Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In January 2022
CVE-2022-0378
Cross-site Scripting (XSS) - Reflected in Packagist microweber/microweber prior to 1.2.11.
CVSS Score
7.1
EPSS Score
0.076
Published
2022-01-26
CVE-2022-0379
Cross-site Scripting (XSS) - Stored in Packagist microweber/microweber prior to 1.2.11.
CVSS Score
8.1
EPSS Score
0.003
Published
2022-01-26
CVE-2022-22851
A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodtester Hospital's Patient Records Management System 1.0 via the specialization parameter in doctors.php
CVSS Score
5.4
EPSS Score
0.002
Published
2022-01-26
CVE-2021-45975
In ListCheck.exe in Acer Care Center 4.x before 4.00.3038, a vulnerability in the loading mechanism of Windows DLLs could allow a local attacker to perform a DLL hijacking attack. This vulnerability is due to incorrect handling of directory search paths at run time. An attacker could exploit this vulnerability by placing a malicious DLL file on the targeted system. This file will execute when the vulnerable application launches. A successful exploit could allow the attacker to execute arbitrary code on the targeted system with local administrator privileges.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-01-26
CVE-2021-22570
Nullptr dereference when a null char is present in a proto symbol. The symbol is parsed incorrectly, leading to an unchecked call into the proto file's name during generation of the resulting error message. Since the symbol is incorrectly parsed, the file is nullptr. We recommend upgrading to version 3.15.0 or greater.
CVSS Score
6.5
EPSS Score
0.001
Published
2022-01-26
CVE-2021-22600
Known exploited
A double free bug in packet_set_ring() in net/packet/af_packet.c can be exploited by a local user through crafted syscalls to escalate privileges or deny service. We recommend upgrading kernel past the effected versions or rebuilding past ec6af094ea28f0f2dda1a6a33b14cd57e36a9755
CVSS Score
6.6
EPSS Score
0.001
Published
2022-01-26
CVE-2022-0203
Improper Access Control in GitHub repository crater-invoice/crater prior to 6.0.2.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-01-26
CVE-2022-0361
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
CVSS Score
8.4
EPSS Score
0.001
Published
2022-01-26
CVE-2022-0362
SQL Injection in Packagist showdoc/showdoc prior to 2.10.3.
CVSS Score
6.7
EPSS Score
0.003
Published
2022-01-26
CVE-2022-0359
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
CVSS Score
6.1
EPSS Score
0.001
Published
2022-01-26


Products
Pricing
Contact Us

Shodan ® - All rights reserved