elevation of Privilege Vulnerability | |||||
| CVE-2022-29137 | 1 Microsoft | 11 Windows 10, Windows 11, Windows 7 and 8 more | 2023-12-21 | 6.5 MEDIUM | 8.8 HIGH |
| Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | |||||
| CVE-2022-29135 | 1 Microsoft | 5 Windows Server, Windows Server 2012, Windows Server 2016 and 2 more | 2023-12-21 | 6.9 MEDIUM | 7.0 HIGH |
| Windows Cluster Shared Volume (CSV) Elevation of Privilege Vulnerability | |||||
| CVE-2022-29134 | 1 Microsoft | 5 Windows Server, Windows Server 2012, Windows Server 2016 and 2 more | 2023-12-21 | 2.1 LOW | 6.5 MEDIUM |
| Windows Clustered Shared Volume Information Disclosure Vulnerability | |||||
| CVE-2022-29133 | 1 Microsoft | 1 Windows 11 | 2023-12-21 | 7.2 HIGH | 8.8 HIGH |
| Windows Kernel Elevation of Privilege Vulnerability | |||||
| CVE-2022-29132 | 1 Microsoft | 11 Windows 10, Windows 11, Windows 7 and 8 more | 2023-12-21 | 7.2 HIGH | 7.8 HIGH |
| Windows Print Spooler Elevation of Privilege Vulnerability | |||||
| CVE-2022-29131 | 1 Microsoft | 11 Windows 10, Windows 11, Windows 7 and 8 more | 2023-12-21 | 9.0 HIGH | 8.8 HIGH |
| Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | |||||
| CVE-2022-29130 | 1 Microsoft | 11 Windows 10, Windows 11, Windows 7 and 8 more | 2023-12-21 | 9.3 HIGH | 9.8 CRITICAL |
| Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | |||||