2022 CVE Vulnerabilities
27,518 CVEs published in 2022.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2022-29053 | LOW | 3.3 | 0.3% | Sep 6, 2022 | A missing cryptographic steps vulnerability [CWE-325] in the functions that encrypt the keytab files in FortiOS version ... |
| CVE-2022-1697 | LOW | 3.9 | 0.2% | Sep 6, 2022 | Okta Active Directory Agent versions 3.8.0 through 3.11.0 installed the Okta AD Agent Update Service using an unquoted p... |
| CVE-2022-2256 | LOW | 3.8 | 0.5% | Sep 1, 2022 | A Stored Cross-site scripting (XSS) vulnerability was found in keycloak as shipped in Red Hat Single Sign-On 7. This fla... |
| CVE-2022-2556 | LOW | 2.7 | 0.6% | Aug 29, 2022 | The Mailchimp for WooCommerce WordPress plugin before 2.7.2 has an AJAX action that allows high privilege users to perfo... |
| CVE-2022-36168 | LOW | 2.7 | 0.8% | Aug 26, 2022 | A directory traversal vulnerability was discovered in Wuzhicms 4.1.0. via /coreframe/app/attachment/admin/index.php: |
| CVE-2022-36117 | LOW | 3.1 | 0.6% | Aug 25, 2022 | An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment that exposes the Blue ... |
| CVE-2022-31237 | LOW | 3.3 | 0.2% | Aug 22, 2022 | Dell PowerScale OneFS, versions 9.2.0 up to and including 9.2.1.12 and 9.3.0.5 contain an improper preservation of permi... |
| CVE-2022-34771 | LOW | 3.5 | 0.4% | Aug 22, 2022 | Tabit - arbitrary SMS send on Tabits behalf. The resend OTP API of tabit allows an adversary to send messages on tabits ... |
| CVE-2022-2841 | LOW | 2.7 | 3.7% | Aug 22, 2022 | A vulnerability was found in CrowdStrike Falcon 6.31.14505.0/6.42.15610/6.44.15806. It has been classified as problemati... |
| CVE-2022-37438 | LOW | 3.5 | 0.4% | Aug 16, 2022 | In Splunk Enterprise versions in the following table, an authenticated user can craft a dashboard that could potentially... |
| CVE-2022-36007 | LOW | 3.3 | 0.4% | Aug 15, 2022 | Venice is a Clojure inspired sandboxed Lisp dialect with excellent Java interoperability. A partial path traversal issue... |
| CVE-2022-20342 | LOW | 3.3 | 0.1% | Aug 12, 2022 | In WiFi, there is a possible disclosure of WiFi password to the end user due to an insecure default value. This could le... |
| CVE-2022-20340 | LOW | 3.3 | 0.1% | Aug 12, 2022 | In SELinux policy, there is a possible way of inferring which websites are being opened in the browser due to a missing ... |
| CVE-2022-20339 | LOW | 3.3 | 0.1% | Aug 12, 2022 | In Android, there is a possible access of network neighbor table information due to an insecure SEpolicy configuration. ... |
| CVE-2022-20338 | LOW | 3.3 | 0.2% | Aug 12, 2022 | In HierarchicalUri.readFrom of Uri.java, there is a possible way to craft a malformed Uri object due to improper input v... |
| CVE-2022-20336 | LOW | 3.3 | 0.1% | Aug 12, 2022 | In Settings, there is a possible installed application disclosure due to a missing permission check. This could lead to ... |
| CVE-2022-20335 | LOW | 3.3 | 0.1% | Aug 12, 2022 | In Wifi Slice, there is a possible way to adjust Wi-Fi settings even when the permission has been disabled due to a miss... |
| CVE-2022-20330 | LOW | 3.5 | 0.1% | Aug 12, 2022 | In Bluetooth, there is a possible way to connect or disconnect bluetooth devices without user awareness due to a missing... |
| CVE-2022-20328 | LOW | 3.3 | 0.1% | Aug 12, 2022 | In PackageManager, there is a possible way to determine whether an app is installed due to a missing permission check. T... |
| CVE-2022-20327 | LOW | 2.8 | 0.1% | Aug 12, 2022 | In Wi-Fi, there is a possible way to retrieve the WiFi SSID without location permissions due to a missing permission che... |
| CVE-2022-20321 | LOW | 3.3 | 0.1% | Aug 12, 2022 | In Settings, there is a possible way for an application without permissions to read content of WiFi QR codes due to a mi... |
| CVE-2022-20320 | LOW | 3.3 | 0.1% | Aug 12, 2022 | In ActivityManager, there is a possible way to determine whether an app is installed, without query permissions, due to ... |
| CVE-2022-20318 | LOW | 3.3 | 0.1% | Aug 12, 2022 | In PackageInstaller, there is a possible way to determine whether an app is installed, without query permissions, due to... |
| CVE-2022-20316 | LOW | 3.3 | 0.1% | Aug 12, 2022 | In ContentResolver, there is a possible way to determine whether an app is installed, without query permissions, due to ... |
| CVE-2022-20315 | LOW | 3.3 | 0.1% | Aug 12, 2022 | In ActivityManager, there is a possible disclosure of installed packages due to a missing permission check. This could l... |
Check if your code is affected by 2022 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now