2022 CVE Vulnerabilities
27,518 CVEs published in 2022.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2022-30757 | LOW | 3.3 | 0.1% | Jul 12, 2022 | Improper authorization in isemtelephony prior to SMR Jul-2022 Release 1 allows attacker to obtain CID without ACCESS_FIN... |
| CVE-2022-30753 | LOW | 3.3 | 0.1% | Jul 12, 2022 | Improper use of a unique device ID in unprotected SecSoterService prior to SMR Jul-2022 Release 1 allows local attackers... |
| CVE-2022-30752 | LOW | 3.3 | 0.1% | Jul 12, 2022 | Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior to SMR Jul-2022 Release ... |
| CVE-2022-30751 | LOW | 3.3 | 0.1% | Jul 12, 2022 | Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior to SMR Jul-2022 Release ... |
| CVE-2022-30750 | LOW | 3.3 | 0.1% | Jul 12, 2022 | Improper access control vulnerability in updateLastConnectedClientInfo function of SemWifiApClient prior to SMR Jul-2022... |
| CVE-2022-2047 | LOW | 2.7 | 0.9% | Jul 7, 2022 | In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the... |
| CVE-2022-23744 | LOW | 2.3 | 4.3% | Jul 7, 2022 | Check Point Endpoint before version E86.50 failed to protect against specific registry change which allowed to disable e... |
| CVE-2022-31014 | LOW | 3.5 | 2.4% | Jul 5, 2022 | Nextcloud server is an open source personal cloud server. Affected versions were found to be vulnerable to SMTP command ... |
| CVE-2022-1981 | LOW | 2.7 | 0.6% | Jul 1, 2022 | An issue has been discovered in GitLab EE affecting all versions starting from 12.2 prior to 14.10.5, 15.0 prior to 15.0... |
| CVE-2022-0987 | LOW | 3.3 | 0.3% | Jun 28, 2022 | A flaw was found in PackageKit in the way some of the methods exposed by the Transaction interface examines files. This ... |
| CVE-2022-33879 | LOW | 3.3 | 1.9% | Jun 27, 2022 | The initial fixes in CVE-2022-30126 and CVE-2022-30973 for regexes in the StandardsExtractingContentHandler were insuffi... |
| CVE-2022-2106 | LOW | 2.7 | 0.6% | Jun 27, 2022 | Elcomplus SmartICS v2.3.4.0 does not validate the filenames sufficiently, which enables authenticated administrator-leve... |
| CVE-2022-31017 | LOW | 2.6 | 0.5% | Jun 25, 2022 | Zulip is an open-source team collaboration tool. Versions 2.1.0 through and including 5.2 are vulnerable to a logic erro... |
| CVE-2022-33981 | LOW | 3.3 | 0.5% | Jun 18, 2022 | drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency ... |
| CVE-2022-31072 | LOW | 3.3 | 0.3% | Jun 15, 2022 | Octokit is a Ruby toolkit for the GitHub API. Versions 4.23.0 and 4.24.0 of the octokit gem were published containing wo... |
| CVE-2022-31071 | LOW | 3.3 | 0.2% | Jun 15, 2022 | Octopoller is a micro gem for polling and retrying. Version 0.2.0 of the octopoller gem was published containing world-w... |
| CVE-2022-29615 | LOW | 3.4 | 0.2% | Jun 14, 2022 | SAP NetWeaver Developer Studio (NWDS) - version 7.50, is based on Eclipse, which contains the logging framework log4j in... |
| CVE-2022-29482 | LOW | 3.7 | 0.3% | Jun 14, 2022 | 'Mobaoku-Auction&Flea Market' App for iOS versions prior to 5.5.16 improperly verifies server certificates, which may al... |
| CVE-2022-2061 | LOW | 3.3 | 0.4% | Jun 13, 2022 | Heap-based Buffer Overflow in GitHub repository hpjansson/chafa prior to 1.12.0. |
| CVE-2022-22426 | LOW | 3.3 | 0.2% | Jun 10, 2022 | IBM Spectrum Copy Data Management Admin 2.2.0.0 through 2.2.15.0 could allow a local attacker to bypass authentication r... |
| CVE-2022-1690 | LOW | 2.7 | 0.8% | Jun 8, 2022 | The Note Press WordPress plugin through 0.1.10 does not sanitise and escape the ids from the bulk actions before using t... |
| CVE-2022-1689 | LOW | 2.7 | 0.8% | Jun 8, 2022 | The Note Press WordPress plugin through 0.1.10 does not sanitise and escape the Update parameter before using it in a SQ... |
| CVE-2022-1688 | LOW | 2.7 | 0.8% | Jun 8, 2022 | The Note Press WordPress plugin through 0.1.10 does not sanitise and escape the id parameter before using it in various ... |
| CVE-2022-1687 | LOW | 2.7 | 0.8% | Jun 8, 2022 | The Logo Slider WordPress plugin through 1.4.8 does not sanitise and escape the lsp_slider_id parameter before using it ... |
| CVE-2022-1686 | LOW | 2.7 | 0.8% | Jun 8, 2022 | The Five Minute Webshop WordPress plugin through 1.3.2 does not sanitise and escape the id parameter before using it in ... |
Check if your code is affected by 2022 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now