2022 CVE Vulnerabilities
27,518 CVEs published in 2022.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2022-48308 | LOW | 3.7 | 0.2% | Feb 16, 2023 | It was discovered that the sls-logging was not verifying hostnames in TLS certificates due to a misuse of the javax.net.... |
| CVE-2022-48307 | LOW | 3.7 | 0.2% | Feb 16, 2023 | It was discovered that the Magritte-ftp was not verifying hostnames in TLS certificates due to a misuse of the javax.net... |
| CVE-2022-42436 | LOW | 3.3 | 0.2% | Feb 12, 2023 | IBM MQ 8.0.0, 9.0.0, 9.1.0, 9.2.0, 9.3.0 Managed File Transfer could allow a local user to obtain sensitive information ... |
| CVE-2022-34452 | LOW | 2.7 | 0.4% | Feb 10, 2023 | PowerPath Management Appliance with versions 3.3, 3.2*, 3.1 & 3.0* contains sensitive information disclosure vulnerabil... |
| CVE-2022-39324 | LOW | 3.5 | 0.8% | Jan 27, 2023 | Grafana is an open-source platform for monitoring and observability. Prior to versions 8.5.16 and 9.2.8, malicious user ... |
| CVE-2022-43978 | LOW | 3.7 | 0.3% | Jan 27, 2023 | There is an improper authentication vulnerability in Pandora FMS v764. The application verifies that the user has a vali... |
| CVE-2022-44718 | LOW | 3.5 | 0.3% | Jan 27, 2023 | An issue was discovered in NetScout nGeniusONE 6.3.2 build 904. Open Redirection can occur (issue 2 of 2). After success... |
| CVE-2022-44717 | LOW | 3.1 | 0.3% | Jan 27, 2023 | An issue was discovered in NetScout nGeniusONE 6.3.2 build 904. Open Redirection can occur (issue 1 of 2). After success... |
| CVE-2022-34399 | LOW | 2.3 | 0.2% | Jan 18, 2023 | Dell Alienware m17 R5 BIOS version prior to 1.2.2 contain a buffer access vulnerability. A malicious user with admin pr... |
| CVE-2022-4309 | LOW | 3.1 | 0.2% | Jan 16, 2023 | The Subscribe2 WordPress plugin before 10.38 does not have CSRF check when deleting users, which could allow attackers t... |
| CVE-2022-4342 | LOW | 3.8 | 0.7% | Jan 12, 2023 | An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.1 before 15.5.7, all versions start... |
| CVE-2022-4102 | LOW | 3.1 | 0.3% | Jan 9, 2023 | The Royal Elementor Addons WordPress plugin before 1.3.56 does not have authorization and CSRF checks when deleting a te... |
| CVE-2022-3343 | LOW | 3.5 | 0.5% | Jan 9, 2023 | The WPQA Builder WordPress plugin before 5.9.3 (which is a companion plugin used with Discy and Himer Discy WordPress th... |
| CVE-2022-46168 | LOW | 3.5 | 0.5% | Jan 5, 2023 | Discourse is an option source discussion platform. Prior to version 2.8.14 on the `stable` branch and version 2.9.0.beta... |
| CVE-2022-4109 | LOW | 2.7 | 0.7% | Jan 2, 2023 | The Wholesale Market for WooCommerce WordPress plugin before 2.0.0 does not validate user input against path traversal a... |
| CVE-2022-47952 | LOW | 3.3 | 0.7% | Jan 1, 2023 | lxc-user-nic in lxc through 5.0.1 is installed setuid root, and may allow local users to infer whether any file exists, ... |
| CVE-2022-42266 | LOW | 3.3 | 0.2% | Dec 30, 2022 | NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkD... |
| CVE-2022-4773 | LOW | 3.3 | 0.4% | Dec 28, 2022 | ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as problematic was found in cloudsync. Affected by this vulne... |
| CVE-2022-2583 | LOW | 3.7 | 0.3% | Dec 27, 2022 | A race condition can cause incorrect HTTP request routing. |
| CVE-2022-45433 | LOW | 3.7 | 0.6% | Dec 27, 2022 | Some Dahua software products have a vulnerability of unauthenticated traceroute host from remote DSS Server. After bypas... |
| CVE-2022-45430 | LOW | 3.7 | 0.4% | Dec 27, 2022 | Some Dahua software products have a vulnerability of unauthenticated enable or disable SSHD service. After bypassing the... |
| CVE-2022-45428 | LOW | 2.7 | 0.7% | Dec 27, 2022 | Some Dahua software products have a vulnerability of sensitive information leakage. After obtaining the permissions of a... |
| CVE-2022-41977 | LOW | 3.3 | 0.7% | Dec 22, 2022 | An out of bounds read vulnerability exists in the way OpenImageIO version v2.3.19.0 processes string fields in TIFF imag... |
| CVE-2022-42931 | LOW | 3.3 | 0.1% | Dec 22, 2022 | Logins saved by Firefox should be managed by the Password Manager component which uses encryption to save files on-disk.... |
| CVE-2022-20562 | LOW | 3.3 | 0.2% | Dec 16, 2022 | In various functions of ap_input_processor.c, there is a possible way to record audio during a phone call due to a logic... |
Check if your code is affected by 2022 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now