Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In October 2022
CVE-2022-35052
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b84b1.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-10-14
CVE-2022-35053
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x61731f.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-10-14
CVE-2022-35054
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6171b2.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-10-14
CVE-2022-35040
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b5567.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-10-14
CVE-2022-35041
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b558f.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-10-14
CVE-2022-35042
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x4adb11.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-10-14
CVE-2022-35043
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6c08a6.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-10-14
CVE-2022-37602
Prototype pollution vulnerability in karma-runner grunt-karma 4.0.1 via the key variable in grunt-karma.js.
CVSS Score
9.8
EPSS Score
0.001
Published
2022-10-14
CVE-2022-3502
A vulnerability was found in Human Resource Management System 1.0. It has been classified as problematic. This affects an unknown part of the component Leave Handler. The manipulation of the argument Reason leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-210831.
CVSS Score
3.5
EPSS Score
0.001
Published
2022-10-14
CVE-2022-3503
A vulnerability was found in SourceCodester Purchase Order Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the component Supplier Handler. The manipulation of the argument Supplier Name/Address/Contact person/Contact leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-210832.
CVSS Score
3.5
EPSS Score
0.001
Published
2022-10-14


Products
Pricing
Contact Us

Shodan ® - All rights reserved