• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-200

CVE-2022-25571

February 23, 2023 by godfreyd94

Bluedon Information Security Technologies Co.,Ltd Internet Access Detector v1.0 was discovered to contain an information leak which allows attackers to access the contents of the password file via unspecified vectors.

CVE-2022-2558

February 23, 2023 by godfreyd94

The Simple Job Board WordPress plugin before 2.10.0 is susceptible to Directory Listing which allows the public listing of uploaded resumes in certain configurations.

CVE-2022-25512

February 23, 2023 by godfreyd94

FreeTAKServer-UI v1.9.8 was discovered to leak sensitive API and Websocket keys.

CVE-2022-25245

February 23, 2023 by godfreyd94

Zoho ManageEngine ServiceDesk Plus before 13001 allows anyone to know the organisation’s default currency name.

CVE-2022-25248

February 23, 2023 by godfreyd94

When connecting to a certain port Axeda agent (All versions) and Axeda Desktop Server for Windows (All versions) supplies the event log of the specific service.

CVE-2022-25166

February 23, 2023 by godfreyd94

An issue was discovered in Amazon AWS VPN Client 2.0.0. It is possible to include a UNC path in the OpenVPN configuration file when referencing file paths for parameters (such as auth-user-pass). When this file is imported and the client attempts to validate the file path, it performs an open operation on the path and leaks the user’s Net-NTLMv2 hash to an external server. This could be exploited by having a user open a crafted malicious ovpn configuration file.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 326
  • Go to page 327
  • Go to page 328
  • Go to page 329
  • Go to page 330
  • Interim pages omitted …
  • Go to page 348
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE