2022 CVE Vulnerabilities
27,518 CVEs published in 2022.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2022-40310 | LOW | 3.1 | 0.4% | Sep 23, 2022 | Authenticated (subscriber+) Race Condition vulnerability in Rate my Post – WP Rating System plugin <= 3.3.4 at WordPress... |
| CVE-2022-35252 | LOW | 3.7 | 1.8% | Sep 23, 2022 | When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies using control codes that when l... |
| CVE-2022-39231 | LOW | 3.7 | 0.4% | Sep 23, 2022 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. In versions prio... |
| CVE-2022-39225 | LOW | 3.1 | 0.4% | Sep 23, 2022 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. In versions prio... |
| CVE-2022-3274 | LOW | 3.5 | 0.4% | Sep 22, 2022 | Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.7. |
| CVE-2022-36062 | LOW | 3.8 | 0.6% | Sep 22, 2022 | Grafana is an open-source platform for monitoring and observability. In versions prior to 8.5.13, 9.0.9, and 9.1.6, Graf... |
| CVE-2022-31679 | LOW | 3.7 | 0.5% | Sep 21, 2022 | Applications that allow HTTP PATCH access to resources exposed by Spring Data REST in versions 3.6.0 - 3.5.5, 3.7.0 - 3.... |
| CVE-2022-32872 | LOW | 2.4 | 0.3% | Sep 20, 2022 | A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16, iOS 15.7 and iPadOS 15.7. A perso... |
| CVE-2022-37703 | LOW | 3.3 | 0.7% | Sep 13, 2022 | In Amanda 3.5.1, an information leak vulnerability was found in the calcsize SUID binary. An attacker can abuse this vul... |
| CVE-2022-31224 | LOW | 2.4 | 0.2% | Sep 12, 2022 | Dell BIOS versions contain an Improper Protection Against Voltage and Clock Glitches vulnerability. An attacker with phy... |
| CVE-2022-31223 | LOW | 2.3 | 0.2% | Sep 12, 2022 | Dell BIOS versions contain an Improper Neutralization of Null Byte vulnerability. A local authenticated administrator us... |
| CVE-2022-31221 | LOW | 2.3 | 0.2% | Sep 12, 2022 | Dell BIOS versions contain an Information Exposure vulnerability. A local authenticated administrator user could potenti... |
| CVE-2022-38701 | LOW | 3.3 | 0.2% | Sep 9, 2022 | OpenHarmony-v3.1.2 and prior versions have a heap overflow vulnerability. Local attackers can trigger a heap overflow an... |
| CVE-2022-36878 | LOW | 3.3 | 0.2% | Sep 9, 2022 | Exposure of Sensitive Information in Find My Mobile prior to version 7.2.25.14 allows local attacker to access IMEI via ... |
| CVE-2022-36877 | LOW | 3.3 | 0.2% | Sep 9, 2022 | Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions 4.3.00.11 in Global an... |
| CVE-2022-36876 | LOW | 2.4 | 0.3% | Sep 9, 2022 | Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical attackers to access acc... |
| CVE-2022-36866 | LOW | 3.3 | 0.2% | Sep 9, 2022 | Improper access control vulnerability in Broadcaster in Group Sharing prior to versions 13.0.6.15 in Android S(12), 13.0... |
| CVE-2022-36865 | LOW | 3.3 | 0.2% | Sep 9, 2022 | Improper access control in Group Sharing prior to versions 13.0.6.15 in Android S(12), 13.0.6.14 in Android R(11) and be... |
| CVE-2022-36857 | LOW | 2.4 | 0.1% | Sep 9, 2022 | Improper Authorization vulnerability in Photo Editor prior to SMR Sep-2022 Release 1 allows physical attackers to read i... |
| CVE-2022-36856 | LOW | 3.3 | 0.1% | Sep 9, 2022 | Improper access control vulnerability in Telecom application prior to SMR Sep-2022 Release 1 allows attacker to start em... |
| CVE-2022-36852 | LOW | 3.3 | 0.1% | Sep 9, 2022 | Improper Authorization vulnerability in Video Editor prior to SMR Sep-2022 Release 1 allows local attacker to access int... |
| CVE-2022-36422 | LOW | 3.1 | 0.4% | Sep 9, 2022 | Rating increase/decrease via race condition in Lester 'GaMerZ' Chan WP-PostRatings plugin <= 1.89 at WordPress. |
| CVE-2022-22314 | LOW | 3.3 | 0.2% | Sep 8, 2022 | IBM Planning Analytics Local 2.0 allows web pages to be stored locally which can be read by another user on the system. ... |
| CVE-2022-35931 | LOW | 2.7 | 0.4% | Sep 6, 2022 | Nextcloud Password Policy is an app that enables a Nextcloud server admin to define certain rules for passwords. Prior t... |
| CVE-2022-2945 | LOW | 2.7 | 1.4% | Sep 6, 2022 | The WordPress Infinite Scroll – Ajax Load More plugin for WordPress is vulnerable to Directory Traversal in versions up ... |
Check if your code is affected by 2022 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now