• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-77

CVE-2022-41870

February 23, 2023 by godfreyd94

AP Manager in Innovaphone before 13r2 Service Release 17 allows command injection via a modified service ID during app upload.

CVE-2022-41800

February 23, 2023 by godfreyd94

In all versions of BIG-IP, when running in Appliance mode, an authenticated user assigned the Administrator role may be able to bypass Appliance mode restrictions, utilizing an undisclosed iControl REST endpoint. A successful exploit can allow the attacker to cross a security boundary. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

CVE-2022-41617

February 23, 2023 by godfreyd94

In versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and 13.1.x before 13.1.5.1, When the Advanced WAF / ASM module is provisioned, an authenticated remote code execution vulnerability exists in the BIG-IP iControl REST interface.

CVE-2022-41518

February 23, 2023 by godfreyd94

TOTOLINK NR1800X V9.1.0u.6279_B20210910 was discovered to contain a command injection vulnerability via the UploadFirmwareFile function at /cgi-bin/cstecgi.cgi.

CVE-2022-40929

February 23, 2023 by godfreyd94

XXL-JOB 2.2.0 has a Command execution vulnerability in background tasks.

CVE-2022-40881

February 23, 2023 by godfreyd94

SolarView Compact 6.00 was discovered to contain a command injection vulnerability via network_test.php

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 110
  • Go to page 111
  • Go to page 112
  • Go to page 113
  • Go to page 114
  • Interim pages omitted …
  • Go to page 172
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE