CVE-2022-21661 vulnerabilities and exploits

(subscribe to this query)

6.8

CVSSv2

Visual Studio Code npm-script Extension Remote Code Execution Vulnerability...

Microsoft Visual Studio Code Npm-script Extension8 Github repositories available

6.9

CVSSv2

A local privilege escalation was discovered in the Linux kernel before 5.10.13. Multiple race conditions in the AF_VSOCK implementation are caused by wrong locking in net/vmw_vsock/af_vsock.c. The race conditions were implicitly introduced in the commits that added VSOCK...

Linux Linux Kernel Netapp Cloud Backup -Netapp Fas Baseboard Management Controller -Netapp Aff Baseboard Management Controller -Netapp Solidfire \\& Hci Management Node -Netapp Solidfire Baseboard Management Controller -Netapp Baseboard Management Controller 500f Firmware Netapp Baseboard Management Controller A250 Firmware Netapp Hci H410c Firmware -16 Github repositories available

7.5

CVSSv2

The Enterprise License Manager portal in Mitel MiContact Center Enterprise before 9.4 could allow a user to access restricted files and folders due to insufficient access control. A successful exploit could allow an attacker to view and modify application data via Directory...

Mitel Micontact Center Enterprise5 Github repositories available

6.5

CVSSv2

Wazuh API in Wazuh from 4.0.0 to 4.0.3 allows authenticated users to execute arbitrary code with administrative privileges via /manager/files URI. An authenticated user to the service may exploit incomplete input validation on the /manager/files API to inject arbitrary code...

Wazuh Wazuh9 Github repositories available

6.5

CVSSv2

OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows allows remote authenticated users to upload and execute arbitrary JSP files via view_edit.shtm....

Openplcproject Scadabr6 Github repositories available

4.3

CVSSv2

Cross Site Scripting (XSS) in the "Reset Password" page form of Priority Enterprise Management System v8.00 allows attackers to execute javascript on behalf of the victim by sending a malicious URL or directing the victim to a malicious site....

5 Github repositories available

7.5

CVSSv2

Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-26412, CVE-2021-26854, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065, CVE-2021-27078....

Microsoft Exchange Server 2016 Microsoft Exchange Server 2013 Microsoft Exchange Server 201978 Github repositories available18 Articles available

6.5

CVSSv2

Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-26854, CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065, CVE-2021-27078....

Microsoft Exchange Server 2013 Microsoft Exchange Server 2016 Microsoft Exchange Server 20199 Github repositories available1 Article available

6.5

CVSSv2

Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-26412, CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065, CVE-2021-27078....

Microsoft Exchange Server 2013 Microsoft Exchange Server 2016 Microsoft Exchange Server 20198 Github repositories available1 Article available

5

CVSSv2

An improper authorization vulnerability in Samsung Members "samsungrewards" scheme for deeplink in versions 2.4.83.9 in Android O(8.1) and below, and 3.9.00.9 in Android P(9.0) and above allows remote attackers to access a user data related with Samsung Account....

Samsung Members5 Github repositories available

Get Started

« PREV 1 2 3 4 5 6 7 8 9 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook