• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-276

CVE-2022-40187

February 23, 2023 by godfreyd94

Foresight GC3 Launch Monitor 1.3.15.68 ships with a Target Communication Framework (TCF) service enabled. This service listens on a TCP port on all interfaces and allows for process debugging, file system modification, and terminal access as the root user. In conjunction with a hosted wireless access point and the known passphrase of FSSPORTS, an attacker could use this service to modify a device and steal intellectual property.

CVE-2022-4020

February 23, 2023 by godfreyd94

Vulnerability in the HQSwSmiDxe DXE driver on some consumer Acer Notebook devices may allow an attacker with elevated privileges to modify UEFI Secure Boot settings by modifying an NVRAM variable.

CVE-2022-40109

February 23, 2023 by godfreyd94

TOTOLINK A3002R TOTOLINK-A3002R-He-V1.1.1-B20200824.0128 is vulnerable to Insecure Permissions via binary /bin/boa.

CVE-2022-39086

February 23, 2023 by godfreyd94

In network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges needed.

CVE-2022-39087

February 23, 2023 by godfreyd94

In network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges needed.

CVE-2022-39088

February 23, 2023 by godfreyd94

In network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges needed.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 85
  • Go to page 86
  • Go to page 87
  • Go to page 88
  • Go to page 89
  • Interim pages omitted …
  • Go to page 110
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE