Total
34640 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-24486 | 1 Microsoft | 5 Windows 10, Windows 11, Windows Server 2016 and 2 more | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Windows Kerberos Elevation of Privilege Vulnerability
|
|||||
| CVE-2022-24485 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-11-21 | 5.1 MEDIUM | 7.5 HIGH |
|
Win32 File Enumeration Remote Code Execution Vulnerability
|
|||||
| CVE-2022-24484 | 1 Microsoft | 4 Windows Server 2012, Windows Server 2016, Windows Server 2019 and 1 more | 2024-11-21 | 2.1 LOW | 5.5 MEDIUM |
|
Windows Cluster Shared Volume (CSV) Denial of Service Vulnerability
|
|||||
| CVE-2022-24483 | 1 Microsoft | 8 Windows 10, Windows 11, Windows 8.1 and 5 more | 2024-11-21 | 4.9 MEDIUM | 5.5 MEDIUM |
|
Windows Kernel Information Disclosure Vulnerability
|
|||||
| CVE-2022-24481 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Windows Common Log File System Driver Elevation of Privilege Vulnerability
|
|||||
| CVE-2022-24479 | 1 Microsoft | 5 Windows 10, Windows 11, Windows Server 2016 and 2 more | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Connected User Experiences and Telemetry Elevation of Privilege Vulnerability
|
|||||
| CVE-2022-24477 | 1 Microsoft | 1 Exchange Server | 2024-11-21 | N/A | 8.0 HIGH |
|
Microsoft Exchange Server Elevation of Privilege Vulnerability
|
|||||
| CVE-2022-24475 | 1 Microsoft | 1 Edge Chromium | 2024-11-21 | 5.1 MEDIUM | 8.3 HIGH |
|
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
|
|||||
| CVE-2022-24474 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Windows Win32k Elevation of Privilege Vulnerability
|
|||||
| CVE-2022-24473 | 1 Microsoft | 2 365 Apps, Office | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
|
Microsoft Excel Remote Code Execution Vulnerability
|
|||||
| CVE-2022-24472 | 1 Microsoft | 2 Sharepoint Foundation, Sharepoint Server | 2024-11-21 | 3.5 LOW | 8.0 HIGH |
|
Microsoft SharePoint Server Spoofing Vulnerability
|
|||||
| CVE-2022-24471 | 1 Microsoft | 1 Azure Site Recovery | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Azure Site Recovery Remote Code Execution Vulnerability
|
|||||
| CVE-2022-24470 | 1 Microsoft | 1 Azure Site Recovery | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Azure Site Recovery Remote Code Execution Vulnerability
|
|||||
| CVE-2022-24469 | 1 Microsoft | 1 Azure Site Recovery | 2024-11-21 | 9.0 HIGH | 8.1 HIGH |
|
Azure Site Recovery Elevation of Privilege Vulnerability
|
|||||
| CVE-2022-24468 | 1 Microsoft | 1 Azure Site Recovery | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Azure Site Recovery Remote Code Execution Vulnerability
|
|||||
| CVE-2022-24467 | 1 Microsoft | 1 Azure Site Recovery | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Azure Site Recovery Remote Code Execution Vulnerability
|
|||||
| CVE-2022-24465 | 1 Microsoft | 1 Intune Company Portal | 2024-11-21 | 2.1 LOW | 3.3 LOW |
|
Microsoft Intune Portal for iOS Security Feature Bypass Vulnerability
|
|||||
| CVE-2022-24464 | 2 Fedoraproject, Microsoft | 5 Fedora, .net, .net Core and 2 more | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
.NET and Visual Studio Denial of Service Vulnerability
|
|||||
| CVE-2022-24463 | 1 Microsoft | 1 Exchange Server | 2024-11-21 | 4.0 MEDIUM | 6.5 MEDIUM |
|
Microsoft Exchange Server Spoofing Vulnerability
|
|||||
| CVE-2022-24462 | 1 Microsoft | 2 365 Apps, Office | 2024-11-21 | 4.3 MEDIUM | 5.5 MEDIUM |
|
Microsoft Word Security Feature Bypass Vulnerability
|
|||||
| CVE-2022-24461 | 1 Microsoft | 2 365 Apps, Office | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
|
Microsoft Office Visio Remote Code Execution Vulnerability
|
|||||
| CVE-2022-24460 | 1 Microsoft | 5 Windows 10, Windows 11, Windows Server and 2 more | 2024-11-21 | 7.6 HIGH | 7.0 HIGH |
|
Tablet Windows User Interface Application Elevation of Privilege Vulnerability
|
|||||
| CVE-2022-24459 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-11-21 | 7.2 HIGH | 7.8 HIGH |
|
Windows Fax and Scan Service Elevation of Privilege Vulnerability
|
|||||
| CVE-2022-24455 | 1 Microsoft | 6 Windows 10, Windows 8.1, Windows Rt 8.1 and 3 more | 2024-11-21 | 7.2 HIGH | 7.8 HIGH |
|
Windows CD-ROM Driver Elevation of Privilege Vulnerability
|
|||||
| CVE-2022-24454 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-11-21 | 7.2 HIGH | 7.8 HIGH |
|
Windows Security Support Provider Interface Elevation of Privilege Vulnerability
|
|||||
| CVE-2022-24452 | 1 Microsoft | 1 Hevc Video Extensions | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
|
HEVC Video Extensions Remote Code Execution Vulnerability
|
|||||
| CVE-2022-24451 | 1 Microsoft | 1 Vp9 Video Extensions | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
|
VP9 Video Extensions Remote Code Execution Vulnerability
|
|||||
| CVE-2022-24434 | 1 Dicer Project | 1 Dicer | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
This affects all versions of package dicer. A malicious attacker can send a modified form to server, and crash the nodejs service. An attacker could sent the payload again and again so that the service continuously crashes.
|
|||||
| CVE-2022-24398 | 1 Sap | 1 Business Objects Business Intelligence Platform | 2024-11-21 | 3.5 LOW | 6.5 MEDIUM |
|
Under certain conditions SAP Business Objects Business Intelligence Platform - versions 420, 430, allows an authenticated attacker to access information which would otherwise be restricted.
|
|||||
| CVE-2022-24379 | 1 Intel | 4 Server Board M70klp2sb, Server Board M70klp2sb Firmware, Server System M70klp4s2uhh and 1 more | 2024-11-21 | N/A | 7.5 HIGH |
|
Improper input validation in some Intel(R) Server System M70KLP Family BIOS firmware before version 01.04.0029 may allow a privileged user to potentially enable escalation of privilege via local access.
|
|||||
| CVE-2022-24346 | 1 Jetbrains | 1 Intellij Idea | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
In JetBrains IntelliJ IDEA before 2021.3.1, local code execution via RLO (Right-to-Left Override) characters was possible.
|
|||||
| CVE-2022-24345 | 1 Jetbrains | 1 Intellij Idea | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
In JetBrains IntelliJ IDEA before 2021.2.4, local code execution (without permission from a user) upon opening a project was possible.
|
|||||
| CVE-2022-24336 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
In JetBrains TeamCity before 2021.2.1, an unauthenticated attacker can cancel running builds via an XML-RPC request to the TeamCity server.
|
|||||
| CVE-2022-24334 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
In JetBrains TeamCity before 2021.2.1, the Agent Push feature allowed selection of any private key on the server.
|
|||||
| CVE-2022-24328 | 1 Jetbrains | 1 Hub | 2024-11-21 | 4.0 MEDIUM | 6.5 MEDIUM |
|
In JetBrains Hub before 2021.1.13956, an unprivileged user could perform DoS.
|
|||||
| CVE-2022-24308 | 4 Apple, Automox, Linux and 1 more | 4 Macos, Automox, Linux Kernel and 1 more | 2024-11-21 | 2.1 LOW | 5.5 MEDIUM |
|
Automox Agent prior to version 37 on Windows and Linux and Version 36 on OSX could allow for a non privileged user to obtain sensitive information during the install process.
|
|||||
| CVE-2022-24305 | 1 Zohocorp | 1 Manageengine Sharepoint Manager Plus | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Zoho ManageEngine SharePoint Manager Plus before 4329 is vulnerable to a sensitive data leak that leads to privilege escalation.
|
|||||
| CVE-2022-24303 | 2 Fedoraproject, Python | 2 Fedora, Pillow | 2024-11-21 | 6.4 MEDIUM | 9.1 CRITICAL |
|
Pillow before 9.0.1 allows attackers to delete files because spaces in temporary pathnames are mishandled.
|
|||||
| CVE-2022-24293 | 1 Hp | 136 Laserjet Pro M304-m305 W1a46a, Laserjet Pro M304-m305 W1a46a Firmware, Laserjet Pro M304-m305 W1a47a and 133 more | 2024-11-21 | 10.0 HIGH | 9.8 CRITICAL |
|
Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution.
|
|||||
| CVE-2022-24292 | 1 Hp | 136 Laserjet Pro M304-m305 W1a46a, Laserjet Pro M304-m305 W1a46a Firmware, Laserjet Pro M304-m305 W1a47a and 133 more | 2024-11-21 | 10.0 HIGH | 9.8 CRITICAL |
|
Certain HP Print devices may be vulnerable to potential information disclosure, denial of service, or remote code execution.
|
|||||