• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors
Home » CVE’s

CVE’s


CVE
Vendors
Products
Updated
CVSS v2
CVSS v3
CVE-2023-0770
Gpac
Mp4box
2023-02-16
N/A
7.8 HIGH
Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.2.
CVE-2023-0760
Gpac
Mp4box
2023-02-16
N/A
7.8 HIGH
Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to V2.1.0-DEV.
CVE-2023-0759
Agentejo, Cockpit
Cockpit
2023-02-16
N/A
8.8 HIGH
Privilege Chaining in GitHub repository cockpit-hq/cockpit prior to 2.3.8.
CVE-2023-0758
Jfinaloa Project
Jfinaloa
2023-02-16
N/A
9.8 CRITICAL
A vulnerability was found in glorylion JFinalOA 1.0.2 and classified as critical. This issue affects some unknown processing of the file src/main/java/com/pointlion/mvc/common/model/SysOrg.java. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-220469 was assigned to this vulnerability.
CVE-2023-0751
Freebsd
Advanced_intrusion_detection_environment, Aide, Cvsweb, Fetch, Freebsd-sendpr, Heimdal, Ja-xklock, Libfetch, Point-to-point_protocol_daemon, Ports_collection
2023-02-16
N/A
6.5 MEDIUM
When GELI reads a key file from standard input, it does not reuse the key file to initialize multiple providers at once resulting in the second and subsequent devices silently using a NULL key as the user key file. If a user only uses a key file without a user passphrase, the master key is encrypted with an empty key file allowing trivial recovery of the master key.
CVE-2023-0748
Btcpayserver
Btcpay_server
2023-02-18
N/A
6.1 MEDIUM
Open Redirect in GitHub repository btcpayserver/btcpayserver prior to 1.7.6.
CVE-2023-0747
Btcpayserver
Btcpay_server
2023-02-18
N/A
5.4 MEDIUM
Cross-site Scripting (XSS) - Stored in GitHub repository btcpayserver/btcpayserver prior to 1.7.6.
CVE-2023-0745
Yugabyte, Yugabytedb Managed
Db_enterprise, Yugabytedb, Yugabytedb_managed
2023-02-16
N/A
9.8 CRITICAL
Relative Path Traversal vulnerability in YugaByte, Inc. Yugabyte Managed (PlatformReplicationManager.Java modules) allows Path Traversal. This vulnerability is associated with program files PlatformReplicationManager.Java. This issue affects Yugabyte Managed: from 2.0 through 2.13.
CVE-2023-0744
Answer
2023-02-18
N/A
9.8 CRITICAL
Improper Access Control in GitHub repository answerdev/answer prior to 1.0.4.
CVE-2023-0743
Answer
2023-02-16
N/A
9 CRITICAL
Cross-site Scripting (XSS) - Generic in GitHub repository answerdev/answer prior to 1.0.4.
« Previous 1 … 11,214 11,215 11,216 11,217 11,218 … 11,258 Next »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE